creator/Anthropic-Cybersecurity-Skills
1
0
Fork 0
mirror of https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git synced 2026-06-15 15:34:56 +03:00
Code Issues Packages Projects Releases Wiki Activity

Complete folder anatomy for all 649 cybersecurity skills + update LICENSE to Mahipal

Browse Source 
- Add scripts/agent.py and references/api-reference.md to all remaining skills
- Update all 648 LICENSE files: copyright now reads 'Mahipal'
- Add implementing-security-monitoring-with-datadog (new skill with full anatomy)
- All 649 skills now have: SKILL.md, LICENSE, scripts/agent.py, references/api-reference.md
This commit is contained in:
mukul975
2026-03-11 00:22:12 +01:00
parent 27c6414ca5
commit c21af3347e
1244 changed files with 61622 additions and 723 deletions
Download Patch File Download Diff File Expand all files Collapse all files
skills/performing-http-parameter-pollution-attack/references/api-reference.md
+42
View File
@@ -0,0 +1,42 @@
# API Reference — Performing HTTP Parameter Pollution Attack
## Libraries Used
- **requests**: Send HTTP requests with duplicate/encoded parameters
- **urllib.parse**: URL encoding and parameter manipulation
## CLI Interface
```
python agent.py precedence --url <target> [--param id]
python agent.py test --url <target> [--method GET|POST]
python agent.py waf --url <target> --param <name> --value <blocked_value>
```
## Core Functions
### `test_parameter_precedence(url, param_name, headers)` — Detect server parameter handling
Sends duplicate parameters to determine if server uses FIRST, LAST, BOTH, or UNKNOWN value.
Tests three value pairs to establish consistent behavior.
### `test_hpp_payloads(url, method, headers)` — Execute HPP payload suite
Three categories of payloads:
- **duplicate_param**: Basic duplicate parameter injection
- **encoding_bypass**: URL-encoded, null byte, CRLF injection
- **array_syntax**: PHP arrays, comma-separated, indexed arrays
Compares responses against baseline to detect anomalies (status/length changes).
### `test_waf_bypass(url, blocked_param, blocked_value, headers)` — Test WAF evasion
Five bypass techniques: direct, duplicate_first, duplicate_last, encoded, array syntax.
Detects if any technique passes WAF filtering (status 403/406/429 = blocked).
## Payload Categories
| Category | Count | Purpose |
|---|---|---|
| duplicate_param | 3 | Parameter precedence abuse |
| encoding_bypass | 3 | URL encoding / CRLF injection |
| array_syntax | 3 | PHP/framework array handling |
## Dependencies
```
pip install requests
```