creator/Anthropic-Cybersecurity-Skills
1
0
Fork 0
mirror of https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git synced 2026-06-10 21:24:56 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
bb39fa73a9fe48e58b0118fe455d97d407c343f1
Anthropic-Cybersecurity-Skills/skills/exploiting-server-side-request-forgery/references/api-reference.md
T
mukul975 27c6414ca5 Add folder anatomy (scripts/agent.py + references/api-reference.md) for 648 cybersecurity skills 
Complete skill folder anatomy across all cybersecurity skills:
- scripts/agent.py: 80-150 line Python agents using real libraries (impacket,
  boto3, azure-mgmt-*, kubernetes, pefile, yara, scapy, shodan, stix2, etc.)
- references/api-reference.md: real API documentation with method signatures
- LICENSE: MIT license for all skill folders
2026-03-10 21:02:12 +01:00

1.8 KiB
Raw Blame History

API Reference: SSRF Vulnerability Assessment Agent

Dependencies

Library Version Purpose
requests >=2.28 HTTP client for sending SSRF payloads

CLI Usage

python scripts/agent.py \
  --url https://target.example.com/api/fetch-url \
  --param url \
  --auth "Bearer TOKEN" \
  --output ssrf_report.json

Functions

test_ssrf_endpoint(target_url, param_name, payload_url, method, auth_header) -> dict

Sends a single SSRF payload and checks the response for success indicators.

test_cloud_metadata(target_url, param_name, auth_header) -> list

Tests SSRF against AWS IMDSv1, GCP, Azure, and DigitalOcean metadata endpoints.

test_localhost_bypasses(target_url, param_name, auth_header) -> list

Tests 9 localhost encoding bypasses: octal, hex, decimal, IPv6, short form, wildcard DNS.

test_protocol_schemes(target_url, param_name, auth_header) -> list

Tests file://, dict://, and gopher:// protocol handlers.

scan_internal_ports(target_url, param_name, internal_ip, ports, auth_header) -> list

Uses SSRF to probe internal ports (22, 80, 3306, 5432, 6379, 8080, 9200).

run_assessment(target_url, param_name, auth_header) -> dict

Orchestrates all SSRF tests and compiles findings.

Cloud Metadata Endpoints

Provider URL
AWS IMDSv1 http://169.254.169.254/latest/meta-data/
GCP http://metadata.google.internal/computeMetadata/v1/
Azure http://169.254.169.254/metadata/instance
DigitalOcean http://169.254.169.254/metadata/v1/

Output Schema

{
  "target": "https://target.example.com/api/fetch-url",
  "parameter": "url",
  "cloud_metadata_tests": [{"cloud_provider": "aws_imdsv1", "status_code": 200}],
  "findings": ["CRITICAL: Cloud metadata accessible via 1 endpoints"]
}
Reference in New Issue View Git Blame Copy Permalink