Identify SSRF attack vectors
hunt-ssrfskillsetup L1★1,791
elementalsouls/Claude-BugHunter ↗What it does
Hunting skill for ssrf vulnerabilities
Best for
Discovering ssrf vulnerabilities when generic scanners miss domain-specific chains.
Inputs
- · into an error string, NOT making an outbound HTTP request
- · HTTP requests / JSON payloads
Outputs
- · Audit/compliance report (structured)
- · Extracted source code or structured data
Requires
- · Burp Suite
- · HTTP client (curl/requests)
- · Python runtime
- · Git CLI
Preconditions
Target endpoint reachable; access to HTTP inspection tools
Failure modes
- · Default failure mode applicable