Skills
.Work. You
Rest

Cache Poisoning

Community

Detect and prevent web cache poisoning.

Software Engineering#security#vulnerability#cdn#nginx#cache poisoning#web cache deception
Authorallsmog
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps identify and mitigate vulnerabilities related to HTTP cache poisoning and web cache deception, protecting against unauthorized data exposure and manipulation.

Core Features & Use Cases

  • Vulnerability Detection: Provides patterns to find misconfigurations in proxy caches, CDNs, and application-level caching.
  • Attack Chain Analysis: Helps identify SSRF-to-cache poisoning and path extension abuse scenarios.
  • Remediation Guidance: Offers specific configuration examples for Nginx, application code, and CDN settings.
  • Use Case: You suspect your web application's cache is being poisoned. This Skill provides commands to search your Nginx configuration for vulnerable proxy_cache_key directives and checks if dynamic content is being cached under static file extensions.

Quick Start

Search the codebase for Nginx configurations related to proxy caching and cache key manipulation.

Dependency Matrix

Required Modules

None required

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: Cache Poisoning
Download link: https://github.com/allsmog/vuln-scout/archive/main.zip#cache-poisoning

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.