php-ssrf-xxe-audit
CommunityAudit SSRF and XXE risks in PHP.
Authoryunmengya
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill addresses the critical security vulnerabilities of Server-Side Request Forgery (SSRF) and XML External Entity (XXE) attacks within PHP applications, providing evidence-based findings.
Core Features & Use Cases
- SSRF & XXE Detection: Identifies potential SSRF and XXE vulnerabilities by analyzing URL handling and XML parsing functions.
- Evidence Chain Tracking: Records the complete path from input to sink, detailing sanitization and filtering logic.
- Use Case: When auditing a PHP e-commerce platform, this Skill can pinpoint if user-supplied URLs in product import features could be exploited for SSRF, or if XML-based payment gateway integrations are vulnerable to XXE attacks.
Quick Start
Use the php-ssrf-xxe-audit skill to audit SSRF and XXE risks in the provided PHP project.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: php-ssrf-xxe-audit Download link: https://github.com/yunmengya/PHP_AUDIT_SKILLS/archive/main.zip#php-ssrf-xxe-audit Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.