Search Results: waf-bypass

Found 3 Skills

Security & Complianceyaklang/hack-skills

cmdi-command-injection

Command injection playbook. Use when user input may reach shell commands, process execution, converters, import pipelines, or blind out-of-band command sinks.

🇺🇸|EnglishTranslated

Security & Complianceyaklang/hack-skills

http-parameter-pollution

HTTP Parameter Pollution (HPP): duplicate query/body keys parsed differently by servers, proxies, WAFs, and app frameworks. Use when filters and application layers disagree on which value wins, enabling bypass, SSRF second URL, logic abuse, or CSRF token confusion.

🇺🇸|EnglishTranslated

Security & Complianceyaklang/hack-skills

sqli-sql-injection

SQL injection playbook. Use when input reaches SQL queries, authentication logic, sorting, filtering, reporting, or DB-specific blind and out-of-band execution paths.

🇺🇸|EnglishTranslated