SecurityTesting_SQLI-SSTI-RCE
🥈SilverGot Reverse Shell , Combining Manual Testing Skills and Automation tools Skills!
500Updated 1w ago
Intermediate30min to implementautomation
Saves ~180 min per use
Quick InstallView Source
git clone https://github.com/Ruhanyat-994/SecurityTesting_SQLI-SSTI-RCE.gitWorks with:
Claude
Overview
About This Skill
Got Reverse Shell , Combining Manual Testing Skills and Automation tools Skills!
Setup & Installation
Quick Install
No install command available. Check the GitHub repository for manual installation instructions.
Alternative Install (Git Clone)
git clone https://github.com/Ruhanyat-994/SecurityTesting_SQLI-SSTI-RCERequirements
- Claude Code or compatible AI agent
- Works with: Claude
Quick Start Guide
1
Install the Skill
Copy the install command above and run it in your terminal.
2
Open Your AI Agent
Launch Claude Code, Cursor, or your preferred AI coding agent.
3
Try It Out
Use the prompt template or examples below to test the skill.
4
Customize
Adapt the skill to your specific use case and workflow.
Usage Examples
Prompt Template
I need to test a web application for SQL Injection, Server-Side Template Injection (SSTI), and Remote Code Execution (RCE) vulnerabilities. The application is for [COMPANY] in the [INDUSTRY] sector. I have access to [DATA] such as API endpoints, user inputs, and server configurations. Can you provide a step-by-step guide to automate the testing process using tools like Burp Suite, OWASP ZAP, and custom scripts?
Example Output
## Security Testing Guide for SQL Injection, SSTI, and RCE ### Step 1: SQL Injection Testing - **Tools**: Burp Suite, SQLmap - **Process**: 1. Identify input fields and parameters. 2. Use Burp Suite to intercept requests and inject SQL payloads. 3. Automate with SQLmap for comprehensive testing. ### Step 2: Server-Side Template Injection (SSTI) Testing - **Tools**: OWASP ZAP, Custom Scripts - **Process**: 1. Identify template engines used (e.g., Jinja2, Twig). 2. Inject template payloads to test for SSTI vulnerabilities. 3. Automate with OWASP ZAP and custom scripts. ### Step 3: Remote Code Execution (RCE) Testing - **Tools**: Metasploit, Custom Scripts - **Process**: 1. Identify potential entry points for RCE. 2. Use Metasploit to test for known vulnerabilities. 3. Automate with custom scripts for specific scenarios. ### Step 4: Reporting and Mitigation - **Tools**: Jira, Confluence - **Process**: 1. Document findings in Jira. 2. Create detailed reports in Confluence. 3. Provide mitigation strategies and patches.
Apply to these tools
Browse all tools
Autom
Your one-stop shop for church and ministry supplies.
Automa
Automate your browser workflows effortlessly
IronCalc
IronCalc is a spreadsheet engine and ecosystem
Supahub
Customer feedback management made simple
ServiceNow
Enterprise workflow automation and service management platform
GPT for work
Automate your spreadsheet tasks with AI power
Compatible MCP servers
Browse all MCP servers
Find the right skills for your stack
Take a free 3-minute scan and get personalized AI skill recommendations.
Take free scan