The Agent Skills Directory

[SAFE]: The skill provides educational methodology and technical payloads for web application security auditing and does not contain malicious code or instructions targeting the execution environment. \n- [COMMAND_EXECUTION]: The evaluation scenarios mention the use of 'flask-unsign' for session cookie analysis and forgery when a secret key is known. \n- [CREDENTIALS_UNSAFE]: Includes a list of common default credentials and placeholder secret keys used for training and identification of weak configurations.

privilege-escalation-web