xslt-injection

This skill is not malware and shows no suspicious installer or credential-harvesting behavior, but it is a high-risk offensive security skill. Its actual footprint matches its stated purpose: teaching AI agents how to probe and exploit XSLT injection up to file access and RCE on target systems.