GitHub
Skills harvested from GitHub repositories
14810 skills availableoffensive-exploit-dev-course
Skill Name: exploit-dev-curriculum Folder: offensive-exploit-dev-course Source: https://github.com/SnailSploit/offensive...
offensive-xxe
Skill Name: xxe Folder: offensive-xxe Source: https://github.com/SnailSploit/offensive-checklist/blob/main/xxe.md XML Ex...
offensive-xss
Skill Name: xss Folder: offensive-xss Source: https://github.com/SnailSploit/offensive-checklist/blob/main/xss.md Cross-...
offensive-waf-bypass
Skill Name: waf-bypass Folder: offensive-waf-bypass Source: https://github.com/SnailSploit/offensive-checklist/blob/main...
offensive-ssti
Skill Name: ssti Folder: offensive-ssti Source: https://github.com/SnailSploit/offensive-checklist/blob/main/ssti.md Ser...
offensive-sqli
Map all input vectors that reach the database (URL params, POST body, cookies, headers, API filters, WebSocket messages)...
offensive-ssrf
Skill Name: ssrf Folder: offensive-ssrf Source: https://github.com/SnailSploit/offensive-checklist/blob/main/ssrf.md Ser...
offensive-rce
Skill Name: rce Folder: offensive-rce Source: https://github.com/SnailSploit/offensive-checklist/blob/main/rce.md Remote...
offensive-race-condition
Skill Name: race-condition Folder: offensive-race-condition Source: https://github.com/SnailSploit/offensive-checklist/b...
offensive-parameter-pollution
Skill Name: parameter-pollution Folder: offensive-parameter-pollution Source: https://github.com/SnailSploit/offensive-c...
offensive-open-redirect
Skill Name: open-redirect Folder: offensive-open-redirect Source: https://github.com/SnailSploit/offensive-checklist/blo...
offensive-idor
Skill Name: idor Folder: offensive-idor Source: https://github.com/SnailSploit/offensive-checklist/blob/main/idor.md IDO...
offensive-file-upload
Skill Name: file-upload Folder: offensive-file-upload Source: https://github.com/SnailSploit/offensive-checklist/blob/ma...
offensive-graphql
Skill Name: graphql-security Folder: offensive-graphql Source: https://github.com/SnailSploit/offensive-checklist/blob/m...
offensive-business-logic
Business logic flaws are the highest-paying class of vulnerability for bug bounty and the hardest for scanners to detect...
offensive-initial-access
Skill Name: initial-access Folder: offensive-initial-access Source: https://github.com/SnailSploit/offensive-checklist/b...
offensive-ai-security
Skill Name: ai-security Folder: offensive-ai-security Source: https://github.com/SnailSploit/offensive-checklist/blob/ma...
offensive-reporting
A great finding lost in a bad report is a wasted finding. Reports are the artifact the client pays for, the auditor read...
offensive-iot
Recon the device physically — identify SoC, flash, debug interfaces, radios Get the firmware — vendor download, OTA capt...
offensive-fast-checking
Skill Name: fast-checking Folder: offensive-fast-checking Source: https://github.com/SnailSploit/offensive-checklist/blo...
offensive-crash-analysis
Skill Name: crash-analysis Folder: offensive-crash-analysis Source: https://github.com/SnailSploit/offensive-checklist/b...
offensive-windows-boundaries
Skill Name: windows-boundaries Folder: offensive-windows-boundaries Source: https://github.com/SnailSploit/offensive-che...
offensive-deserialization
Skill Name: insecure-deserialization Folder: offensive-deserialization Source: https://github.com/SnailSploit/offensive-...
offensive-mobile
Static: pull the IPA/APK, decompile, dump resources/strings, identify endpoints Dynamic: install on rooted/jailbroken de...