GitHub
Skills harvested from GitHub repositories
14810 skills availableimplementing-mtls-for-zero-trust-services
When deploying or configuring implementing mtls for zero trust services capabilities in your environment When establishi...
performing-ssrf-vulnerability-exploitation
When conducting security assessments that involve performing ssrf vulnerability exploitation When following incident res...
configuring-certificate-authority-with-openssl
A Certificate Authority (CA) is the trust anchor in a PKI hierarchy, responsible for issuing, signing, and revoking digi...
securing-aws-iam-permissions
When onboarding new AWS accounts or workloads that require scoped IAM policies When IAM Access Analyzer reports overly p...
performing-second-order-sql-injection
When first-order SQL injection testing reveals proper input sanitization at storage time During penetration testing of a...
mapping-mitre-attack-techniques
Use this skill when: Generating an ATT&CK coverage heatmap to show which techniques your detection stack addresses Taggi...
building-vulnerability-dashboard-with-defectdojo
DefectDojo is an open-source application vulnerability management platform that aggregates findings from 200+ security t...
implementing-policy-as-code-with-open-policy-agent
When enforcing organizational security policies across Kubernetes clusters programmatically When requiring admission con...
implementing-api-threat-protection-with-apigee
Google Apigee is an enterprise API management platform that provides native security policies for threat protection, inc...
detecting-bluetooth-low-energy-attacks
This skill is intended for authorized security testing, penetration testing engagements, CTF competitions, and education...
conducting-phishing-incident-response
A user reports receiving a suspicious email via the phishing report button or abuse mailbox Email gateway detects a mali...
configuring-active-directory-tiered-model
Implement Microsoft's Enhanced Security Admin Environment (ESAE) tiered administration model for Active Directory. Cover...
performing-dns-tunneling-detection
When conducting security assessments that involve performing dns tunneling detection When following incident response pr...
performing-steganography-detection
When suspecting covert data hiding in images, audio, or video files During investigations involving suspected data exfil...
exploiting-deeplink-vulnerabilities
Use this skill when: Assessing mobile app deep link handling for injection and redirect vulnerabilities Testing Android ...
implementing-secrets-scanning-in-ci-cd
This skill covers implementing automated secrets scanning in CI/CD pipelines using gitleaks and trufflehog. It enables s...
analyzing-tls-certificate-transparency-logs
When investigating security incidents that require analyzing tls certificate transparency logs When building detection r...
performing-service-account-credential-rotation
Service accounts are non-human identities used by applications, daemons, CI/CD pipelines, and automated processes to aut...
testing-api-security-with-owasp-top-10
During authorized API penetration testing engagements When assessing REST, GraphQL, or gRPC APIs for security vulnerabil...
detecting-serverless-function-injection
Auditing Lambda/Cloud Functions for code injection vulnerabilities where unsanitized event data flows into dangerous run...
implementing-image-provenance-verification-with-cosign
Cosign is a Sigstore tool for signing, verifying, and attaching metadata to container images and OCI artifacts. It suppo...
deploying-palo-alto-prisma-access-zero-trust
When implementing enterprise-grade SASE with integrated ZTNA, SWG, CASB, and FWaaS When replacing both VPN and branch of...
analyzing-windows-registry-for-artifacts
When investigating user activity on a Windows system during an incident For identifying autorun/persistence mechanisms u...
implementing-network-segmentation-for-ot
When an OT security assessment reveals a flat network with no segmentation between Purdue levels When implementing IEC 6...