Search Skills
Search across 54932 indexed skills
vnc-pentesting
VNC 枚举、密码解密、已知漏洞详细命令 -> 读 references/vnc-techniques.md --- 发现 5800/5900/5901 端口开放 ├─ Phase 1: 服务发现 │ ├─ Nmap 脚本扫描 -> 版本信息 / 认证绕过检测 / 标题获取 │ ├─ 确定 ...
dalfox-xss
DalFox 是专业的 XSS 漏洞扫描器。核心优势:智能参数分析(自动识别可注入参数)+ DOM 挖掘 + WAF 绕过 + Blind XSS 支持。 项目地址:https://github.com/hahwul/dalfox dalfox url "http://target.com/sear...
writing-systems-papers
Structural guidance for $ARGUMENTS paper-write: General paper generation workflow with citation verification. This skill complements it with systems-s...
http-host-header-attacks
--- HTTP Host header 告诉 Web 服务器客户端请求的是哪个网站(虚拟主机路由)。很多应用在以下场景信任 Host header 的值: 生成密码重置链接 生成绝对 URL 缓存键计算 路由到内部后端 访问控制决策 如果应用不验证 Host header,攻击者可以操纵它来投毒链...
imap-pentesting
IMAP 命令语法、CURL 操作、NTLM 信息提取、邮件搜索技巧 -> 读 references/imap-techniques.md --- 发现 143/993 端口开放 ├─ Phase 1: 服务发现 │ ├─ Banner 抓取 -> 识别邮件服务与版本 │ ├─ 143 (明...
shellcode-loader-generate
组件库完整列表(85 组件) → references/loader-components-db.json 已有场景(避免重复) → references/loader-scenarios.json 架构说明与模板 → references/loader-architecture.md --- Lo...
add-wasp-skills
Let the user know that Wasp agent skills (also called plugins) are available for this project. These skills add Wasp-specific knowledge and best pract...
xlsx
Use a consistent, professional font (e.g., Arial, Times New Roman) for all deliverables unless otherwise instructed by the user Every Excel model MUST...
auto-paper-improvement-loop
Override for Codex users who want Gemini, not a second Codex agent, to act as the reviewer. Install this package after skills/skills-codex/. Autonomou...
proof-checker
Systematically verify a mathematical proof via cross-model adversarial review, fix identified gaps, re-review until convergence, and generate a detail...
bloodhound-enum
BloodHound.py 是 BloodHound 的 Python 采集器。核心优势:无需在目标执行(通过 LDAP/DNS 远程采集)+ 全面覆盖(用户/组/计算机/会话/ACL/信任关系)+ JSON 输出(导入 BloodHound GUI 分析攻击路径)。 项目地址:https://gi...
database-lateral-pivot
数据库是内网中天然的跳板——它们通常比应用服务器有更宽松的网络访问策略(需要连接多个服务),而且 PostgreSQL 的 dblink、MSSQL 的 Linked Server、MySQL 的 FEDERATED 引擎都提供了原生的跨主机查询能力。当应用层网络隔离严格时,通过数据库进行横向移动往...