Skip to main content
Run any Skill in Manus
with one click
UnsaltedHash42
GitHub creator profile

UnsaltedHash42

Repository-level view of 38 collected skills across 2 GitHub repositories.

skills collected
38
repositories
2
updated
2026-05-22
repository explorer

Repositories and representative skills

offensive-macos-lab-roster
information-security-analysts

Use when choosing or adding macOS research machines: primary, crash-test, cross-platform Apple Silicon, and Intel baseline. Fires on "add a lab machine", "which machine should run this", "primary lab host", "crash-test", "Intel baseline", and "cross-platform verification".

2026-05-14
offensive-macos-tooling-ghidra-headless
information-security-analysts

Use when driving Ghidra headless from Cursor for macOS reverse engineering: opening Mach-O binaries, listing functions, decompiling by address, running custom Ghidra scripts, or doing breadth sweeps across many targets. Fires on "ghidra-mcp", "decompile with Ghidra", "run a Ghidra script", "list functions in this binary", and systemic-class scan setup.

2026-05-13
offensive-macos-bundle-intake
information-security-analysts

Use when starting a macOS reversing pass from an app bundle, installer, framework, XPC bundle, helper, or bare binary path. Fires on "start target", "inventory this app", "point at this bundle", "begin PASS", and "target intake".

2026-05-13
offensive-macos-vuln-ontology
information-security-analysts

Use when mapping a macOS target's attack surfaces to reusable vulnerability classes, generating hunt hypotheses for a new third-party app, or deciding which playbook or scanner applies. Fires on "vulnerability ontology", "bug-class map", "what bug classes apply", "generate hypotheses", and "classify this macOS surface".

2026-05-13
offensive-macos-electron-surface-pack
information-security-analysts

Use when a macOS target appears to be Electron-based and needs ASAR, package, preload, IPC, native module, fuse, sandbox, or update review.

2026-05-13
offensive-macos-station-topology
information-security-analysts

Use when a question touches the lab topology: what runs on the workstation, what runs on the primary lab host, how `ghidra-mcp` and `macre-vm-mcp` are wired, how to start a findings repo, which machine role to use, why Hopper is manual-only, or how to troubleshoot MCP/SSH/script sync failures.

2026-05-13
offensive-macos-source-binary-correlation
information-security-analysts

Use for open-source or in-house macOS targets where source is available but the shipped binary remains the evidence source of truth.

2026-05-08
offensive-macos-hunt-iokit-userclient
information-security-analysts

Use when auditing user-mode binaries that drive a kernel driver via IOKit user clients: EDR drivers, GPU userspace stacks, USB/HID stacks, vendor kexts, DriverKit dexts, helper binaries that call IOServiceOpen + IOConnectCallMethod. Fires on "iokit user client", "ioconnect call", "external method", "iokit selector hunt", "kernel driver user surface".

2026-05-08
Showing top 8 of 37 collected skills in this repository.
Showing 2 of 2 repositories
All repositories loaded