Skip to main content
Ejecuta cualquier Skill en Manus
con un clic
Repositorio de GitHub

night-shift-security

night-shift-security contiene 30 skills recopiladas de tradewife, con cobertura ocupacional por repositorio y páginas de detalle dentro del sitio.

skills recopiladas
30
Stars
0
actualizado
2026-07-12
Forks
0
Cobertura ocupacional
2 categorías ocupacionales · 100% clasificado
explorador de repositorios

Skills en este repositorio

onchain-asset-tracing
Analistas de seguridad de la información

Practitioner-elevated asset tracing patterns from SlowMist Crypto-Asset-Tracing-Handbook. Provides canonical property tables for obfuscation patterns (peel chains, mixers, bridge hops), address behavior clustering/risk profiling, cross-chain reconstruction workflows. Hard-first on behavioral + flow invariants. Integrates with codegraph-x-ray, deep-dive-handoff, and bounty forensics. Includes reference implementation for mixer deposit/withdrawal clustering. Trigger: alpha-miner on tracing handbook or similar.

2026-07-12
modular-analysis-skill
Desarrolladores de software

Drop-in skill adapted from Glider query engine for static analysis, taint tracking, CFG/DFG traversal in bug bounty. Supports lazy reference loading, creativity layer for audited targets, integrates with bounty-loop. EVM priority with Solana compatibility.

2026-07-10
runtime-cache-invariant-miner
Desarrolladores de software

Use for mining validator/runtime/cache/storage-key coherence bugs in blockchain clients, VMs, program loaders, bridge runtimes, and execution harnesses. Hard-first on stale cache, recycled identifier, partial flush, epoch/generation drift, mempool/order-dependent runtime state, and storage-key confusion. Trigger on runtime cache invariant, stale cache bug, VM storage confusion, client cache coherence, Aptos-style hijack, validator-local state, epoch-boundary bug, or when alpha-miner extracts runtime/client exploit engineering.

2026-07-08
vault-pattern-match
Analistas de seguridad de la información

Cross-references a graphified target codebase (codegraph-x-ray output) against the local AuditVault corpus to surface structurally analogous historical vulnerabilities. Run after codegraph-x-ray has completed and produced invariants.md and property_candidates.md. Produces ranked pattern-match hits with per-finding graph anchor evidence. Pattern matches are advisory signals only — never evidence of exploitability and never a substitute for live reproduction or submission-gate validation.

2026-07-05
codegraph-x-ray
Desarrolladores de software

Combines structured codegraph intelligence with rigorous invariant synthesis. Enforces high-quality usage of codegraph to identify the Primary Target Subsystem, then applies ordered structural invariant discovery with strict verification gates. Produces categorized invariants and high-quality property candidates ready for ultrafuzz-discovery. Trigger on codegraph-x-ray, x-ray with codegraph, invariant synthesis, primary subsystem invariants.

2026-06-29
fuzz-scaffolder
Desarrolladores de software

Optional accelerator and scaffolder for ultrafuzz-discovery. Brings parallel specialized invariant discovery agents, automated harness/handler scaffolding, coverage-driven refinement loops, property tagging, and reproducible test generation helpers from high-quality EVM fuzz patterns. Designed to speed up property fan-in and executable attempts phases while preserving NSS rigor, fresh-context pass@k, adjudication, and Crucible usage. Trigger on fuzz-scaffolder, accelerate invariant discovery, generate fuzz harness, scaffold handlers.

2026-06-29
ultrafuzz-discovery
Desarrolladores de software

Use when turning a target surface into executable, repeated fuzz/invariant discovery. Applies the Monad Ultrafuzz lessons: property fan-in, strategy fan-out, fresh-context pass@k attempts, preserved failures, strict adjudication, and gate discipline.

2026-06-29
agentic-strategy-generation
Analistas de seguridad de la información

Autonomous generation of high-signal strategies and property variants. Strongly enforces Hard-First philosophy. Combines structural analysis (codegraph), corpus patterns (AuditVault/Solodit), and runtime failure feedback to propose strategies focused on the most complex, highest blast-radius subsystems first.

2026-06-27
auditvault-research
Analistas de seguridad de la información

Use after the deterministic NSS HIPIF chain to mine the local Auditware AuditVault corpus (Obsidian-style markdown) for atlas-axis metadata, severity-ranked protocol coverage, and refinement-queue anchors. Use when wiring advisory audit data into Hermes proposals or surfacing cross-protocol axis gaps. AuditVault is informational only — never a substitute for live reproduction, fork validation, deployment viability, or any submission gate.

2026-06-25
bounty-loop
Analistas de seguridad de la información

Autonomous Immunefi + Cantina hunt loop until a novel finding hits submit_now. Human gate for external post.

2026-06-25
coordinator-cycle
Analistas de seguridad de la información

Use when running multi-mission Kamino (or campaign) research via the deterministic coordinator — plan, delegate, cycle, journal.

2026-06-25
hipif
Desarrolladores de software

Hierarchical Planning and Information Folding — one consecutive Night Shift v4.2 chain (scan, Solodit corpus, semantic recon, self-interrogation, Wormhole depth, KLend depth, hunt, RSI, refine, journal). Use for nss-hipif-chain cron, manual night runs, or when the user asks for HIPIF / all-in-one loop.

2026-06-25
hypothesis-expansion
Desarrolladores de software

Use when expanding NSS attack hypotheses via Hermes delegate_task before a pipeline run. Writes hermes_proposals JSON for external provider ingestion.

2026-06-25
knowledge-campaign
Desarrolladores de software

Use when querying NSS findings store campaign stats and lineage survival analytics.

2026-06-25
lab-notebook
Desarrolladores de software

Use after every NSS scan, investigation, or triage. Write lab notebook entry comparing this run to prior runs.

2026-06-25
novel-vector-digest
Desarrolladores de software

Use when summarizing NSS novel vector catalog exports from pipeline Stage 5f outputs.

2026-06-25
operator-checkpoint
Desarrolladores de software

Persist operator state before context rollover or session end during mid-investigation hunts.

2026-06-25
operator-exploit
Desarrolladores de software

Phase C exploit execution — Foundry/Slither MCP, Anvil sandbox, PoC iteration.

2026-06-25
operator-recon
Desarrolladores de software

Discovery alpha — file triage, git patch mining, recon invariant tests before deep analysis.

2026-06-25
operator-triage
Desarrolladores de software

Phase D impact triage — oracle vs DEX divergence, TVS sibling sweep, submission readiness.

2026-06-25
recursive-improvement
Desarrolladores de software

Deterministic RSI pass — findings store signals → loop state mutations, refinement hints, improvement ledger.

2026-06-25
shoestring-pack
Desarrolladores de software

Use when exporting zero-RPC shoestring Immunefi submission pack from pipeline findings JSON.

2026-06-25
solodit-research
Desarrolladores de software

Use after the deterministic NSS HIPIF chain to mine Cyfrin Solodit findings and local Solodit pattern artifacts for untrusted, target-pinned Hermes proposal JSON. Use when creating Solodit-informed attack hypotheses, analogue research digests, or next-run proposal files from data/security_results/knowledge/solodit_patterns.jsonl.

2026-06-25
submission-reporting
Desarrolladores de software

Human-grade bounty submission report assembly after a validated finding, including eligibility, deployed-binary proof, PoC packaging, screenshots, and caveats.

2026-06-25
day-shift-cycle
Desarrolladores de software

Use at Day Shift session open and close — read plan, execute blocks, verify, self-audit, hand off to Night Shift, write next session plan.

2026-06-21
ultrafuzz-discovery
Desarrolladores de software

Use when turning a target surface into executable, repeated fuzz/invariant discovery. Applies the Monad Ultrafuzz lessons: property fan-in, strategy fan-out, fresh-context pass@k attempts, preserved failures, strict adjudication, and gate discipline.

2026-06-21
night-shift-run
Analistas de seguridad de la información

Use when running the full NSS security pipeline with Hermes expansion, triage, and optional git push after pytest.

2026-06-16
immunefi-scan
Analistas de seguridad de la información

Use when scanning curated Immunefi Solana programs with NSS zero-RPC engine. Reads latest scan report.

2026-06-15
operator-submit
Analistas de seguridad de la información

Pre-submit checklist before external Immunefi/Cantina post — scope, PoC, KYC, deposit, duplicates.

2026-06-15
investigate-from-scan
Analistas de seguridad de la información

Use after Immunefi scan to deep-dive top-ranked programs. Reads latest.json and runs full NSS pipeline per target.

2026-06-14