Skip to main content
Ejecuta cualquier Skill en Manus
con un clic
Repositorio de GitHub

Z3r0

Z3r0 contiene 25 skills recopiladas de yv1ing, con cobertura ocupacional por repositorio y páginas de detalle dentro del sitio.

skills recopiladas
25
Stars
503
actualizado
2026-07-08
Forks
88
Cobertura ocupacional
clasificación pendiente
explorador de repositorios

Skills en este repositorio

agent-browser-cli
sin clasificar

Use agent-browser-cli to perceive and control the supervised Chrome browser inside the sandbox, interact with pages, capture screenshots/PDFs, inspect cookies/CDP/network/console state, and troubleshoot only when needed.

2026-07-08
amass
sin clasificar

Use OWASP Amass for authorized asset discovery, domain enumeration, and DNS intelligence on in-scope targets.

2026-07-08
apktool
sin clasificar

Use apktool for authorized Android APK resource decoding, manifest review, smali inspection, rebuild checks, and static mobile artifact triage.

2026-07-08
archive-file-triage
sin clasificar

Use file, 7z, unzip, tar-compatible tools, hashes, and bounded shell inspection for safe triage of provided archives and unknown files.

2026-07-08
binwalk
sin clasificar

Use binwalk for authorized firmware, binary blob, archive, filesystem, and embedded-content triage with bounded extraction and evidence handling.

2026-07-08
checksec
sin clasificar

Use the pwntools-provided checksec CLI for authorized ELF hardening review, mitigation checks, and binary triage evidence.

2026-07-08
dns-whois
sin clasificar

Use dig, nslookup, whois, and related local CLIs for authorized DNS, WHOIS, ASN, mail, nameserver, and ownership triage.

2026-07-08
dnsx
sin clasificar

Use ProjectDiscovery dnsx for authorized batch DNS resolution, record lookup, and validation of discovered hostnames.

2026-07-08
ffuf
sin clasificar

Use ffuf for authorized web directory, parameter, and virtual-host fuzzing with bounded wordlists and rates.

2026-07-08
gdb-pwndbg
sin clasificar

Use gdb and pwndbg for authorized binary debugging, crash triage, exploit development, and runtime inspection.

2026-07-08
ghidra
sin clasificar

Use Ghidra headless analysis for authorized binary reverse engineering, decompilation, function/string/symbol export, and call graph analysis without a GUI.

2026-07-08
gobuster
sin clasificar

Use gobuster for authorized directory, DNS, and virtual-host enumeration with bounded wordlists.

2026-07-08
httpx
sin clasificar

Use ProjectDiscovery httpx for authorized HTTP probing, live host validation, response triage, and lightweight web fingerprint collection.

2026-07-08
hydra
sin clasificar

Use hydra only for authorized, bounded authentication testing with explicit targets, protocols, accounts, and rate limits.

2026-07-08
jadx
sin clasificar

Use jadx for authorized Android APK, DEX, AAR, and JAR decompilation, app logic review, API endpoint discovery, credential checks, and mobile reverse engineering.

2026-07-08
nmap
sin clasificar

Use for authorized host discovery, port scanning, service/version detection, NSE script checks, network inventory, and local network diagnostics with the nmap CLI.

2026-07-08
observer-ward
sin clasificar

Use observer_ward for authorized web application and service fingerprint identification against in-scope HTTP targets.

2026-07-08
openssl
sin clasificar

Use openssl for authorized TLS, certificate, key, CSR, digest, signature, encoding, and protocol-material inspection inside the sandbox.

2026-07-08
pwntools
sin clasificar

Use preinstalled pwntools for authorized exploit prototyping, binary interaction, cyclic patterns, packing, and shellcraft tasks.

2026-07-08
sandbox-shell
sin clasificar

Use when a task requires shell-level work inside the sandbox, including environment setup, script writing, code execution, running preinstalled programs, downloads, missing dependency setup, scanning, or browser/tool CLIs.

2026-07-08
seclists
sin clasificar

Use the built-in SecLists wordlists for authorized discovery, fuzzing, credential audits, and payload selection.

2026-07-08
sqlmap
sin clasificar

Use for authorized SQL injection testing with the sqlmap CLI, including detection, DBMS fingerprinting, request replay, and extraction checks against in-scope web targets.

2026-07-08
strace-ltrace
sin clasificar

Use strace and ltrace for authorized syscall and library-call tracing of provided binaries and processes.

2026-07-08
subfinder
sin clasificar

Use subfinder for authorized passive subdomain enumeration against in-scope domains and organization-owned assets.

2026-07-08
uv-python
sin clasificar

Use uv for missing Python dependencies, task-scoped virtual environments, temporary execution, and non-preinstalled Python tools.

2026-07-08