Skip to main content
Exécutez n'importe quel Skill dans Manus
en un clic
Dépôt GitHub

Ion

Ion contient 11 skills collectées depuis wl102, avec une couverture métier par dépôt et des pages de détail sur le site.

skills collectés
11
Stars
2
mis à jour
2026-05-19
Forks
0
Couverture métier
1 catégories métier · 100% classifié
explorateur de dépôts

Skills dans ce dépôt

blind-injection-automation
Analystes en sécurité de l'information

Automated tool-assisted strategies for blind injection attacks (SQL, NoSQL, command, XPath). Covers when and how to use sqlmap, custom scripting, and binary search optimization to minimize token consumption and execution time. Use when manual blind injection would require >20 sequential requests.

2026-05-19
http-request-smuggling
Analystes en sécurité de l'information

HTTP Request Smuggling (HRS) / Desync attack detection and exploitation. Covers CL.TE, TE.CL, TE.TE detection, payload crafting, and chaining with SSRF/cache poisoning. Use when front-end/back-end architecture is suspected or when HTTP parsing discrepancies exist.

2026-05-19
race-condition
Analystes en sécurité de l'information

Race condition vulnerability detection and exploitation. Covers time-of-check to time-of-use (TOCTOU), limit bypass, coupon abuse, and multi-endpoint race chains. Use when state-dependent logic (credits, inventory, votes, transfers) exists or CTF challenge involves concurrent operations.

2026-05-19
nmap
Analystes en sécurité de l'information

Canonical Nmap CLI syntax, strict staged scanning workflow, and sandbox-safe bounded scan patterns with timeout backoff.

2026-05-08
nuclei
Analystes en sécurité de l'information

Exact Nuclei command structure, template selection, staged scanning workflow, and bounded high-throughput execution controls with timeout backoff.

2026-05-08
ctf-common-patterns
Analystes en sécurité de l'information

Common CTF exploitation patterns, quick wins, and time-saving tricks for web, crypto, pwn, and misc challenges. Use when you are stuck on a CTF challenge or want to rapidly test known patterns.

2026-04-28
privilege-escalation
Analystes en sécurité de l'information

Linux and Windows privilege escalation techniques, enumeration scripts, and common misconfigurations. Use when you have obtained a low-privilege shell and need to escalate to root or SYSTEM.

2026-04-28
web-rce-chain
Analystes en sécurité de l'information

Common web-to-RCE exploitation chains and pivoting strategies. Use when you have identified a web vulnerability and need to escalate it to remote code execution.

2026-04-28
dirsearch
Analystes en sécurité de l'information

Web path scanner for finding hidden directories and files. Use when you need to brute-force discover accessible paths, admin panels, backup files, or hidden endpoints on a web server.

2026-04-19
ffuf
Analystes en sécurité de l'information

Fast web fuzzer for discovering resources, directories, virtual hosts, and parameters. Use when you need to fuzz URLs, headers, POST data, or virtual hosts with a wordlist.

2026-04-19
sqlmap
Analystes en sécurité de l'information

Automatic SQL injection and database takeover tool. Use when you suspect a web parameter is vulnerable to SQL injection and need to test, exploit, or enumerate the database.

2026-04-19