Skip to main content
Manusで任意のスキルを実行
ワンクリックで
GitHub リポジトリ

skills

skills には crtvrffnrt から収集した 21 個の skills があり、リポジトリ単位の職業カバレッジとサイト内 skill 詳細ページを表示します。

収集済み skills
21
Stars
2
更新
2026-07-08
Forks
0
職業カバレッジ
1 件の職業カテゴリ · 100% 分類済み
リポジトリエクスプローラー

このリポジトリの skills

pentest-shodan-helper
情報セキュリティアナリスト

Shodan CLI-only search workflow for query design, filter selection, count/stats validation, and search-result retrieval through /root/.local/bin/shodan.

2026-07-08
pentest-cve-reverse-engineer
情報セキュリティアナリスト

Manual vulnerability research skill for finding advisories, downloading affected and fixed artifacts, diffing patches, confirming root cause, and writing reliable reports across products and technologies.

2026-07-08
pentest-gemini-sub-htb
情報セキュリティアナリスト

Controlled lab skill for Hack The Box, CTF, and private lab workflows from reconnaissance, enumeration, vulnerability research, exploitation, foothold, and privilege escalation through evidence consolidation.

2026-07-03
incident-response-fileanalyser
情報セキュリティアナリスト

Static malware reverse-engineering and threat-intelligence triage for unknown files, Windows EXE/PE binaries, scripts, archives, ISOs, JavaScript, PowerShell, documents, and unpacked payloads. Use when a user provides a sample path, hash, filename, or file and asks whether it is malicious, benign, suspicious, contains IoCs, or should be reverse engineered with Ghidra, strings, capa, YARA, public TI, and structured phase artifacts.

2026-07-03
incident-response-bec
情報セキュリティアナリスト

BEC and AiTM incident-response skill for suspicious sign-ins, mailbox abuse, forwarding, inbox rules, session theft, token replay, consent abuse, and secondary phishing.

2026-07-03
incident-response-main
情報セキュリティアナリスト

Defensive incident-response companion for Microsoft Entra ID, Microsoft 365, Defender, and mixed identity or endpoint incidents. Use for sign-in triage, public-IP enrichment, initial scoping, containment planning, and analyst-ready notes.

2026-07-03
incident-response-report
情報セキュリティアナリスト

Incident-response reporting skill for decision-ready summaries, timelines, containment records, executive handoff, remediation plans, and unresolved evidence gaps.

2026-07-03
pentest-advanced-access-control-auditor
情報セキュリティアナリスト

Focused authorization assessment for access control, IDOR, BOLA, BFLA, RBAC, object ownership, function authorization, tenant isolation, and horizontal or vertical privilege escalation. Uses paired roles, alternate objects, methods, and controls to prove boundaries safely.

2026-07-03
pentest-authentication-authorization-review
情報セキュリティアナリスト

Authentication and authorization security assessment for sessions, tokens, MFA, account takeover, IDOR, BOLA, BFLA, privilege escalation, tenant isolation, and identity boundary validation. Hands off to recon, input/protocol, access-control deep dive, exploit, or reporting workflows when those become the owner phase.

2026-07-03
pentest-business-logic-abuse
情報セキュリティアナリスト

Business logic and workflow abuse assessment for state-machine manipulation, race conditions, replay, quota abuse, order-of-operations flaws, delegated execution abuse, and unauthorized state transitions. Hands off to recon, input/protocol, exploit, or reporting workflows when those become the owner phase.

2026-07-03
pentest-cve-vulnerability-research-helper
情報セキュリティアナリスト

CVE and vulnerability research skill for exact CVE lookup, product/version applicability, exploit maturity, KEV/PoC status, source ranking, contradiction handling, and non-destructive validation guidance.

2026-07-03
pentest-evidence-structuring-report-synthesis
情報セキュリティアナリスト

Evidence structuring and report synthesis for confirmed findings, severity ranking, remediation guidance, executive summaries, technical appendices, and unresolved evidence gaps. Hands off to live validation workflows when proof is incomplete.

2026-07-03
pentest-exploit-execution-payload-control
情報セキュリティアナリスト

Deterministic exploit execution and payload control from validated primitives. Use for exploit implementation, payload hardening, chaining confirmed weaknesses, post-exploitation proof, controlled impact demonstration, reliability notes, and rollback or containment planning.

2026-07-03
pentest-gemini-az
情報セキュリティアナリスト

Azure, Microsoft 365, Microsoft Graph, and Entra ID operator skill using the current Azure CLI session and `az rest` for scoped read, list, create, update, delete, and evidence collection tasks.

2026-07-03
pentest-hacktricks-finder
情報セキュリティアナリスト

Support skill for HackTricks technique research, payload ideas, bypasses, prerequisites, caveats, and edge-case behavior across web, network, cloud, and application security topics. Use as owner only when research is the current blocker.

2026-07-03
pentest-input-protocol-manipulation
情報セキュリティアナリスト

Input validation and protocol manipulation assessment for injection, parser differential testing, request smuggling, method tampering, header confusion, serialization abuse, and payload mutation. Hands off to authz, business-logic, exploit, or reporting workflows when those become the owner phase.

2026-07-03
pentest-osint-linkedin
情報セキュリティアナリスト

Authenticated LinkedIn OSINT helper using local `cookies.txt` and bundled scripts for people, company, role, certification, post, and network-context research.

2026-07-03
pentest-outbound-interaction-oob-detection
情報セキュリティアナリスト

Outbound interaction and OOB validation for SSRF callbacks, blind XSS beacons, webhook abuse, XXE/OOB behavior, DNS/HTTP/HTTPS callback correlation, asynchronous server-side interaction proof, and egress validation.

2026-07-03
pentest-recon-surface-analysis
情報セキュリティアナリスト

Reconnaissance and attack-surface mapping for endpoint discovery, asset inventory, service enumeration, technology fingerprinting, control-plane surfaces, trust boundaries, and prioritized next tests.

2026-07-03
pentest-web-application-logic-mapper
情報セキュリティアナリスト

Web application logic mapper for spidering, crawling, hidden API discovery, workflow mapping, state-machine analysis, route relationships, and handoff targets for authz, business logic, XSS, input/protocol, OOB, CVE, exploit, or reporting workflows.

2026-07-03
pentest-xss
情報セキュリティアナリスト

XSS assessment skill for reflected XSS, stored XSS, DOM XSS, blind XSS, CSP bypass, WAF bypass, source-to-sink analysis, browser context validation, safe payload design, and evidence collection.

2026-07-03
skills GitHub Agent Skills | SkillsMP