ワンクリックでManusで任意のスキルを実行

$pwd:

observer-ward

Name: Observer Ward
Author: yv1ing

// Use observer_ward for authorized web application and service fingerprint identification against in-scope HTTP targets.

Manusで実行

$ git log --oneline --stat

stars:187

forks:37

updated:2026年5月29日 09:12

SKILL.md

readonly

name	observer-ward
description	Use observer_ward for authorized web application and service fingerprint identification against in-scope HTTP targets.

observer_ward

Use observer_ward for authorized service and web application fingerprint identification. It is useful for identifying exposed applications, middleware, services, versions, CPE-style product context, and fingerprints from community probe data.

Skill name is observer-ward; the installed CLI command is observer_ward.

Use When

The task needs web application or service fingerprinting for in-scope targets.
Reconnaissance output from DNS, browser review, HTTP probing, or user-provided URLs needs product or technology identification.
A target list needs lightweight fingerprint triage before deeper validation.
A finding needs supporting evidence such as matched product name, version, status, title, certificate data, request/response data, or matched probe output.

Usage Rules

Work only on explicitly authorized targets.
Before constructing commands, run the installed help and use it as the source of truth:

observer_ward --help

Use -t / --target for one or more explicit targets, -l / --list for a file with one target per line, or stdin for pipeline input.
Keep target sets bounded. For large lists, write results to a file with -o / --output.
Prefer machine-readable output with --format json when downstream parsing with jq or later evidence review is needed.
Use --silent when piping results to other tools so progress logs do not mix with structured output.
Use --ir for request/response evidence and --ic for certificate evidence only when that detail is needed; both can increase output size.
Treat fingerprints as leads. Cross-check important product or version matches with headers, page content, certificates, browser output, or another tool before reporting them as confirmed.
Use --debug only for troubleshooting or evidence collection because it can expose request/response details and increase output volume.
Do not run update, plugin, daemon, MITM, webhook, API server, MCP, or Redis/asynq modes unless the user explicitly asks for that workflow and the scope permits it.

related-skills.json

同じリポジトリ

sandbox-shell.md

from "yv1ing/Z3r0"

Use when a task requires shell-level work inside the sandbox, including environment setup, script writing, code execution, running programs, downloads, package installs, scanning, or browser/tool CLIs.

2026-05-30187

httpx.md

from "yv1ing/Z3r0"

Use ProjectDiscovery httpx for authorized HTTP probing, live host validation, response triage, and lightweight web fingerprint collection.

2026-05-29187

ghidra.md

from "yv1ing/Z3r0"

Reverse engineer binaries using Ghidra's headless analyzer. Decompile executables, extract functions, strings, symbols, and analyze call graphs without GUI.

2026-05-29187

agent-browser-cli.md

from "yv1ing/Z3r0"

Use agent-browser-cli to perceive and control the supervised Chromium browser inside the sandbox, interact with pages, capture screenshots/PDFs, inspect cookies/CDP/network/console state, and troubleshoot only when needed.

2026-05-28187

sqlmap.md

from "yv1ing/Z3r0"

Use for authorized SQL injection testing with the sqlmap CLI, including detection, DBMS fingerprinting, request replay, and extraction checks against in-scope web targets.

2026-05-13187

nmap.md

from "yv1ing/Z3r0"

Use for authorized host discovery, port scanning, service/version detection, NSE script checks, network inventory, and local network diagnostics with the nmap CLI.

2026-05-13187

package.json

"author": "yv1ing"

"repository": "yv1ing/Z3r0"

GitHub リポジトリを開く Creator のリポジトリを見る

$ install --global

$ download --local

Manusで実行

observer_ward

Skill name is observer-ward; the installed CLI command is observer_ward.

Use When

The task needs web application or service fingerprinting for in-scope targets.

Reconnaissance output from DNS, browser review, HTTP probing, or user-provided URLs needs product or technology identification.

A target list needs lightweight fingerprint triage before deeper validation.

A finding needs supporting evidence such as matched product name, version, status, title, certificate data, request/response data, or matched probe output.

Usage Rules

Work only on explicitly authorized targets.

Before constructing commands, run the installed help and use it as the source of truth:

observer_ward --help

Use -t / --target for one or more explicit targets, -l / --list for a file with one target per line, or stdin for pipeline input.

Keep target sets bounded. For large lists, write results to a file with -o / --output.

Prefer machine-readable output with --format json when downstream parsing with jq or later evidence review is needed.

Use --silent when piping results to other tools so progress logs do not mix with structured output.

Use --ir for request/response evidence and --ic for certificate evidence only when that detail is needed; both can increase output size.

Treat fingerprints as leads. Cross-check important product or version matches with headers, page content, certificates, browser output, or another tool before reporting them as confirmed.

Use --debug only for troubleshooting or evidence collection because it can expose request/response details and increase output volume.

Do not run update, plugin, daemon, MITM, webhook, API server, MCP, or Redis/asynq modes unless the user explicitly asks for that workflow and the scope permits it.

observer-ward

observer_ward

Use When

Usage Rules

このリポジトリの他の Skills

このリポジトリの他の Skills

observer_ward

Use When

Usage Rules