Skip to main content
skillsmp

메뉴

Manus에서 모든 스킬 실행
원클릭으로
GitHub 저장소

community-skills

community-skills에는 autohandai에서 수집한 skills 849개가 있으며, 저장소 수준 직업 범위와 사이트 내 skill 상세 페이지를 제공합니다.

autohandai 프로필GitHub에서 보기
수집된 skills
849
Stars
6
업데이트
2026-03-18
Forks
2
직업 범위
정보 보안 분석가소프트웨어 개발자네트워크·컴퓨터 시스템 관리자시장조사 분석가·마케팅 전문가소프트웨어 품질 보증 분석가·테스터웹 개발자프로젝트 관리 전문가기타 보호 서비스 종사자
직업 카테고리 22개 · 100% 분류됨
저장소 탐색

이 저장소의 skills

triaging-vulnerabilities-with-ssvc-framework
정보 보안 분석가

Triage and prioritize vulnerabilities using CISA's Stakeholder-Specific Vulnerability Categorization (SSVC) decision tree framework to produce actionable remediation priorities.

2026-03-18
performing-soc-2-type-ii-audit-preparation
정보 보안 분석가

SOC 2 Type II audit preparation involves designing, implementing, and demonstrating the operational effectiveness of controls aligned to the AICPA Trust Services Criteria (TSC) over a defined audit pe

2026-03-18
userinterface-wiki
웹·디지털 인터페이스 디자이너

UI/UX best practices for web interfaces. Use when reviewing animations, CSS, audio, typography, UX patterns, prefetching, or icon implementations. Covers 11 categories from animation principles to typography. Outputs file:line findings.

2026-03-18
configuring-aws-verified-access-for-ztna
정보 보안 분석가

Configure AWS Verified Access to provide VPN-less zero trust network access to internal applications using identity and device posture verification with Cedar policy language.

2026-03-16
configuring-identity-aware-proxy-with-google-iap
정보 보안 분석가

Configuring Google Cloud Identity-Aware Proxy (IAP) to enforce per-request identity verification for Compute Engine, App Engine, Cloud Run, and GKE services using access levels, context-aware policies, and programmatic access with service accounts.

2026-03-16
configuring-zscaler-private-access-for-ztna
정보 보안 분석가

Configuring Zscaler Private Access (ZPA) to replace traditional VPN with zero trust network access by deploying App Connectors, defining application segments, configuring access policies based on user identity and device posture, and integrating with IdPs.

2026-03-16
deploying-cloudflare-access-for-zero-trust
정보 보안 분석가

Deploying Cloudflare Access with Cloudflare Tunnel to provide zero trust access to self-hosted and private applications, configuring identity-aware access policies, device posture checks, and WARP client enrollment for VPN replacement.

2026-03-16
deploying-palo-alto-prisma-access-zero-trust
정보 보안 분석가

Deploying Palo Alto Networks Prisma Access for SASE-based zero trust network access using GlobalProtect agents, ZTNA Connectors, security policy enforcement, and integration with Strata Cloud Manager for unified security management.

2026-03-16
deploying-tailscale-for-zero-trust-vpn
네트워크·컴퓨터 시스템 관리자

Deploy and configure Tailscale as a WireGuard-based zero trust mesh VPN with identity-aware access controls, ACLs, and exit nodes for secure peer-to-peer connectivity.

2026-03-16
implementing-beyondcorp-zero-trust-access-model
정보 보안 분석가

Implementing Google's BeyondCorp zero trust access model to eliminate implicit trust from the network perimeter, enforce identity-aware access controls using IAP, Access Context Manager, and Chrome Enterprise Premium for VPN-less secure application access.

2026-03-16
implementing-cisa-zero-trust-maturity-model
정보 보안 분석가

Implement the CISA Zero Trust Maturity Model v2.0 across the five pillars of identity, devices, networks, applications, and data to achieve progressive organizational zero trust maturity.

2026-03-16
implementing-device-posture-assessment-in-zero-trust
정보 보안 분석가

Implementing device posture assessment as a zero trust access control by integrating endpoint health signals from CrowdStrike ZTA, Microsoft Intune, and Jamf into conditional access policies that enforce compliance before granting resource access.

2026-03-16
implementing-microsegmentation-with-guardicore
정보 보안 분석가

Implementing microsegmentation using Akamai Guardicore Segmentation to map application dependencies, create granular network policies, visualize east-west traffic flows, and enforce least-privilege communication between workloads across data centers and cloud.

2026-03-16
implementing-zero-trust-dns-with-nextdns
정보 보안 분석가

Implement NextDNS as a zero trust DNS filtering layer with encrypted resolution, threat intelligence blocking, privacy protection, and organizational policy enforcement across all endpoints.

2026-03-16
implementing-zero-trust-for-saas-applications
정보 보안 분석가

Implementing zero trust access controls for SaaS applications using CASB, SSPM, conditional access policies, OAuth app governance, and session controls to enforce identity verification, device compliance, and data protection for cloud-hosted services.

2026-03-16
implementing-zero-trust-with-beyondcorp
정보 보안 분석가

Deploy Google BeyondCorp Enterprise zero trust access controls using Identity-Aware Proxy (IAP), context-aware access policies, device trust validation, and Access Context Manager to enforce identity and posture-based access to GCP resources and internal applications.

2026-03-16
implementing-zero-trust-with-hashicorp-boundary
정보 보안 분석가

Implement HashiCorp Boundary for identity-aware zero trust infrastructure access management with dynamic credential brokering, session recording, and Vault integration.

2026-03-16
performing-bluetooth-security-assessment
정보 보안 분석가

Assess Bluetooth Low Energy device security by scanning, enumerating GATT services, and detecting vulnerabilities

2026-03-16
building-patch-tuesday-response-process
정보 보안 분석가

Establish a structured operational process to triage, test, and deploy Microsoft Patch Tuesday security updates within risk-based remediation SLAs.

2026-03-16
building-vulnerability-aging-and-sla-tracking
정보 보안 분석가

Implement a vulnerability aging dashboard and SLA tracking system to measure remediation performance against severity-based timelines and drive accountability.

2026-03-16
building-vulnerability-dashboard-with-defectdojo
정보 보안 분석가

Deploy DefectDojo as a centralized vulnerability management dashboard with scanner integrations, deduplication, metrics tracking, and Jira ticketing workflows.

2026-03-16
building-vulnerability-exception-tracking-system
정보 보안 분석가

Build a vulnerability exception and risk acceptance tracking system with approval workflows, compensating controls documentation, and expiration management.

2026-03-16
bypassing-authentication-with-forced-browsing
정보 보안 분석가

Discovering and accessing unprotected pages, APIs, and administrative interfaces by enumerating URLs and bypassing authentication controls during authorized security assessments.

2026-03-16
exploiting-broken-link-hijacking
정보 보안 분석가

Discover and exploit broken link hijacking vulnerabilities by identifying references to expired domains, decommissioned cloud resources, and dead external services that can be claimed by an attacker.

2026-03-16
exploiting-http-request-smuggling
정보 보안 분석가

Detecting and exploiting HTTP request smuggling vulnerabilities caused by Content-Length and Transfer-Encoding parsing discrepancies between front-end and back-end servers.

2026-03-16
exploiting-idor-vulnerabilities
정보 보안 분석가

Identifying and exploiting Insecure Direct Object Reference vulnerabilities to access unauthorized resources by manipulating object identifiers in API requests and URLs.

2026-03-16
exploiting-insecure-deserialization
정보 보안 분석가

Identifying and exploiting insecure deserialization vulnerabilities in Java, PHP, Python, and .NET applications to achieve remote code execution during authorized penetration tests.

2026-03-16
exploiting-mass-assignment-in-rest-apis
정보 보안 분석가

Discover and exploit mass assignment vulnerabilities in REST APIs to escalate privileges, modify restricted fields, and bypass authorization controls by injecting unexpected parameters in API requests.

2026-03-16
exploiting-nosql-injection-vulnerabilities
정보 보안 분석가

Detect and exploit NoSQL injection vulnerabilities in MongoDB, CouchDB, and other NoSQL databases to demonstrate authentication bypass, data extraction, and unauthorized access risks.

2026-03-16
exploiting-oauth-misconfiguration
정보 보안 분석가

Identifying and exploiting OAuth 2.0 and OpenID Connect misconfigurations including redirect URI manipulation, token leakage, and authorization code theft during security assessments.

2026-03-16
exploiting-prototype-pollution-in-javascript
정보 보안 분석가

Detect and exploit JavaScript prototype pollution vulnerabilities on both client-side and server-side applications to achieve XSS, RCE, and authentication bypass through property injection.

2026-03-16
exploiting-race-condition-vulnerabilities
정보 보안 분석가

Detect and exploit race condition vulnerabilities in web applications using Turbo Intruder's single-packet attack technique to bypass rate limits, duplicate transactions, and exploit time-of-check-to-time-of-use flaws.

2026-03-16
exploiting-server-side-request-forgery
정보 보안 분석가

Identifying and exploiting SSRF vulnerabilities to access internal services, cloud metadata, and restricted network resources during authorized penetration tests.

2026-03-16
exploiting-sql-injection-with-sqlmap
정보 보안 분석가

Detecting and exploiting SQL injection vulnerabilities using sqlmap to extract database contents during authorized penetration tests.

2026-03-16
exploiting-template-injection-vulnerabilities
정보 보안 분석가

Detecting and exploiting Server-Side Template Injection (SSTI) vulnerabilities across Jinja2, Twig, Freemarker, and other template engines to achieve remote code execution.

2026-03-16
exploiting-type-juggling-vulnerabilities
정보 보안 분석가

Exploit PHP type juggling vulnerabilities caused by loose comparison operators to bypass authentication, circumvent hash verification, and manipulate application logic through type coercion attacks.

2026-03-16
exploiting-vulnerabilities-with-metasploit-framework
정보 보안 분석가

The Metasploit Framework is the world's most widely used penetration testing platform, maintained by Rapid7. It contains over 2,300 exploits, 1,200 auxiliary modules, and 400 post-exploitation modules

2026-03-16
exploiting-websocket-vulnerabilities
정보 보안 분석가

Testing WebSocket implementations for authentication bypass, cross-site hijacking, injection attacks, and insecure message handling during authorized security assessments.

2026-03-16
implementing-attack-path-analysis-with-xm-cyber
정보 보안 분석가

Deploy XM Cyber's continuous exposure management platform to map attack paths, identify choke points, and prioritize the 2% of exposures that threaten critical assets.

2026-03-16
implementing-cloud-vulnerability-posture-management
정보 보안 분석가

Implement Cloud Security Posture Management using AWS Security Hub, Azure Defender for Cloud, and open-source tools like Prowler and ScoutSuite for multi-cloud vulnerability detection.

2026-03-16
이 저장소에서 수집된 skills 849개 중 상위 40개를 표시합니다.