Skip to main content
Manus에서 모든 스킬 실행
원클릭으로
GitHub 저장소

roorecon

roorecon에는 dariushoule에서 수집한 skills 16개가 있으며, 저장소 수준 직업 범위와 사이트 내 skill 상세 페이지를 제공합니다.

수집된 skills
16
Stars
1
업데이트
2026-07-06
Forks
0
직업 범위
직업 카테고리 4개 · 100% 분류됨
저장소 탐색

이 저장소의 skills

hashcat
정보 보안 분석가

Offline password-hash cracking with hashcat on the host GPU, for authorized pentesting and CTF. Use to identify an unknown hash's type, pick the right hashcat mode, fetch a wordlist, and run a sensible wordlist→rules→mask attack ladder. Triggers on "help me crack this hash", "crack this hash", "crack this NTLM/NetNTLMv2/kerberoast/AS-REP hash", "what hashcat mode is this", "identify this hash", "hashcat", "crack the roast".

2026-07-06
linux-privesc
정보 보안 분석가

Linux local privilege escalation methodology for authorized pentesting and CTF — turn a foothold shell (often a low-priv/service account like www-data) into root. Use after landing any non-root shell on a Linux host and you need to escalate: enumerate the local attack surface (sudo, SUID/SGID, capabilities, cron/timers, writable files, internal root services, credential reuse, kernel) and exploit the weakest link. Triggers on "privesc", "privilege escalation", "I have a shell now what", "escalate to root", "get root", "I'm www-data", "root this box", "linpeas", "sudo -l", "SUID", "GTFOBins".

2026-07-06
browse
소프트웨어 개발자

Drive a real web browser as a companion to the operator during authorized pentesting/CTF — a host Chrome routed through the VPN that both the human and the agent can control over CDP (Playwright MCP). Use to explore a web app interactively, reproduce/poke at flows, enumerate authenticated areas after the operator logs in, capture network/console, and turn what's seen into recon/exploit leads. Triggers on "open a browser", "browse to", "drive the browser", "poke around the web app", "click through the app", "log in and explore", "look at this page in a browser", "use the browser".

2026-06-28
recon
정보 보안 분석가

Network, service, and web enumeration for authorized pentesting and CTF. Use when starting an engagement or CTF box and you need to map attack surface — discover open ports, fingerprint services, enumerate web apps, and triage what to attack first. Triggers on "recon", "enumerate", "scan", "what ports are open", "where do I start on this box/target".

2026-06-28
retro
기타 컴퓨터 관련 직업

Post-engagement retrospective that turns one run's operator↔agent interactions into durable improvements to this repo's skills, runbooks, and tooling. Use at the end of an engagement (after the work, ideally before teardown wipes scratch) to refine skills, extract runbooks, prune box-specific dead weight, propose new skills/tools, and fix the rough edges where the agent tripped. Proposal-first — produces a reviewed changeset the operator approves before anything is written. Triggers on "retro", "retrospective", "debrief", "post-mortem", "what did we learn", "improve the skills", "update the playbooks", "capture lessons", "tune the skills from this engagement".

2026-06-22
wordlists
정보 보안 분석가

Pick and fetch the right SecLists wordlist on demand for content discovery, fuzzing, subdomain/vhost enum, parameter mining, default-cred spraying, and payload injection (LFI/SSRF/SQLi/XSS), for authorized pentesting and CTF. Use when a fuzz/brute job needs a list the baked tool images don't already carry, or when choosing which list fits the task. Triggers on "which wordlist", "find a wordlist", "seclists", "content discovery list", "api wordlist", "parameter wordlist", "fuzz list", "pull down a wordlist", "bigger wordlist".

2026-06-22
cloud
정보 보안 분석가

Cloud-emulator and AWS-compatible-API attack methodology for authorized pentesting and CTF. Use when a target exposes an AWS-shaped API (LocalStack, moto, or a custom/look-alike mock), an instance metadata service (IMDS / 169.254.169.254) reachable via SSRF, or you hold cloud credentials and need to map principals, abuse a cloud service, and escalate. Triggers on "cloud", "AWS", "IMDS", "metadata service", "LocalStack", "moto", "S3/SQS/STS/IAM endpoint", "cloud creds", "instance profile", "I have an access key", "cloud-emulator box".

2026-06-22
vuln-research
정보 보안 분석가

CVE and public-exploit (PoC) research for authorized pentesting and CTF. Use after recon fingerprints a service/version to find known vulnerabilities and working exploits — GitHub PoCs, Exploit-DB, Metasploit modules — ranked by exploitability. Also sharpens web fingerprints (versions) before lookup. Triggers on "CVE", "known vulnerabilities", "vuln research", "vuln lookup", "exploits for <service>", "is X vulnerable", "public PoC", "searchsploit", "find exploits", "what can I exploit".

2026-06-21
catch
정보 보안 분석가

Persistent, shared reverse-shell catcher for authorized pentesting and CTF — both the operator and the agent can drop in and out of the same caught shell, with built-in upload/download. Use after finding an RCE/command-injection to receive a reverse shell that survives either party detaching, drive it together, and move files. Triggers on "catch a shell", "set up a listener", "reverse shell handler", "pwncat", "I need a shell catcher", "upload/download to the target", "stage a tool onto the target".

2026-06-20
teardown
네트워크·컴퓨터 시스템 관리자

Cleanly shut down a RooRecon engagement — close the browser, drop the SOCKS proxy and VPN tunnel, tidy runtime scratch out of the working tree, and confirm nothing is left running. Use when the operator says to clean up, shut down, tear down, wrap up, or stop everything at the end of a session. Triggers on "clean up", "shut down", "shut things down", "tear down", "wrap up", "stop everything", "we're done", "end the engagement".

2026-06-16
ad
정보 보안 분석가

Active Directory enumeration and attack-path runbook for authorized pentesting and CTF. Use after recon spots a Domain Controller (Kerberos+LDAP+SMB) or when you hold domain credentials and need to map users, groups, shares, ACLs, delegation, AD CS, and privesc paths to Domain Admin. Triggers on "active directory", "domain controller", "I have domain creds", "kerberoast", "asreproast", "bloodhound", "ADCS / certipy", "dMSA / BadSuccessor", "DCSync", "secretsdump", "evil-winrm", "what can I do on this DC".

2026-06-16
bloodhound
정보 보안 분석가

Stand up BloodHound Community Edition locally and load AD collection data so the operator can see the attack graph. Use to ingest an existing SharpHound/rusthound/nxc collection zip (or collect one given domain creds) and open BloodHound in the browser to explore paths to Domain Admin. Triggers on "bloodhound", "open bloodhound", "visualize the domain/AD", "graph the domain", "show me the attack paths", "load this collection", "ingest the zip", "path to DA in a graph".

2026-06-16
dirbust
정보 보안 분석가

Recursive web directory and file brute-forcing (content discovery) for authorized pentesting and CTF. Use after finding an http/https service to discover hidden paths, admin panels, backups, and API routes. Triggers on "dirbust", "directory brute", "content discovery", "find hidden directories/files", "gobuster dir", "fuzz paths/endpoints".

2026-06-16
sqlmap
정보 보안 분석가

Automated SQL injection detection and exploitation with sqlmap, for authorized pentesting and CTF. Use after recon/dirbust finds a parameter or endpoint that looks injectable (or a known SQLi CVE) to confirm the injection, enumerate the database, and dump tables/credentials. Triggers on "sqlmap", "SQL injection", "SQLi", "dump the database", "dump the users table", "is this parameter injectable", "extract creds via SQLi", "blind SQL injection".

2026-06-16
wintools
정보 보안 분석가

Fetch prebuilt Windows offensive tooling (GhostPack/Rubeus, SharpHound, Certify, Seatbelt, Inveigh, the *Potato suite, …) from the Forge registry into a shared, off-host /tools volume, for authorized pentesting and CTF. Use when you need a Windows .NET tool for a target and don't want the binary touching your host (EDR/false-positive safety). Triggers on "grab a windows tool", "download Rubeus/SharpHound/Certify/Seatbelt", "I need <SharpX> for the box", "get a forge package", "windows tooling", "prebuilt offensive .NET binary".

2026-06-16
memforensics
정보 보안 분석가

Offline memory-image forensics for authorized pentesting and CTF — extract credentials and artifacts from RAM dumps, VM memory snapshots, and lsass minidumps with volatility3. Use when loot includes a memory image (.vmem/.vmsn/.dmp/.raw/hiberfil.sys) or an lsass dump and you need hashes, LSA secrets, cached domain creds, plaintext passwords, or process/registry artifacts out of it. Triggers on ".vmem", "memory dump", "RAM image", "VM snapshot", "lsass dump", "hiberfil", "memory forensics", "volatility", "extract creds from memory", "what's in this dump".

2026-06-14