Skip to main content
Execute qualquer Skill no Manus
com um clique
Repositório GitHub

recon-skills

recon-skills contém 129 skills coletadas de uphiago, com cobertura ocupacional por repositório e páginas de detalhe dentro do site.

skills coletadas
129
Stars
560
atualizado
2026-07-02
Forks
104
Cobertura ocupacional
4 categorias ocupacionais · 60% classificado
explorador de repositórios

Skills neste repositório

saml-sso-attack
sem classificação

Attack SAML SSO via XSW, signature strip, metadata extract.

2026-07-02
cross-attack-chains
sem classificação

Chain multiple vulns into critical impact attack paths.

2026-07-02
wordpress-full-compromise
sem classificação

Execute optimal kill chains for WordPress full compromise.

2026-07-02
docker-privesc
sem classificação

Escape Docker containers to host root via 5 techniques.

2026-07-02
attack-patterns-reference
sem classificação

Catalog: 25 attacks, 18 WP, 8 CORS to match findings.

2026-07-02
pentest-playbook
sem classificação

7-phase pentest pipeline from passive recon to exploitation.

2026-07-02
recon-playbook
sem classificação

4-phase pipeline for max findings per minute across batches.

2026-07-02
sector-recon-methodology
sem classificação

Pick sectors, compile targets, batch recon for campaigns.

2026-07-02
api-noauth-hunt
sem classificação

Exploit no-auth APIs for data theft and CRUD via probes.

2026-07-02
cache-attack
sem classificação

Poison CDN cache or deceive when X-Cache header is detected.

2026-07-02
cors-credential-wordpress
sem classificação

Exploit WP CORS credential reflection for data theft.

2026-07-02
deep-invade
sem classificação

Deep pentest WP: SSRF, plugin CVE, JS mine, port scan chain.

2026-07-02
error-log-mining
sem classificação

Mine error_log for creds, paths, SQL when leak hunt finds.

2026-07-02
exchange-owa-attack
sem classificação

Exchange/OWA NTLM AD leak, spray attack when mail subdomain.

2026-07-02
firebase-supabase-attack
sem classificação

Exploit Firebase/Supabase for data via JS config leak probe.

2026-07-02
gitlab-public-recon
sem classificação

Mine GitLab for secrets, CI tokens when subdomain found.

2026-07-02
hardcoded-credential-hunt
sem classificação

Detect hardcoded passwords in HTML forms, JavaScript, and API responses.

2026-07-02
http2-header-impersonation
sem classificação

Spoof HTTP/2 SETTINGS frames and pseudo-header order per browser profile.

2026-07-02
humanize-automation
sem classificação

Human-like mouse, keyboard and scroll behavior for behavioral bot bypass.

2026-07-02
iot-camera-recon
sem classificação

Attack cameras via RTSP, ONVIF, Axis config when 554 open.

2026-07-02
jwt-attack
sem classificação

Decode, forge, brute JWTs when Bearer auth header is seen.

2026-07-02
llm-prompt-injection
sem classificação

LLM prompt injection / system prompt extraction — 40+ technique catalog against hardened GPT-4o-class deployments. Covers direct/indirect/agentic attacks, encoding bypasses, delimiter smuggling, boolean extraction, positional enumeration, RAG poisoning, guardian-model defense patterns, and real-world cases (GeminiJack, EchoLeak, Reprompt).

2026-07-02
phpinfo-to-rce
sem classificação

Chain phpinfo to RCE via exec check when info.php exposed.

2026-07-02
port-mass-scan
sem classificação

Port scan /8-/24 with Masscan+RustScan and nmap banners.

2026-07-02
port-service-discovery
sem classificação

Nmap scan for MySQL, Redis, FTP, SSH, internal API services.

2026-07-02
s3-minio-content-type-xss
sem classificação

Exploit public bucket Content-Type override for stored XSS on target origin.

2026-07-02
scada-hikvision-isapi
sem classificação

Enumerate Hikvision ISAPI endpoints on SCADA and IoT web interfaces.

2026-07-02
source-leak-hunt
sem classificação

Mass scan for exposed env files, backups, and git configs.

2026-07-02
staging-subdomain-hunt
sem classificação

Hunt staging via crt.sh when production is WAF-hardened.

2026-07-02
stealth-browser-launch
sem classificação

Launch stealth Chromium with C++ fingerprint patches for anti-bot bypass.

2026-07-02
subdomain-enumeration
sem classificação

Map subdomains via crt.sh and subfinder at recon kickoff.

2026-07-02
tls-fingerprint-impersonation
sem classificação

Spoof TLS ClientHello and JA4 fingerprints for browser impersonation.

2026-07-02
unauth-api-flow-hijack
sem classificação

Exploit unauthenticated multi-step API flows without credentials.

2026-07-02
wordpress-plugin-hunt
sem classificação

Hunt WP plugins via REST, exploit CVEs when version known.

2026-07-02
wp-mass-recon
sem classificação

Batch WP recon: users, CORS, XMLRPC, leaks across domains.

2026-07-02
wp-plugin-rest-auth-bypass
sem classificação

Scan WordPress REST API plugin endpoints for unauthenticated state-changing operations — discover write endpoints (POST/PUT/PATCH/DELETE) exposed without auth, enumerate all plugin routes, and test for unauthorized content publishing, settings modification, and data leakage.

2026-07-02
xmlrpc-exploitation
sem classificação

Exploit XMLRPC multicall, pingback for brute force and SSRF.

2026-07-02
zimbra-attack
sem classificação

Zimbra SOAP user enum, CVE-2022-37042, SSRF when webmail.

2026-07-02
parallel-recon-triad
sem classificação

Set up and manage self-improving parallel reconnaissance agent triads — eternal overlapping waves of deep invasion, target expansion, and skill evolution. Covers the full lifecycle: spawning parallel subagents, cron orchestration, documentation structure, sector-based US target methodology, and the self-improvement feedback loop that makes the system smarter over time.

2026-07-02
cross-wave-delta-analysis
sem classificação

Compare recon waves to find NEW, REGRESSED, PERSISTENT findings.

2026-07-02
Mostrando as 40 principais de 129 skills coletadas neste repositório.