Smart contract audit lane — Solidity/EVM pattern scanner, Slither ingestion, Foundry PoC generation, DeFi attack playbooks.
Web application exploitation — the primary category skill for all web-based attacks. This is a routing skill: read this first to identify the attack type, then load the appropriate specialized sub-skill for detailed procedures. Covers 11 technique areas across injection, file access, authentication, and API exploitation.
HTTP Request Smuggling (HRS) — front-end / back-end parser disagreement attacks that desync the proxy stack. Covers CL.TE, TE.CL, TE.TE, CL.0, HTTP/2 downgrade (h2.cl, h2.te), pipelining, and connection-state pinning. Includes a confirm-desync gate, header obfuscation catalog, and minimal raw-socket Python harnesses (no smuggler.py available in sandbox).
Use when the engagement target is an Android (APK / AAB) or iOS (IPA) application. Covers static analysis (jadx, apktool, class-dump), dynamic instrumentation via Frida and Objection, SSL-pinning bypass, root/jailbreak detection bypass, deep-link / URL-scheme abuse, exported-component attacks, IPC redirection, WebView vulnerabilities, and biometric / Face ID / Touch ID bypass.
Web application enumeration hub — directory/file fuzzing, vhost discovery, API enumeration, CMS scanning, WAF detection, auth surface mapping, cookie audit.
Evil-twin rogue AP with KARMA/Mana PNL-probe response, captive-portal credential capture, and post-association MITM for PSK/open networks. Distinct from wpa-enterprise-eap which targets 802.1X.
Top-level index for the Decepticon 802.11 wireless attack suite. Routes the WirelessOperator to the correct leaf skill based on the target AP's crypto column (PSK / SAE / MGT / WPS) and engagement posture. BLE, Zigbee, Z-Wave, LoRaWAN, and sub-GHz live under iot/ by design — link provided below to prevent duplication.
| name | contracts-overview |
| description | Smart contract audit lane — Solidity/EVM pattern scanner, Slither ingestion, Foundry PoC generation, DeFi attack playbooks. |
| metadata | {"subdomain":"smart-contracts","when_to_use":"smart contract solidity evm slither foundry defi audit lane overview routing","mitre_attack":["T1190","T1565","T1565.001"]} |
| Skill | Use for |
|---|---|
/skills/standard/contracts/reentrancy/SKILL.md | Classic + read-only reentrancy |
/skills/standard/contracts/oracle-manipulation/SKILL.md | Single-block TWAP / spot price abuse |
/skills/standard/contracts/flash-loan/SKILL.md | Flash-loan callback + unauth gadgets |
/skills/standard/contracts/access-control/SKILL.md | Missing modifiers, wrong msg.sender |
/skills/standard/contracts/upgradeable-proxy/SKILL.md | Uninitialized impl, storage clash |
/skills/standard/contracts/signature-replay/SKILL.md | Cross-chain, ecrecover zero address |
bash("find /workspace/src -name '*.sol' | head -50")solidity_scan_file on each filebash("cd /workspace && slither . --json slither.json")slither_ingest("/workspace/slither.json")kg_query(kind="vulnerability", min_severity="high") to see the highsfoundry_reentrancy_test etc.bash("forge test -vvv --match-contract Test_") to run| Impact | CVSS / Reward tier |
|---|---|
| Loss of user funds | Critical (9.8+) |
| Locked funds / permanent DoS | High (7.5-9.0) |
| Temporary DoS / griefing | Medium (5-7) |
| View-only data leak | Low (3-5) |