一键导入
redteam-exploit-validation
Focused workflow for validating exploitability safely and turning candidate issues into reproducible, bounded proof.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Focused workflow for validating exploitability safely and turning candidate issues into reproducible, bounded proof.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
Focused methodology for authorized CMS fingerprinting, component inventory, misconfiguration review, and vulnerability validation.
Focused reconnaissance workflow for authorized security assessments, bug bounty triage, lab targets, and CTF infrastructure.
Focused reporting workflow for converting verified red-team work into clear, reproducible assessment artifacts.
Expertise in offensive security research, vulnerability analysis, CMS-focused application testing, and red team operations.
Focused source-code security review workflow for web applications, CMS extensions, APIs, and supporting services.
| name | redteam-exploit-validation |
| description | Focused workflow for validating exploitability safely and turning candidate issues into reproducible, bounded proof. |
Focused workflow for validating exploitability safely and turning candidate issues into reproducible, bounded proof.
Activate when the user asks to:
Return Markdown with:
Scope and approval stateExploitability modelAffected-state evidenceProof ladderCommands / payloadsExpected outputNegative controlsCleanup and rollbackTelemetry and detection opportunitiesStop conditionsVerifier handoffReport notesPlease refer to references/poc-requirements.md for the rules governing safe Proof of Concept development.
Confirmed or partially confirmed exploitability requires:
Out-of-Band (OOB) Testing: Utilize interactsh or custom DNS logger for blind SSRF, blind RCE, and blind XXE validation.
Memory Corruption: Validate buffer overflows by confirming precise EIP/RIP overwrites, identifying bad characters, and testing ASLR/DEP bypass chains (ROP).
Blind & Time-Based Data Exfiltration: Validate blind SQLi using bit-shifting or binary search inference techniques to limit request volume and avoid WAF blocks.
Payload Naming (OPSEC): Never use blatant backdoor names like shell.php, cmd.php, or test.php. Blend into the target environment by using convincing names related to the application's context (e.g., class-wp-cache-helper.php, config-update.php, or index_backup.php).