一键导入
proton
Use this skill when working with proton for sensitive information scanning — detecting API keys, tokens, credentials, and secrets in files or piped data.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Use this skill when working with proton for sensitive information scanning — detecting API keys, tokens, credentials, and secrets in files or piped data.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
Use this skill when the agent needs to understand aiscan mechanisms, available capabilities, scanner pseudo-commands, and tool invocation rules.
Use this skill to learn how to use the playwright pseudo-command for headless browsing, screenshots, network capture, and interactive vulnerability verification. Aligned with microsoft/playwright-cli conventions.
Use this skill when working with scan for the multi-stage aiscan pipeline across discovery, web probing, weak credentials, POC checks, and verification.
Use this skill when working with neutron for template-based POC execution, template filtering, and POC result analysis.
Use this skill when working with gogo for host, port, service, banner, fingerprint, or vulnerability-hint discovery.
Use katana for deep web crawling with full parameter discovery. Produces URLs with query strings, form targets, and JS endpoints that spray crawl strips.
| name | proton |
| description | Use this skill when working with proton for sensitive information scanning — detecting API keys, tokens, credentials, and secrets in files or piped data. |
| internal | true |
Proton is the sensitive information scanner in aiscan. It detects API keys, tokens, credentials, private keys, database connection strings, and other secrets using template-based pattern matching (nuclei-style).
proton -i /path/to/project
proton -i . -c keys,spray
proton -i /etc --severity high
Proton accepts piped input from any shell command or pseudo-command:
curl -s http://target/api/config | proton
cat .env.production | proton
spray -u http://target | proton --tags spray
proton -i . --tags cloud # only cloud provider rules
proton -i . --id aws-access-key # specific rule
proton -i . --exclude-id ip-with-port # skip a rule
proton -i . -s high --exclude-severity info # severity filter
proton --template-list -c keys # list available rules
proton -i . -e "AKIA[0-9A-Z]{16}"
proton -i . -e "password\s*[:=]" -e "secret\s*[:=]"
proton -i . -e "custom_token_[a-z0-9]{32}" --ext .go,.py
proton -i . -t ./custom-rules
proton -i . -t ./rules -c keys # merge with builtin
proton -i . -j # JSON Lines
proton -i . -o findings.txt # save to file
proton -i . -j -o findings.jsonl # JSON to file
proton -i . --silent # findings only, no stats
proton -l paths.txt -c keys
proton -l targets.txt --severity high -j