一键在 Manus 中运行任何 Skill

pentest-config-hardening

星标284

分支55

更新时间2026年2月11日 09:17

Security header auditing, TLS configuration testing, HTTP method analysis, CSP bypass assessment, and deployment hardening verification.

安装

用 Codex 或 Claude 帮你安装复制这段 Prompt，粘贴到 Codex、Claude 或其他助手里，让它检查 Skill 页面并帮你完成安装。

在 Manus 中运行

来源

jd-opensource

jd-opensource/JoySafeter

打开 GitHub 仓库查看创作者相关仓库

下载

在 Manus 中运行

Pentest Config Hardening

Purpose

Shannon checks only 2 of 14 WSTG-CONF items. The remaining 12 are "low-hanging fruit" findings expected in every professional pentest report — straightforward to test systematically.

Prerequisites

Authorization Requirements

Written authorization with infrastructure testing scope
Target URL list for all web-facing endpoints
CDN/WAF awareness — some headers may be set by infrastructure, not application

Environment Setup

testssl.sh for comprehensive TLS analysis
nmap with ssl-enum-ciphers script
curl for manual header inspection
nuclei with misconfig templates

Core Workflow

HTTP Security Headers: Audit HSTS (+ preload), CSP policy analysis, X-Content-Type-Options, X-Frame-Options, Referrer-Policy, Permissions-Policy, CORP/COEP/COOP (WSTG-CONF-07/14).
TLS Configuration: Protocol versions (TLS 1.0/1.1 deprecation), cipher suite strength, certificate validity, HSTS preload status, certificate transparency.
HTTP Method Handling: OPTIONS enumeration, PUT/DELETE on static resources, TRACE for XST, method override headers (WSTG-CONF-06).
Infrastructure Exposure: Admin interfaces (WSTG-CONF-05), default credentials on management consoles, exposed monitoring endpoints (/metrics, /health, /debug).
Cloud Storage Misconfig: Public S3 buckets, Azure blob containers, GCP storage referenced in app code or responses (WSTG-CONF-11).
CSP Bypass Analysis: unsafe-inline, unsafe-eval, overly broad source lists, JSONP on allowed domains, missing base-uri (WSTG-CONF-12).
Cookie Security: Secure flag, HttpOnly flag, SameSite attribute, cookie scope, session cookie entropy.

WSTG Coverage

WSTG ID	Test Name	Status
WSTG-CONF-02	Test Application Platform Configuration	✅
WSTG-CONF-03	Test File Extensions Handling	✅
WSTG-CONF-04	Review Old Backup and Unreferenced Files	✅
WSTG-CONF-05	Enumerate Infrastructure and Admin Interfaces	✅
WSTG-CONF-06	Test HTTP Methods	✅
WSTG-CONF-07	Test HTTP Strict Transport Security	✅
WSTG-CONF-08	Test RIA Cross Domain Policy	✅
WSTG-CONF-09	Test File Permission	✅
WSTG-CONF-11	Test Cloud Storage	✅
WSTG-CONF-12	Test Content Security Policy	✅
WSTG-CONF-13	Test for Subdomain Takeover	✅
WSTG-CONF-14	Test Security Headers	✅

Tool Categories

Category	Tools	Purpose
TLS Testing	testssl.sh, nmap ssl-enum-ciphers	Protocol and cipher analysis
Header Audit	SecurityHeaders.com API, Mozilla Observatory	Security header grading
Method Testing	curl, nmap http-methods	HTTP method enumeration
CSP Analysis	CSP Evaluator, custom scripts	CSP bypass assessment
Cloud Storage	S3Scanner, cloud_enum	Public bucket detection
Subdomain	subjack, can-i-take-over-xyz	Subdomain takeover detection

References

references/tools.md - Tool function signatures and parameters
references/workflows.md - Attack pattern definitions and test vectors

同仓库更多 Skills

同仓库

skill-creator

jd-opensource/JoySafeter

Guide for creating effective skills. This skill should be used when users want to create a new skill (or update an existing skill) that extends an agent's capabilities with specialized knowledge, workflows, or tool integrations.

2026-03-26284

openclaw-security-checker

jd-opensource/JoySafeter

OpenClaw 安全检测工具，基于安全实践指南验证配置安全、权限隔离、网络策略、日志审计和运行时完整性

2026-03-13284

openclaw-threat-detect

jd-opensource/JoySafeter

OpenClaw 攻击模式检测工具，识别数据外传、反弹Shell、文件泄露、Prompt注入、供应链投毒等高危行为，支持 MITRE ATT&CK 映射

2026-03-13284

skill-security-auditor

jd-opensource/JoySafeter

OpenClaw Skills 全方位安全审计工具，检测供应链投毒、Prompt注入、恶意代码模式、权限越权和依赖风险

2026-03-13284

planning-with-files

jd-opensource/JoySafeter

Implements Manus-style file-based planning for complex tasks. Creates task_plan.md, findings.md, and progress.md. Use when starting complex multi-step tasks, research projects, or any task requiring >5 tool calls. Now with automatic session recovery after /clear.

2026-02-13284

pentest-ai-llm-security

jd-opensource/JoySafeter

AI/LLM application security testing — prompt injection, jailbreaking, data exfiltration, and insecure output handling per OWASP LLM Top 10.

2026-02-11284

name	pentest-config-hardening
description	Security header auditing, TLS configuration testing, HTTP method analysis, CSP bypass assessment, and deployment hardening verification.

Pentest Config Hardening

Purpose

Shannon checks only 2 of 14 WSTG-CONF items. The remaining 12 are "low-hanging fruit" findings expected in every professional pentest report — straightforward to test systematically.

Prerequisites

Authorization Requirements

Written authorization with infrastructure testing scope
Target URL list for all web-facing endpoints
CDN/WAF awareness — some headers may be set by infrastructure, not application

Environment Setup

testssl.sh for comprehensive TLS analysis
nmap with ssl-enum-ciphers script
curl for manual header inspection
nuclei with misconfig templates

Core Workflow

HTTP Security Headers: Audit HSTS (+ preload), CSP policy analysis, X-Content-Type-Options, X-Frame-Options, Referrer-Policy, Permissions-Policy, CORP/COEP/COOP (WSTG-CONF-07/14).
TLS Configuration: Protocol versions (TLS 1.0/1.1 deprecation), cipher suite strength, certificate validity, HSTS preload status, certificate transparency.
HTTP Method Handling: OPTIONS enumeration, PUT/DELETE on static resources, TRACE for XST, method override headers (WSTG-CONF-06).
Infrastructure Exposure: Admin interfaces (WSTG-CONF-05), default credentials on management consoles, exposed monitoring endpoints (/metrics, /health, /debug).
Cloud Storage Misconfig: Public S3 buckets, Azure blob containers, GCP storage referenced in app code or responses (WSTG-CONF-11).
CSP Bypass Analysis: unsafe-inline, unsafe-eval, overly broad source lists, JSONP on allowed domains, missing base-uri (WSTG-CONF-12).
Cookie Security: Secure flag, HttpOnly flag, SameSite attribute, cookie scope, session cookie entropy.

WSTG Coverage

WSTG ID	Test Name	Status
WSTG-CONF-02	Test Application Platform Configuration	✅
WSTG-CONF-03	Test File Extensions Handling	✅
WSTG-CONF-04	Review Old Backup and Unreferenced Files	✅
WSTG-CONF-05	Enumerate Infrastructure and Admin Interfaces	✅
WSTG-CONF-06	Test HTTP Methods	✅
WSTG-CONF-07	Test HTTP Strict Transport Security	✅
WSTG-CONF-08	Test RIA Cross Domain Policy	✅
WSTG-CONF-09	Test File Permission	✅
WSTG-CONF-11	Test Cloud Storage	✅
WSTG-CONF-12	Test Content Security Policy	✅
WSTG-CONF-13	Test for Subdomain Takeover	✅
WSTG-CONF-14	Test Security Headers	✅

Tool Categories

Category	Tools	Purpose
TLS Testing	testssl.sh, nmap ssl-enum-ciphers	Protocol and cipher analysis
Header Audit	SecurityHeaders.com API, Mozilla Observatory	Security header grading
Method Testing	curl, nmap http-methods	HTTP method enumeration
CSP Analysis	CSP Evaluator, custom scripts	CSP bypass assessment
Cloud Storage	S3Scanner, cloud_enum	Public bucket detection
Subdomain	subjack, can-i-take-over-xyz	Subdomain takeover detection

References

references/tools.md - Tool function signatures and parameters
references/workflows.md - Attack pattern definitions and test vectors