Skip to main content
skillsmp
在 Manus 中运行任何 Skill
一键导入
trilwu
GitHub 创作者资料

trilwu

按仓库查看 1 个 GitHub 仓库中的 16 个已收集 skills,并展示近似职业覆盖。

github/trilwu最大仓库:secskills
已收集 skills
16
仓库
1
职业领域
1
更新
2025-11-14
职业覆盖
该创作者主要覆盖的职业大类。
计算机与数学类职业
仓库分布

Skills 分布在哪些仓库

按已收集 skill 数展示主要仓库,并显示它们在该创作者目录中的占比和职业覆盖。

#01
secskills
16 个 skills · 2025-11-14
信息安全分析师
1 个职业分类 · 已分类 100%
100%占比
仓库浏览

仓库与代表性 skills

#001
secskills
16 个 skills586更新于 2025-11-14
占该创作者 100%
attacking-active-directory
信息安全分析师

Attack and enumerate Active Directory environments using Kerberos attacks (Kerberoasting, ASREPRoasting), credential dumping (DCSync, Mimikatz), lateral movement (PtH, PtT), and BloodHound analysis. Use when pentesting Windows domains or exploiting AD misconfigurations.

2025-11-14
testing-apis
信息安全分析师

Test REST and GraphQL APIs for authentication bypasses, authorization flaws, IDOR, mass assignment, injection attacks, and rate limiting issues. Use when pentesting APIs or testing microservices security.

2025-11-14
exploiting-cloud-platforms
信息安全分析师

Exploit AWS, Azure, and GCP cloud misconfigurations including S3 buckets, IAM roles, metadata services, serverless functions, and cloud-specific privilege escalation. Use when pentesting cloud environments or assessing cloud security.

2025-11-14
exploiting-containers
信息安全分析师

Escape Docker containers and exploit Kubernetes clusters using privileged containers, Docker socket access, misconfigurations, and API abuse. Use when testing container security or performing container escape.

2025-11-14
transferring-files
信息安全分析师

Transfer files between systems using HTTP, SMB, FTP, netcat, base64 encoding, and living-off-the-land techniques for both Linux and Windows. Use when moving tools or exfiltrating data.

2025-11-14
performing-reconnaissance
信息安全分析师

Perform OSINT, subdomain enumeration, port scanning, web reconnaissance, email harvesting, and cloud asset discovery for initial access. Use when gathering intelligence or mapping attack surface.

2025-11-14
escalating-linux-privileges
信息安全分析师

Escalate privileges on Linux systems using SUID/SGID binaries, capabilities, sudo misconfigurations, cron jobs, kernel exploits, and container escapes. Use when performing Linux post-exploitation or privilege escalation.

2025-11-14
testing-mobile-applications
信息安全分析师

Pentest Android and iOS mobile applications including APK analysis, dynamic analysis, SSL pinning bypass, root/jailbreak detection bypass, and mobile-specific vulnerabilities. Use when testing mobile app security or performing mobile pentesting.

2025-11-14
当前展示该仓库 Top 8 / 16 个已收集 skills。
已展示 1 / 1 个仓库
已展示全部仓库