Skip to main content
在 Manus 中运行任何 Skill
一键导入
UnsaltedHash42
GitHub 创作者资料

UnsaltedHash42

按仓库查看 2 个 GitHub 仓库中的 38 个已收集 skills。

已收集 skills
38
仓库
2
更新
2026-05-22
仓库浏览

仓库与代表性 skills

offensive-macos-lab-roster
信息安全分析师

Use when choosing or adding macOS research machines: primary, crash-test, cross-platform Apple Silicon, and Intel baseline. Fires on "add a lab machine", "which machine should run this", "primary lab host", "crash-test", "Intel baseline", and "cross-platform verification".

2026-05-14
offensive-macos-tooling-ghidra-headless
信息安全分析师

Use when driving Ghidra headless from Cursor for macOS reverse engineering: opening Mach-O binaries, listing functions, decompiling by address, running custom Ghidra scripts, or doing breadth sweeps across many targets. Fires on "ghidra-mcp", "decompile with Ghidra", "run a Ghidra script", "list functions in this binary", and systemic-class scan setup.

2026-05-13
offensive-macos-bundle-intake
信息安全分析师

Use when starting a macOS reversing pass from an app bundle, installer, framework, XPC bundle, helper, or bare binary path. Fires on "start target", "inventory this app", "point at this bundle", "begin PASS", and "target intake".

2026-05-13
offensive-macos-vuln-ontology
信息安全分析师

Use when mapping a macOS target's attack surfaces to reusable vulnerability classes, generating hunt hypotheses for a new third-party app, or deciding which playbook or scanner applies. Fires on "vulnerability ontology", "bug-class map", "what bug classes apply", "generate hypotheses", and "classify this macOS surface".

2026-05-13
offensive-macos-electron-surface-pack
信息安全分析师

Use when a macOS target appears to be Electron-based and needs ASAR, package, preload, IPC, native module, fuse, sandbox, or update review.

2026-05-13
offensive-macos-station-topology
信息安全分析师

Use when a question touches the lab topology: what runs on the workstation, what runs on the primary lab host, how `ghidra-mcp` and `macre-vm-mcp` are wired, how to start a findings repo, which machine role to use, why Hopper is manual-only, or how to troubleshoot MCP/SSH/script sync failures.

2026-05-13
offensive-macos-source-binary-correlation
信息安全分析师

Use for open-source or in-house macOS targets where source is available but the shipped binary remains the evidence source of truth.

2026-05-08
offensive-macos-hunt-iokit-userclient
信息安全分析师

Use when auditing user-mode binaries that drive a kernel driver via IOKit user clients: EDR drivers, GPU userspace stacks, USB/HID stacks, vendor kexts, DriverKit dexts, helper binaries that call IOServiceOpen + IOConnectCallMethod. Fires on "iokit user client", "ioconnect call", "external method", "iokit selector hunt", "kernel driver user surface".

2026-05-08
当前展示该仓库 Top 8 / 37 个已收集 skills。
已展示 2 / 2 个仓库
已展示全部仓库