一键在 Manus 中运行任何 Skill

$pwd:

vulnerability-analysis

Name: Vulnerability Analysis
Author: hypnguyen1209

// Expert-level source code security auditing — taint analysis, memory safety, injection classes, auth flaws, crypto weaknesses, concurrency bugs, supply chain risks

在 Manus 中运行

$ git log --oneline --stat

stars:250

forks:42

updated:2026年5月28日 07:23

SKILL.md

readonly

related-skills.json

同仓库

recon-osint.md

from "hypnguyen1209/offensive-claude"

Comprehensive reconnaissance and OSINT — subdomain enumeration, CVE lookup, breach intelligence, DNS history, social profiling, attack surface mapping

2026-05-28250

initial-access.md

from "hypnguyen1209/offensive-claude"

Modern initial access techniques — phishing, payload delivery, HTML smuggling, ISO/IMG bypass, supply chain attacks, credential stuffing, exposed service exploitation

2026-05-28250

malware-analysis.md

from "hypnguyen1209/offensive-claude"

Static/dynamic malware analysis, YARA rules, sandbox evasion detection, behavioral profiling, unpacking, anti-analysis bypass

2026-05-28250

reverse-engineering.md

from "hypnguyen1209/offensive-claude"

Binary analysis, disassembly, decompilation, firmware RE, protocol reverse engineering, anti-reversing bypass, malware unpacking

2026-05-28250

windows-boundaries.md

from "hypnguyen1209/offensive-claude"

Windows security boundary attacks — kernel/user boundary, sandbox escape, AppContainer/LPAC bypass, COM/RPC boundary, integrity levels, PPL exploitation

2026-05-28250

ai-security.md

from "hypnguyen1209/offensive-claude"

AI/ML security assessment — prompt injection, jailbreak detection, RAG poisoning, model extraction, adversarial examples, supply chain risks in ML pipelines

2026-05-28250

package.json

"author": "hypnguyen1209"

"repository": "hypnguyen1209/offensive-claude"

打开 GitHub 仓库查看创作者相关仓库

$ install --global

$ download --local

在 Manus 中运行

$ useful --forSOC

信息安全分析师计算机与数学类职业15-1212L4

name	vulnerability-analysis
description	Expert-level source code security auditing — taint analysis, memory safety, injection classes, auth flaws, crypto weaknesses, concurrency bugs, supply chain risks
metadata	{"type":"offensive","phase":"analysis"}
kill_chain	{"phase":["recon","exploit"],"step":[1,4],"attck_tactics":["TA0043","TA0002"]}
depends_on	["recon-osint"]
feeds_into	["exploit-development","web-pentest"]
inputs	["attack_surface_map","source_code"]
outputs	["vulnerability_list","taint_analysis_report"]

Priority	Category	Impact
1	Taint Analysis	CRITICAL
2	Memory Safety	CRITICAL
3	Injection Attacks	CRITICAL
4	Authentication & Authorization	HIGH
5	Cryptographic Vulnerabilities	HIGH
6	Concurrency & Race Conditions	HIGH
7	Web & API Security	MEDIUM-HIGH
8	Supply Chain & Dependencies	MEDIUM

name	vulnerability-analysis
description	Expert-level source code security auditing — taint analysis, memory safety, injection classes, auth flaws, crypto weaknesses, concurrency bugs, supply chain risks
metadata	{"type":"offensive","phase":"analysis"}
kill_chain	{"phase":["recon","exploit"],"step":[1,4],"attck_tactics":["TA0043","TA0002"]}
depends_on	["recon-osint"]
feeds_into	["exploit-development","web-pentest"]
inputs	["attack_surface_map","source_code"]
outputs	["vulnerability_list","taint_analysis_report"]

Priority	Category	Impact
1	Taint Analysis	CRITICAL
2	Memory Safety	CRITICAL
3	Injection Attacks	CRITICAL
4	Authentication & Authorization	HIGH
5	Cryptographic Vulnerabilities	HIGH
6	Concurrency & Race Conditions	HIGH
7	Web & API Security	MEDIUM-HIGH
8	Supply Chain & Dependencies	MEDIUM

vulnerability-analysis

Vulnerability Analysis

When to Activate

Core Methodology

Rule Categories by Priority

Audit Protocol

Vulnerability Classes

Injection Attacks

Memory Safety

Authentication & Authorization

Cryptographic Issues

Concurrency

Security Review Checklist

Advanced: Variant Analysis Methodology

Pattern Generalization

Taint Propagation Rules

Source-Sink Mapping by Language

Exploitability Assessment Framework

Second-Order Vulnerability Detection

Vulnerability Analysis

When to Activate

Core Methodology

Rule Categories by Priority

Audit Protocol

Vulnerability Classes

Injection Attacks

Memory Safety

Authentication & Authorization

Cryptographic Issues

Concurrency

Security Review Checklist

Advanced: Variant Analysis Methodology

Pattern Generalization

Taint Propagation Rules

Source-Sink Mapping by Language

Exploitability Assessment Framework

Second-Order Vulnerability Detection

vulnerability-analysis

同仓库更多 Skills

同仓库更多 Skills

Vulnerability Analysis

When to Activate

Core Methodology

Rule Categories by Priority

Audit Protocol

Vulnerability Classes

Injection Attacks

Memory Safety

Authentication & Authorization

Cryptographic Issues

Concurrency

Security Review Checklist

Advanced: Variant Analysis Methodology

Pattern Generalization

Taint Propagation Rules

Source-Sink Mapping by Language

Exploitability Assessment Framework

Second-Order Vulnerability Detection

Vulnerability Analysis

When to Activate

Core Methodology

Rule Categories by Priority

Audit Protocol

Vulnerability Classes

Injection Attacks

Memory Safety

Authentication & Authorization

Cryptographic Issues

Concurrency

Security Review Checklist

Advanced: Variant Analysis Methodology

Pattern Generalization

Taint Propagation Rules

Source-Sink Mapping by Language

Exploitability Assessment Framework

Second-Order Vulnerability Detection