Browse Skills — Page 146

performing-mobile-app-certificate-pinning-bypass

mukul975/Anthropic-Cybersecurity-Skills

>

performing-mobile-device-forensics-with-cellebrite

mukul975/Anthropic-Cybersecurity-Skills

Acquire and analyze mobile device data using Cellebrite UFED and open-source tools to extract communications, location data, and application artifacts.

performing-network-forensics-with-wireshark

mukul975/Anthropic-Cybersecurity-Skills

Capture and analyze network traffic using Wireshark and tshark to reconstruct network events, extract artifacts, and identify malicious communications.

performing-network-packet-capture-analysis

mukul975/Anthropic-Cybersecurity-Skills

Perform forensic analysis of network packet captures (PCAP/PCAPNG) using Wireshark, tshark, and tcpdump to reconstruct network communications, extract transferred files, identify malicious traffic, and establish evidence of data exfiltration or command-and-control activity.

performing-network-pivoting-and-tunneling

xalgord/xalgorix

Pivoting into segmented internal networks during authorized engagements via SSH local/remote/dynamic

performing-network-traffic-analysis-with-tshark

mukul975/Anthropic-Cybersecurity-Skills

Automate network traffic analysis using tshark and pyshark for protocol statistics, suspicious flow detection, DNS anomaly identification, and IOC extraction from PCAP files

performing-network-traffic-analysis-with-zeek

mukul975/Anthropic-Cybersecurity-Skills

Deploy Zeek network security monitor to capture, parse, and analyze network traffic metadata for threat detection, anomaly identification, and forensic investigation.

performing-network-tunneling-and-pivoting

xalgord/xalgorix

Establishing tunnels, port forwards, and SOCKS proxies to reach internal networks from a foothold during authorized engagements - covering SSH local/remote/dynamic forwarding, proxychains, chisel, ligolo-ng, socat, plink, sshuttle, Meterpreter/Cobalt Strike routing, and covert DNS/ICMP/cloud tunnels.

performing-nist-csf-maturity-assessment

mukul975/Anthropic-Cybersecurity-Skills

>-

performing-oauth-scope-minimization-review

mukul975/Anthropic-Cybersecurity-Skills

>

performing-oil-gas-cybersecurity-assessment

mukul975/Anthropic-Cybersecurity-Skills

>

performing-open-source-intelligence-gathering

mukul975/Anthropic-Cybersecurity-Skills

Open Source Intelligence (OSINT) gathering is the first active phase of a red team engagement, where operators collect publicly available information about the target organization to identify attack s

performing-osint-with-spiderfoot

mukul975/Anthropic-Cybersecurity-Skills

Automate OSINT collection using SpiderFoot REST API and CLI for target profiling, module-based reconnaissance, and structured result analysis across 200+ data sources

performing-ot-network-security-assessment

mukul975/Anthropic-Cybersecurity-Skills

>

performing-ot-vulnerability-assessment-with-claroty

mukul975/Anthropic-Cybersecurity-Skills

>

performing-ot-vulnerability-scanning-safely

mukul975/Anthropic-Cybersecurity-Skills

>

performing-packet-injection-attack

mukul975/Anthropic-Cybersecurity-Skills

>

performing-paste-site-monitoring-for-credentials

mukul975/Anthropic-Cybersecurity-Skills

Monitor paste sites like Pastebin and GitHub Gists for leaked credentials, API keys, and sensitive data dumps using automated scraping and keyword matching to detect breaches early.

performing-phishing-simulation-with-gophish

mukul975/Anthropic-Cybersecurity-Skills

GoPhish is an open-source phishing simulation framework used by security teams to conduct authorized phishing awareness campaigns. It provides campaign management, email template creation, landing pag

performing-physical-intrusion-assessment

mukul975/Anthropic-Cybersecurity-Skills

Conduct authorized physical penetration testing using tailgating, badge cloning, lock bypassing, and rogue device deployment to evaluate facility security controls.

performing-plc-firmware-security-analysis

mukul975/Anthropic-Cybersecurity-Skills

>

performing-post-quantum-cryptography-migration

mukul975/Anthropic-Cybersecurity-Skills

>

performing-power-grid-cybersecurity-assessment

mukul975/Anthropic-Cybersecurity-Skills

>

performing-privacy-impact-assessment

mukul975/Anthropic-Cybersecurity-Skills

>

performing-privilege-escalation-assessment

mukul975/Anthropic-Cybersecurity-Skills

>

performing-privilege-escalation-on-linux

mukul975/Anthropic-Cybersecurity-Skills

Linux privilege escalation involves elevating from a low-privilege user account to root access on a compromised system. Red teams exploit misconfigurations, vulnerable services, kernel exploits, and w

performing-privileged-account-access-review

mukul975/Anthropic-Cybersecurity-Skills

Conduct systematic reviews of privileged accounts to validate access rights, identify excessive permissions, and enforce least privilege across PAM infrastructure.

performing-privileged-account-discovery

mukul975/Anthropic-Cybersecurity-Skills

Discover and inventory all privileged accounts across enterprise infrastructure including domain admins, local admins, service accounts, database admins, cloud IAM roles, and application admin account

performing-purple-team-atomic-testing

mukul975/Anthropic-Cybersecurity-Skills

>

performing-purple-team-exercise

mukul975/Anthropic-Cybersecurity-Skills

>

performing-ransomware-response

mukul975/Anthropic-Cybersecurity-Skills

>

performing-ransomware-tabletop-exercise

mukul975/Anthropic-Cybersecurity-Skills

>

performing-red-team-phishing-with-gophish

mukul975/Anthropic-Cybersecurity-Skills

>-

performing-red-team-with-covenant

mukul975/Anthropic-Cybersecurity-Skills

Conduct red team operations using the Covenant C2 framework for authorized adversary simulation, including listener setup, grunt deployment, task execution, and lateral movement tracking.

performing-reflected-file-download

xalgord/xalgorix

Identifying and exploiting Reflected File Download (RFD) where an endpoint reflects attacker-controlled

performing-return-oriented-programming

xalgord/xalgorix

Methodology for building Return-Oriented Programming (ROP) chains to bypass NX/DEP by reusing existing code

performing-s7comm-protocol-security-analysis

mukul975/Anthropic-Cybersecurity-Skills

>

performing-sca-dependency-scanning-with-snyk

mukul975/Anthropic-Cybersecurity-Skills

>

performing-scada-hmi-security-assessment

mukul975/Anthropic-Cybersecurity-Skills

>

performing-second-order-sql-injection

mukul975/Anthropic-Cybersecurity-Skills

Detect and exploit second-order SQL injection vulnerabilities where malicious input is stored in a database and later executed in an unsafe SQL query during a different application operation.

performing-security-code-review

aAAaqwq/AGI-Super-Team

This skill provides automated assistance for security agent tasks

performing-security-headers-audit

mukul975/Anthropic-Cybersecurity-Skills

Auditing HTTP security headers including CSP, HSTS, X-Frame-Options, and cookie attributes to identify missing or misconfigured browser-level protections.

performing-serverless-function-security-review

mukul975/Anthropic-Cybersecurity-Skills

>

performing-service-account-audit

mukul975/Anthropic-Cybersecurity-Skills

Audit service accounts across enterprise infrastructure to identify orphaned, over-privileged, and non-compliant accounts. This skill covers discovery of service accounts in Active Directory, cloud pl

performing-service-account-credential-rotation

mukul975/Anthropic-Cybersecurity-Skills

Automate credential rotation for service accounts across Active Directory, cloud platforms, and application databases to eliminate stale secrets and reduce compromise risk.

performing-soap-web-service-security-testing

mukul975/Anthropic-Cybersecurity-Skills

Perform security testing of SOAP web services by analyzing WSDL definitions and testing for XML injection, XXE, WS-Security bypass, and SOAPAction spoofing.

performing-soc-tabletop-exercise

mukul975/Anthropic-Cybersecurity-Skills

>

performing-soc2-type2-audit-preparation

mukul975/Anthropic-Cybersecurity-Skills

>

performing-sqlite-database-forensics

mukul975/Anthropic-Cybersecurity-Skills

Perform forensic analysis of SQLite databases to recover deleted records from freelists and WAL files, decode encoded timestamps, and extract evidence from browser history, messaging apps, and mobile device databases.

performing-ssl-certificate-lifecycle-management

mukul975/Anthropic-Cybersecurity-Skills

SSL/TLS certificate lifecycle management encompasses the full process of requesting, issuing, deploying, monitoring, renewing, and revoking X.509 certificates. Poor certificate management is a leading

performing-ssl-stripping-attack

mukul975/Anthropic-Cybersecurity-Skills

>

performing-ssl-tls-inspection-configuration

mukul975/Anthropic-Cybersecurity-Skills

Configure SSL/TLS inspection on network security devices to decrypt, inspect, and re-encrypt HTTPS traffic for threat detection while managing certificates, exemptions, and privacy compliance.

performing-ssl-tls-security-assessment

mukul975/Anthropic-Cybersecurity-Skills

Assess SSL/TLS server configurations using the sslyze Python library to evaluate cipher suites, certificate chains, protocol versions, HSTS headers, and known vulnerabilities like Heartbleed and ROBOT.

performing-ssrf-vulnerability-exploitation

mukul975/Anthropic-Cybersecurity-Skills

>-

performing-static-malware-analysis-with-pe-studio

mukul975/Anthropic-Cybersecurity-Skills

>

performing-steganography-detection

mukul975/Anthropic-Cybersecurity-Skills

Detect and extract hidden data embedded in images, audio, and other media files using steganalysis tools to uncover covert communication channels.

performing-subdomain-enumeration-with-subfinder

mukul975/Anthropic-Cybersecurity-Skills

Enumerate subdomains of target domains using ProjectDiscovery's Subfinder passive reconnaissance tool to map the attack surface during security assessments.

performing-supply-chain-attack-simulation

mukul975/Anthropic-Cybersecurity-Skills

Simulate and detect software supply chain attacks including typosquatting detection via Levenshtein distance, dependency confusion testing against private registries, package hash verification with pip, and known vulnerability scanning with pip-audit.

performing-thick-client-application-penetration-test

mukul975/Anthropic-Cybersecurity-Skills

Conduct a thick client application penetration test to identify insecure local storage, hardcoded credentials, DLL hijacking, memory manipulation, and insecure API communication in desktop applications using dnSpy, Procmon, and Burp Suite.

performing-threat-emulation-with-atomic-red-team

mukul975/Anthropic-Cybersecurity-Skills

>

performing-threat-hunting-with-elastic-siem

mukul975/Anthropic-Cybersecurity-Skills

>

performing-threat-hunting-with-yara-rules

mukul975/Anthropic-Cybersecurity-Skills

>

performing-threat-intelligence-sharing-with-misp

mukul975/Anthropic-Cybersecurity-Skills

Use PyMISP to create, enrich, and share threat intelligence events on a MISP platform, including IOC management, feed integration, STIX export, and community sharing workflows.

performing-threat-landscape-assessment-for-sector

mukul975/Anthropic-Cybersecurity-Skills

Conduct a sector-specific threat landscape assessment by analyzing threat actor targeting patterns, common attack vectors, and industry-specific vulnerabilities to inform organizational risk management.

performing-threat-modeling-with-owasp-threat-dragon

mukul975/Anthropic-Cybersecurity-Skills

Use OWASP Threat Dragon to create data flow diagrams, identify threats using STRIDE and LINDDUN methodologies, and generate threat model reports for secure design review.

performing-timeline-reconstruction-with-plaso

mukul975/Anthropic-Cybersecurity-Skills

Build comprehensive forensic super-timelines using Plaso (log2timeline) to correlate events across file systems, logs, and artifacts into a unified chronological view.

performing-user-behavior-analytics

mukul975/Anthropic-Cybersecurity-Skills

>

performing-vlan-hopping-attack

mukul975/Anthropic-Cybersecurity-Skills

>

performing-vulnerability-scanning-with-nessus

mukul975/Anthropic-Cybersecurity-Skills

>

performing-web-application-firewall-bypass

mukul975/Anthropic-Cybersecurity-Skills

Bypass Web Application Firewall protections using encoding techniques, HTTP method manipulation, parameter pollution, and payload obfuscation to deliver SQL injection, XSS, and other attack payloads past WAF detection rules.

performing-web-application-penetration-test

mukul975/Anthropic-Cybersecurity-Skills

>

performing-web-application-scanning-with-nikto

mukul975/Anthropic-Cybersecurity-Skills

Nikto is an open-source web server and web application scanner that tests against over 7,000 potentially dangerous files/programs, checks for outdated versions of over 1,250 servers, and identifies ve

performing-web-application-vulnerability-triage

mukul975/Anthropic-Cybersecurity-Skills

Triage web application vulnerability findings from DAST/SAST scanners using OWASP risk rating methodology to separate true positives from false positives and prioritize remediation.

performing-web-cache-deception-attack

mukul975/Anthropic-Cybersecurity-Skills

Execute web cache deception attacks by exploiting path normalization discrepancies between CDN caching layers and origin servers to cache and retrieve sensitive authenticated content.

performing-web-cache-poisoning-attack

mukul975/Anthropic-Cybersecurity-Skills

Exploiting web cache mechanisms to serve malicious content to other users by poisoning cached responses through unkeyed headers and parameters during authorized security tests.

performing-wifi-password-cracking-with-aircrack

mukul975/Anthropic-Cybersecurity-Skills

>

performing-windows-artifact-analysis-with-eric-zimmerman-tools

mukul975/Anthropic-Cybersecurity-Skills

Perform comprehensive Windows forensic artifact analysis using Eric Zimmerman's open-source EZ Tools suite including KAPE, MFTECmd, PECmd, LECmd, JLECmd, and Timeline Explorer for parsing registry hives, prefetch files, event logs, and file system metadata.

performing-windows-binary-exploitation

xalgord/xalgorix

Methodology for exploiting classic 32-bit Windows stack buffer overflows in network services during authorized

performing-wireless-network-penetration-test

mukul975/Anthropic-Cybersecurity-Skills

Execute a wireless network penetration test to assess WiFi security by capturing handshakes, cracking WPA2/WPA3 keys, detecting rogue access points, and testing wireless segmentation using Aircrack-ng and related tools.

performing-wireless-security-assessment-with-kismet

mukul975/Anthropic-Cybersecurity-Skills

Conduct wireless network security assessments using Kismet to detect rogue access points, hidden SSIDs, weak encryption, and unauthorized clients through passive RF monitoring.

performing-xs-search-attacks

xalgord/xalgorix

Performing XS-Search / XS-Leaks attacks that extract cross-origin information through side channels — using

performing-yara-rule-development-for-detection

mukul975/Anthropic-Cybersecurity-Skills

Develop precise YARA rules for malware detection by identifying unique byte patterns, strings, and behavioral indicators in executable files while minimizing false positives.

performing-zero-day-vulnerability-discovery

xalgord/xalgorix

Systematic methodology for discovering novel vulnerabilities through manual code auditing, fuzzing, reverse engineering, and creative attack chaining during authorized security assessments.

perigon-automation

ComposioHQ/awesome-claude-skills

"Automate Perigon tasks via Rube MCP (Composio). Always search tools first for current schemas."

period-close

vm0-ai/vm0-skills

Orchestrate the month-end and quarter-end accounting close with task sequencing, dependency management, and progress tracking. Use for close calendar planning, close checklist management, close task tracking, close timeline optimization, close day activities, hard close procedures, accelerated close planning, or close process improvement.

perl-patterns

affaan-m/ECC

Modern Perl 5.36+ idioms, best practices, and conventions for building robust, maintainable Perl applications.

perl-security

affaan-m/ECC

Comprehensive Perl security covering taint mode, input validation, safe process execution, DBI parameterized queries, web security (XSS/SQLi/CSRF), and perlcritic security policies.

perl-testing

affaan-m/ECC

Perl testing patterns using Test2::V0, Test::More, prove runner, mocking, coverage with Devel::Cover, and TDD methodology.

permission-auditor

UseAI-pro/openclaw-skills-security

Analyze OpenClaw skill permissions and explain exactly what each permission allows. Identifies over-privileged

permission-manager

aAAaqwq/AGI-Super-Team

管理Claude Code的全局工具权限配置，自动将MCP命令或其他工具添加到allowedTools中，避免每次使用时都需要手动批准。工作流程：确认用户需要添加的命令

permission-marketing

guia-matthieu/clawfu-skills

"Build marketing that people actually want using Seth Godin's Permission Marketing methodology—earn attention instead of demanding it, turning strangers into friends and friends into customers. Use when: **Build an email list** that's engaged and valuable; **Design lead magnets** that earn real permission; **Create content strategy** based on earning attention; **Evaluate marketing tactics** for permission vs. interruption; **Improve email marketing** by increasing anticipation and relevance"

perp-funding-basis

HKUDS/Vibe-Trading

Perpetual futures funding rate analysis and cash-carry basis trading — funding rate regimes, annualized basis signals, carry trade construction, and funding rate arbitrage between exchanges.

perplexity

vm0-ai/vm0-skills

Perplexity API for AI search. Use when user mentions "Perplexity", "AI

perplexity-api

TerminalSkills/skills

>-

perplexity-search

mkurman/zorai

Perform AI-powered web searches with real-time information using Perplexity models via LiteLLM and OpenRouter. This skill should be used when conducting web searches for current information, finding recent scientific literature, getting grounded answers with source citations, or accessing information beyond the model knowledge cutoff. Provides access to multiple Perplexity models including Sonar Pro, Sonar Pro Search (advanced agentic search), and Sonar Reasoning Pro through a single OpenRouter API key.

perplexityai-automation

ComposioHQ/awesome-claude-skills

"Automate Perplexityai tasks via Rube MCP (Composio). Always search tools first for current schemas."

perseus-api

kaivyy/perseus

Deep-dive API security analysis (REST, GraphQL, WebSocket, gRPC, OAuth, Cache)

perseus-client

kaivyy/perseus

Client-side security analysis (DOM XSS, React/Vue/Angular, SSR, prototype pollution)

perseus-config

kaivyy/perseus

Security configuration analysis (Headers, CORS, Docker, CI/CD, Cloud, K8s)

perseus-crypto

kaivyy/perseus

Deep-dive cryptography and secrets analysis (JWT, hashing, encryption, key management)