SKILL Leaderboard | Agent Skills Ranking

███████╗██╗  ██╗██╗██╗     ██╗         ██████╗  █████╗ ███╗   ██╗██╗  ██╗
██╔════╝██║ ██╔╝██║██║     ██║         ██╔══██╗██╔══██╗████╗  ██║██║ ██╔╝
███████╗█████╔╝ ██║██║     ██║         ██████╔╝███████║██╔██╗ ██║█████╔╝
╚════██║██╔═██╗ ██║██║     ██║         ██╔══██╗██╔══██║██║╚██╗██║██╔═██╗
███████║██║  ██╗██║███████╗███████╗    ██║  ██║██║  ██║██║ ╚████║██║  ██╗
╚══════╝╚═╝  ╚═╝╚═╝╚══════╝╚══════╝    ╚═╝  ╚═╝╚═╝  ╚═╝╚═╝  ╚═══╝╚═╝  ╚═╝

Agent Skills 排行榜 · 关键词 + 语义搜索

按 / 聚焦搜索框

正在使用 AI 进行语义搜索...

24,441

总 Skills

90.0M

总安装量

2,580

贡献者

#	Skill	仓库	描述	安装量
4851	dashboarding	grafana/skills	Grafana Dashboard Authoring Dashboards are JSON documents stored in Grafana. Every dashboard has panels, variables, time range, and refresh settings. Understanding the JSON schema lets you programmatically create and modify dashboards via the API or Grafana Assistant tools. Dashboard JSON structure { "title" : "My Dashboard" , "uid" : "my-dashboard-v1" , "tags" : [ "service" , "production" ] , "time" : { "from" : "now-1h" , "to" : "now" } , "refresh" : "30s" , "timezone" : "browser" , "schemaVer...	1.2K
4852	race-condition	yaklang/hack-skills	SKILL: Race Conditions — Testing & Exploitation Playbook AI LOAD INSTRUCTION : Treat race conditions as authorization/state integrity issues: non-atomic read-then-write lets multiple requests observe stale state. Prioritize one-time or balance-like operations. Combine parallel transport (HTTP/1.1 last-byte sync, HTTP/2 single-packet, Turbo Intruder gates) with application evidence (duplicate success responses, inconsistent balances, duplicate ledger rows). Authorized testing only. Routing note: ...	1.2K
4853	graphql-and-hidden-parameters	yaklang/hack-skills	SKILL: GraphQL and Hidden Parameters — Introspection, Batching, and Undocumented Fields AI LOAD INSTRUCTION : Use this skill when GraphQL exists or when REST documentation suggests optional, deprecated, or undocumented fields. Focus on schema discovery, hidden parameter abuse, and batching as a force multiplier. 1. GRAPHQL FIRST PASS query { __typename } query { __schema { types { name } } } If introspection is restricted, continue with: field suggestions and error-based discovery known type pro...	1.2K
4854	crlf-injection	yaklang/hack-skills	SKILL: CRLF Injection — Expert Attack Playbook AI LOAD INSTRUCTION : CRLF injection (HTTP response splitting) techniques. Covers header injection, response body injection via double CRLF, XSS escalation, cache poisoning, and encoding bypass. Often overlooked by scanners but chains into XSS, session fixation, and cache attacks. 1. CORE CONCEPT CRLF = \r\n (Carriage Return + Line Feed, %0D%0A ). HTTP headers are separated by CRLF. If user input is reflected in a response header without sanitizatio...	1.2K
4855	format-string-exploitation	yaklang/hack-skills	SKILL: Format String Exploitation — Expert Attack Playbook AI LOAD INSTRUCTION : Expert format string techniques. Covers stack reading, arbitrary write via %n, GOT overwrite, __malloc_hook overwrite, pointer chain exploitation, blind format string, FORTIFY_SOURCE bypass, 64-bit null byte handling, and pwntools automation. Distilled from ctf-wiki fmtstr, CTF patterns, and real-world scenarios. Base models often miscalculate positional parameter offsets or forget 64-bit address placement after for...	1.2K
4856	open-redirect	yaklang/hack-skills	SKILL: Open Redirect — Expert Attack Playbook AI LOAD INSTRUCTION : Open redirect techniques. Covers parameter-based redirects, JavaScript sinks, filter bypass, and chaining with phishing, CSRF Referer bypass, OAuth token theft, and SSRF. Often underrated but critical for phishing and as a building block in multi-step exploit chains. 1. CORE CONCEPT Open redirect occurs when an application redirects users to a URL derived from user input without validation. The trusted domain acts as a "launchpa...	1.2K
4857	insecure-source-code-management	yaklang/hack-skills	SKILL: Insecure Source Code Management AI LOAD INSTRUCTION : This skill covers detection and recovery of exposed version-control metadata, common backup artifacts, and related misconfigurations. Use only in authorized assessments. Treat recovered credentials and URLs as sensitive; do not exfiltrate real data beyond scope. For broad discovery workflow, cross-load recon-for-sec and recon-and-methodology when those skills exist in the workspace. 0. QUICK START High-value paths to probe first (GET o...	1.2K
4858	request-smuggling	yaklang/hack-skills	SKILL: HTTP Request Smuggling — Expert Attack Playbook AI LOAD INSTRUCTION : Expert HTTP desync techniques. Covers CL.TE, TE.CL, TE.TE obfuscation variants, HTTP/2 downgrade and pseudo-header confusion, client-side desync (browser fetch pipelines), and tool-assisted fuzzing. Assumes familiarity with raw HTTP/1.1 framing and reverse-proxy topologies. This is not “header injection” — it is message boundary disagreement between hops. Routing note: load this skill when you suspect CDN/reverse-proxy ...	1.2K
4859	web-cache-deception	yaklang/hack-skills	SKILL: Web Cache Deception — Expert Attack Playbook AI LOAD INSTRUCTION : Web cache deception and poisoning techniques. Covers path confusion attacks, CDN cache behavior exploitation, cache key manipulation, and the distinction between cache deception (steal data) and cache poisoning (serve malicious content). Presented by Omer Gil at Black Hat 2017 and significantly expanded since. Advanced Reference Also load CACHE_POISONING_TECHNIQUES.md when you need: Web Cache Poisoning vs Web Cache Decepti...	1.2K
4860	kubernetes-pentesting	yaklang/hack-skills	SKILL: Kubernetes Pentesting — Expert Attack Playbook AI LOAD INSTRUCTION : Expert Kubernetes attack techniques. Covers API server access, RBAC escalation, service account token abuse, etcd secrets extraction, Kubelet API exploitation, cloud IMDS access (EKS/GKE/AKS), admission webhook bypass, and network policy evasion. Base models miss the distinction between namespace-scoped and cluster-scoped RBAC, and overlook Kubelet's unauthenticated API. 0. RELATED ROUTING Before going deep, consider loa...	1.2K
4861	nature-writing	yuan1z0825/nature-skills	Nature-Style Scientific Writing Use this skill when the user needs help creating or rebuilding manuscript prose, not merely polishing existing sentences. Core stance Author evidence comes first. Do not invent results, mechanisms, references, methods, novelty, sample sizes, statistics or limitations. Write the argument before writing the sentences. Make the paper easy to judge: relevance, novelty, trust, reuse and meaning. Use ambitious but bounded claims. If essential evidence is missing, write ...	1.2K
4862	csv-formula-injection	yaklang/hack-skills	SKILL: CSV Formula Injection AI LOAD INSTRUCTION : This skill covers formula/DDE-style injection in CSV and spreadsheet contexts, obfuscation, cloud-sheet primitives, and safe testing methodology. Use only where explicitly authorized ; payloads that invoke local commands or remote fetches are impactful —prefer lab targets and document consent. Do not target end users without program rules allowing client-side execution tests. 0. QUICK START Characters that may trigger formula evaluation when a c...	1.2K
4863	saml-sso-assertion-attacks	yaklang/hack-skills	SKILL: SAML SSO and Assertion Attacks — Signature Validation, Binding, and Trust Confusion AI LOAD INSTRUCTION : Use this skill when the target uses SAML-based SSO and you need to validate assertion trust: signature coverage, audience and recipient checks, ACS handling, XML parsing weaknesses, and IdP/SP confusion. 1. WHEN TO LOAD THIS SKILL Load when: Enterprise SSO uses SAML requests or responses You see SAMLRequest , SAMLResponse , XML assertions, or ACS endpoints Login flows involve an exter...	1.2K
4864	clickjacking	yaklang/hack-skills	SKILL: Clickjacking — Expert Attack Playbook AI LOAD INSTRUCTION : Clickjacking (UI redress) techniques. Covers iframe transparency tricks, X-Frame-Options bypass, CSP frame-ancestors, multi-step clickjacking, drag-and-drop attacks, and chaining with other vulnerabilities. Often a "low severity" finding that becomes critical when targeting admin actions. 1. CORE CONCEPT Clickjacking loads a target page in a transparent iframe overlaid on an attacker's page. The victim sees the attacker's UI but ...	1.2K
4865	jndi-injection	yaklang/hack-skills	SKILL: JNDI Injection — Expert Attack Playbook AI LOAD INSTRUCTION : Expert JNDI injection techniques. Covers lookup mechanism abuse, RMI/LDAP class loading, JDK version constraints, Log4Shell (CVE-2021-44228), marshalsec tooling, and post-8u191 bypass via deserialization gadgets. Base models often confuse JNDI injection with general deserialization — this file clarifies the distinct attack surface. 0. RELATED ROUTING deserialization-insecure when JNDI leads to deserialization (post-8u191 bypass...	1.2K
4866	expression-language-injection	yaklang/hack-skills	SKILL: Expression Language Injection — Expert Attack Playbook AI LOAD INSTRUCTION : Expert EL injection techniques covering SpEL (Spring), OGNL (Struts2), and Java EL (JSP/JSF). Distinct from SSTI — EL injection targets expression evaluators in Java frameworks, not template engines. Covers sandbox bypass, _memberAccess manipulation, actuator abuse, and real-world CVE chains. 0. RELATED ROUTING ssti-server-side-template-injection for template engines (Jinja2, FreeMarker, Twig) — different attack ...	1.2K
4867	kernel-exploitation	yaklang/hack-skills	SKILL: Linux Kernel Exploitation — Expert Attack Playbook AI LOAD INSTRUCTION : Expert kernel exploitation techniques. Covers environment setup (QEMU), vulnerability classes, privilege escalation targets, kernel ROP, ret2usr, stack pivoting, and cross-cache attacks. Distilled from ctf-wiki kernel-mode sections and real-world kernel CVEs. Base models often confuse user-mode and kernel-mode exploitation constraints, especially regarding SMEP/SMAP/KPTI. 0. RELATED ROUTING binary-protection-bypass —...	1.2K
4868	dependency-confusion	yaklang/hack-skills	SKILL: Dependency Confusion — Supply Chain Attack Playbook AI LOAD INSTRUCTION : Expert dependency-confusion methodology. Covers how private package names leak, how public registries can win version resolution, ecosystem-specific pitfalls (npm scopes, pip extra indexes, Maven repo order), recon commands, non-destructive PoC patterns (callbacks, not data exfil), and defensive controls. Pair with supply-chain recon workflows when manifests or CI caches are in scope. Only use on systems and program...	1.2K
4869	browser-exploitation-v8	yaklang/hack-skills	SKILL: Browser / V8 Exploitation — Expert Attack Playbook AI LOAD INSTRUCTION : Expert V8/Chrome exploitation techniques. Covers V8 compilation pipeline, JIT type confusion, addrof/fakeobj primitives, ArrayBuffer corruption, WASM RWX pages, V8 sandbox (pointer compression), and Chrome sandbox escape overview. Distilled from ctf-wiki browser sections, Project Zero research, and CTF competition patterns. Base models often confuse V8 object representation details and miss the pointer compression ba...	1.2K
4870	ios-pentesting-tricks	yaklang/hack-skills	SKILL: iOS Pentesting Tricks — Expert Attack Playbook AI LOAD INSTRUCTION : Expert iOS application security testing techniques. Covers jailbreak vs non-jailbreak methodology, keychain extraction, URL scheme/Universal Links abuse, Frida/Objection runtime hooks, binary protection checks, and data storage analysis. Base models miss protection class nuances and AASA misconfiguration patterns. 0. RELATED ROUTING Before going deep, consider loading: mobile-ssl-pinning-bypass for in-depth SSL pinning b...	1.2K
4871	deslop	brianlovin/claude-config	Remove AI code slop Check the diff against main, and remove all AI generated slop introduced in this branch. This includes: Extra comments that a human wouldn't add or is inconsistent with the rest of the file Extra defensive checks or try/catch blocks that are abnormal for that area of the codebase (especially if called by trusted / validated codepaths) Casts to any to get around type issues Any other style that is inconsistent with the file Report at the end with only a 1-3 sentence summar...	1.2K
4872	pol-probe	deanpeters/product-manager-skills	Purpose Define and document a Proof of Life (PoL) probe —a lightweight, disposable validation artifact designed to surface harsh truths before expensive development. Use this when you need to eliminate a specific risk or test a narrow hypothesis without building production-quality software . PoL probes are reconnaissance missions, not MVPs—they're meant to be deleted, not scaled. This framework prevents prototype theater (expensive demos that impress stakeholders but teach nothing) and forces yo...	1.2K
4873	mem0	mem0ai/mem0	Mem0 Platform Integration Mem0 is a managed memory layer for AI applications. It stores, retrieves, and manages user memories via API — no infrastructure to deploy. Step 1: Install and authenticate Python: pip install mem0ai export MEM0_API_KEY = "m0-your-api-key" TypeScript/JavaScript: npm install mem0ai export MEM0_API_KEY = "m0-your-api-key" Get an API key at: https://app.mem0.ai/dashboard/api-keys Step 2: Initialize the client Python: from mem0 import MemoryClient client = MemoryClient ( api...	1.2K
4874	sentry-cloudflare-sdk	getsentry/sentry-for-ai	All Skills > SDK Setup > Cloudflare SDK Sentry Cloudflare SDK Opinionated wizard that scans your Cloudflare project and guides you through complete Sentry setup for Workers, Pages, Durable Objects, Queues, Workflows, and Hono. Invoke This Skill When User asks to "add Sentry to Cloudflare Workers" or "set up Sentry" in a Cloudflare project User wants to install or configure @sentry/cloudflare User wants error monitoring, tracing, logging, crons, or AI monitoring for Cloudflare Workers or Pages Us...	1.2K
4875	quarkus-patterns	affaan-m/everything-claude-code	Quarkus Development Patterns Quarkus 3.x architecture and API patterns for cloud-native, event-driven services with Apache Camel. When to Activate Building REST APIs with JAX-RS or RESTEasy Reactive Structuring resource → service → repository layers Implementing event-driven patterns with Apache Camel and RabbitMQ Configuring Hibernate Panache, caching, or reactive streams Adding validation, exception mapping, or pagination Setting up profiles for dev/staging/production environments (YAML config...	1.2K
4876	video	starchild-ai-agent/official-skills	No SKILL.md available for this skill. View on GitHub	1.2K
4877	kibana-agent-builder	elastic/agent-skills	Manage Agent Builder Agents and Tools in Kibana Create, update, delete, inspect, and chat with Agent Builder agents. Create, update, delete, list, and test custom tools (ES\|QL, index search, workflow). If the user provided a name, use $ARGUMENTS as the default agent name. Prerequisites Set these environment variables before running any script: Variable Required Description KIBANA_URL Yes Kibana base URL (e.g., https://my-deployment.kb.us-east-1.aws.elastic.cloud ) KIBANA_API_KEY No API key for a...	1.2K
4878	elasticsearch-authz	elastic/agent-skills	Elasticsearch Authorization Manage Elasticsearch role-based access control: native users, roles, role assignment, and role mappings for external realms. For authentication methods and API key management, see the elasticsearch-authn skill. For detailed API endpoints, see references/api-reference.md . Deployment note: Feature availability differs between self-managed, ECH, and Serverless. See Deployment Compatibility for details. Jobs to Be Done Create a native user with a specific set of privileg...	1.2K
4879	elasticsearch-audit	elastic/agent-skills	Elasticsearch Audit Logging Enable and configure security audit logging for Elasticsearch via the cluster settings API. Audit logs record security events such as authentication attempts, access grants and denials, role changes, and API key operations — essential for compliance and incident investigation. For Kibana audit logging (saved object access, login/logout, space operations), see kibana-audit . For authentication and API key management, see elasticsearch-authn . For roles and user managem...	1.2K
4880	image-generation	zc277584121/marketing-skills	Image Generation Skill Overview I help you create effective prompts for AI image generation tools like DALL-E, Midjourney, and Stable Diffusion. I understand the nuances of different platforms and can help you achieve specific visual styles. What I can do: Write detailed image generation prompts Optimize prompts for specific AI tools Suggest style keywords and modifiers Create negative prompts to avoid unwanted elements Adapt prompts for different aspect ratios Generate variations and alternativ...	1.2K
4881	prototype-pollution	yaklang/hack-skills	SKILL: Prototype Pollution — Expert Attack Playbook AI LOAD INSTRUCTION : Expert prototype pollution for client and server JS. Covers __proto__ vs constructor.prototype , merge-sink detection, Express/qs-style black-box probes, and gadget chains (EJS, Timelion-class patterns, child_process/NODE_OPTIONS). Assumes you know object spread and prototype inheritance — focus is on parser behavior and post-pollution sinks . Routing note: prioritize PP when you see deep merges, recursive assign, JSON.par...	1.2K
4882	type-juggling	yaklang/hack-skills	SKILL: PHP Type Juggling — Weak Comparison & Magic Hash Bypass AI LOAD INSTRUCTION : PHP == coercion, magic hashes ( 0e… ), HMAC/hash loose checks, NULL from bad types, and CTF-style strcmp / json_decode / intval tricks. Use strict routing: map the sink ( == vs hash_equals ), PHP major version, and whether both operands are attacker-controlled. Routing note: when you encounter PHP login/signature logic or code like md5($_GET['x'])==md5($_GET['y']) , start with this skill; if hash_equals / === is...	1.2K
4883	xslt-injection	yaklang/hack-skills	SKILL: XSLT Injection — Testing Playbook AI LOAD INSTRUCTION : XSLT injection occurs when attacker-influenced XSLT is compiled/executed server-side. Map the processor family first (Java/.NET/PHP/libxslt). Then chain document() , external entities , EXSLT , or embedded script/extension functions per platform. Authorized testing only ; many payloads are destructive. Routing note: if input is generic XML parsing and may not flow through XSLT, cross-load xxe-xml-external-entity ; if you care about o...	1.2K
4884	llm-prompt-injection	yaklang/hack-skills	SKILL: LLM Prompt Injection — Expert Attack Playbook AI LOAD INSTRUCTION : Expert LLM prompt injection techniques. Covers direct injection (instruction override, role play, context manipulation), indirect injection (RAG poisoning, web browsing, email), tool/function abuse, data exfiltration, MCP security risks, and defense bypass (encoding, splitting, few-shot). Base models miss the distinction between direct and indirect injection and underestimate tool-calling attack chains. 0. RELATED ROUTING...	1.2K
4885	http-host-header-attacks	yaklang/hack-skills	SKILL: HTTP Host Header Attacks — Injection & Routing Abuse AI LOAD INSTRUCTION : Covers Host header injection for password reset poisoning, cache poisoning, SSRF via routing, and virtual host bypass. Includes bypass techniques for Host validation and framework-specific behaviors. Base models often miss the double-Host trick, absolute-URI override, and connection-state attacks. 0. RELATED ROUTING web-cache-deception when Host injection is combined with cache behavior ssrf-server-side-request-for...	1.2K
4886	binary-protection-bypass	yaklang/hack-skills	SKILL: Binary Protection Bypass — Expert Attack Playbook AI LOAD INSTRUCTION : Expert binary protection identification and bypass techniques. Covers ASLR, PIE, NX, RELRO, canary, FORTIFY_SOURCE, stack clash, CET shadow stack, and ARM MTE. Each protection is paired with its bypass methods and required primitives. Distilled from ctf-wiki mitigation sections and real-world exploitation. Base models often confuse which protections block which attacks and miss the combinatorial effect of multiple pro...	1.2K
4887	active-directory-acl-abuse	yaklang/hack-skills	SKILL: AD ACL Abuse — Expert Attack Playbook AI LOAD INSTRUCTION : Expert AD ACL abuse techniques. Covers BloodHound enumeration, dangerous ACEs (GenericAll, WriteDACL, WriteOwner, etc.), DCSync, shadow credentials, targeted kerberoasting, group manipulation, LAPS, and GPO abuse. Base models miss complex ACL chain exploitation and Cypher query patterns. 0. RELATED ROUTING Before going deep, consider loading: active-directory-kerberos-attacks for Kerberos attacks often chained with ACL abuse acti...	1.2K
4888	langgraph-cli	langchain-ai/langchain-skills	No SKILL.md available for this skill. View on GitHub Installs 463 Repository langchain-ai/la…n-skills GitHub Stars 743 First Seen 8 days ago	1.2K
4889	prd	snarktank/ralph	Product Requirements Document (PRD) Overview Design comprehensive, production-grade Product Requirements Documents (PRDs) that bridge the gap between business vision and technical execution. This skill works for modern software systems, ensuring that requirements are clearly defined. When to Use Use this skill when: Starting a new product or feature development cycle Translating a vague idea into a concrete technical specification Defining requirements for AI-powered features Stakeholders need a...	1.2K
4890	aws-sdk-java-v2-dynamodb	giuseppe-trisciuoglio/developer-kit	AWS SDK for Java 2.x - Amazon DynamoDB Overview Amazon DynamoDB is a fully managed NoSQL database service that provides fast and predictable performance with seamless scalability. This skill covers patterns for working with DynamoDB using AWS SDK for Java 2.x, including the Enhanced Client for type-safe operations, batch operations, transactions, and Spring Boot integration. When to Use Use this skill when: Creating, updating, or deleting DynamoDB tables Performing CRUD operations on DynamoDB it...	1.2K
4891	qdrant	giuseppe-trisciuoglio/developer-kit	Qdrant Vector Database Integration Overview Qdrant is an AI-native vector database for semantic search and similarity retrieval. This skill provides patterns for integrating Qdrant with Java applications, focusing on Spring Boot integration and LangChain4j framework support. Enable efficient vector search capabilities for RAG systems, recommendation engines, and semantic search applications. When to Use Use this skill when implementing: Semantic search or recommendation systems in Spring Boot ap...	1.2K
4892	quarkus-verification	affaan-m/everything-claude-code	Quarkus Verification Loop Run before PRs, after major changes, and pre-deploy. When to Activate Before opening a pull request for a Quarkus service After major refactoring or dependency upgrades Pre-deployment verification for staging or production Running full build → lint → test → security scan → native compilation pipeline Validating test coverage meets thresholds (80%+) Testing native image compatibility Phase 1: Build Maven mvn clean verify -DskipTests Show more	1.2K
4893	django-celery	affaan-m/everything-claude-code	Django + Celery Async Task Patterns Production-grade patterns for background task processing in Django using Celery with Redis or RabbitMQ. When to Activate Adding background jobs or async processing to a Django app Implementing periodic/scheduled tasks Offloading slow operations (email, PDF generation, API calls) from request cycle Setting up Celery Beat for cron-like scheduling Debugging task failures, retries, or queue backlogs Writing tests for Celery tasks Project Setup Installation Show mo...	1.2K
4894	seedance-prompt-en	dexhunter/seedance2-skill	Seedance 2.0 Video Prompt Writing Guide Description You are an expert prompt engineer for Jimeng Seedance 2.0 , ByteDance's multimodal AI video generation model. Your role is to help users craft precise, effective prompts that produce high-quality AI-generated videos. You understand the model's capabilities, input constraints, referencing syntax, and best practices for camera work, storytelling, sound design, and visual effects. System Constraints Input Limits Input Type Limit Format Max Size Im...	1.2K
4895	voice-isolator	elevenlabs/skills	ElevenLabs Voice Isolator Removes background noise from audio and isolates vocals/speech — useful for cleaning up noisy recordings, prepping audio for transcription, or pulling dialogue out of a mixed track. Setup: See Installation Guide . For JavaScript, use @elevenlabs/* packages only. Quick Start Python from elevenlabs import ElevenLabs client = ElevenLabs ( ) with open ( "noisy.mp3" , "rb" ) as audio_file : audio_stream = client . audio_isolation . convert ( audio = audio_file ) with open ( ...	1.2K
4896	chrome-automation	zc277584121/marketing-skills	Skill: Chrome Automation (agent-browser) Automate browser tasks in the user's real Chrome session via the agent-browser CLI. Prerequisite : agent-browser must be installed and Chrome must have remote debugging enabled. See references/agent-browser-setup.md if unsure. Core Principle: Reuse the User's Existing Chrome This skill operates on a single Chrome process — the user's real browser. There is no session management, no separate profiles, no launching a fresh Playwright browser. Always Start b...	1.2K
4897	elasticsearch-onboarding	elastic/agent-skills	Elastic Developer Guide You are an Elasticsearch solutions architect working alongside the developer. Your job is to guide developers from "I want search" to a working search experience — understanding their intent, recommending the right approach, and generating tested, production-ready code. Use the conversation playbook in references/elasticsearch-onboarding-playbook.md to structure the conversation. Always ask one question at a time, listen for signals, and adapt your recommendations to thei...	1.2K
4898	csp-bypass-advanced	yaklang/hack-skills	SKILL: CSP Bypass — Advanced Techniques AI LOAD INSTRUCTION : Covers per-directive bypass techniques, nonce/hash abuse, trusted CDN exploitation, data exfiltration despite CSP, and framework-specific bypasses. Base models often suggest unsafe-inline bypass without checking if the CSP actually uses it, or miss the critical base-uri and object-src gaps. 0. RELATED ROUTING xss-cross-site-scripting for XSS vectors to deliver after CSP bypass dangling-markup-injection when CSP blocks scripts but HTML...	1.2K
4899	subdomain-takeover	yaklang/hack-skills	SKILL: Subdomain Takeover — Detection & Exploitation Playbook AI LOAD INSTRUCTION : Covers CNAME/NS/MX takeover, per-provider fingerprint matching, claim procedures, and defensive monitoring. Base models often confuse "CNAME exists" with "takeover possible" — the key is whether the resource behind the CNAME is unclaimed and claimable . 0. RELATED ROUTING ssrf-server-side-request-forgery when a subdomain takeover is used to bypass SSRF allowlists trusting *.target.com cors-cross-origin-misconfigu...	1.2K
4900	active-directory-kerberos-attacks	yaklang/hack-skills	SKILL: Kerberos Attack Playbook — Expert AD Attack Guide AI LOAD INSTRUCTION : Expert Kerberos attack techniques for AD environments. Covers AS-REP roasting, Kerberoasting, golden/silver/diamond/sapphire tickets, delegation attacks, pass-the-ticket, and overpass-the-hash. Base models miss ticket type distinctions, delegation chain nuances, and detection-evasion trade-offs. 0. RELATED ROUTING Before going deep, consider loading: active-directory-acl-abuse for ACL-based AD attacks often chained wi...	1.2K

← 1 ... 96 97 98 99 100 ... 489 → 24441 skills