Login
Download

Skill UI

Browse and discover 6278+ curated skills
All Development Artificial Intelligence Design & Creative Product & Business Data Science Marketing Soft Skills Productivity Engineering Languages
Search CTI , found 2348 results
Default Newest Most Downloaded

EDR Credential Dump Detection

detecting-t1003-credential-dumping-with-edr
mukul975/Anthropic-Cybersecurity-Skills
198
Uses EDR telemetry, Sysmon and Defender logs to detect T1003 credential dumping targeting LSASS memory, SAM, NTDS, cached credentials, and DCSync activity, helping hunters map suspicious access, lateral movement, and impacted accounts.
View Details

Autonomous DSE Loop

dse-loop
wanshuiyin/Auto-claude-code-research-in-sleep
392
Autonomously run programs, analyze outputs, and iteratively tune parameters for computer architecture and EDA workloads until objectives or timeouts are reached, making it easy to request sweeps, optimizations, or best configurations.
View Details

Active Directory Attack Simulation

executing-active-directory-attack-simulation
mukul975/Anthropic-Cybersecurity-Skills
239
Executes authorized Active Directory attack simulations to expose misconfigurations, weak credentials, privilege escalation paths, delegation abuse, and Kerberos flaws using BloodHound, Mimikatz, Impacket, and credential cracking tools as part of AD pentests.
View Details

Escalate AD CS Certificates

exploiting-active-directory-certificate-services-esc1
mukul975/Anthropic-Cybersecurity-Skills
95
Guide for abusing misconfigured Active Directory Certificate Services (ESC1) to request Domain Admin certificates, forge PKINIT authentication, and escalate privileges for red team assessments.
View Details

BloodHound AD Attack Mapping

exploiting-active-directory-with-bloodhound
mukul975/Anthropic-Cybersecurity-Skills
420
Documents how to collect Active Directory data with SharpHound, import it into BloodHound, analyze shortest attack paths to high-value targets, and plan privilege escalation chains for authorized red team engagements and detection tuning.
View Details

Broken Function Auth Tester

exploiting-broken-function-level-authorization
mukul975/Anthropic-Cybersecurity-Skills
308
Tests APIs for Broken Function Level Authorization by discovering admin or privileged endpoints, then verifying whether regular credentials can invoke them via method, path, or parameter manipulation, covering OWASP API5:2023 scenarios before reporting access control gaps.
View Details

Deep Link Exploit Testing

exploiting-deeplink-vulnerabilities
mukul975/Anthropic-Cybersecurity-Skills
102
Exercises deep link exploitation workflows on Android and iOS mobile apps to discover unauthorized access, injection, hijacking, and redirect flaws by inspecting URI schemes, App/Universal Links, intent filters, and WebView loads; intended for penetration testing of mobile attack surfaces.
View Details

HTTP Request Smuggling

exploiting-http-request-smuggling
mukul975/Anthropic-Cybersecurity-Skills
363
Guide to detecting and exploiting HTTP request smuggling during authorized penetration tests by targeting Content-Length vs. Transfer-Encoding parsing mismatches between front-end proxies and back-end servers to bypass restrictions or capture downstream requests.
View Details

JWT Algorithm Confusion Exploit

exploiting-jwt-algorithm-confusion-attack
mukul975/Anthropic-Cybersecurity-Skills
382
Automates testing for JWT algorithm confusion vulnerabilities by downgrading RS256 to HS256, switching alg to none, and injecting attacker-controlled keys to detect signature bypasses in token-based APIs.
View Details

Kerberoasting With Impacket

exploiting-kerberoasting-with-impacket
mukul975/Anthropic-Cybersecurity-Skills
401
Use Impacket’s GetUserSPNs to conduct Kerberoasting against Active Directory service accounts, request TGS tickets, export hashcat-friendly blobs, and crack them offline to validate credentials during red team or controlled security testing.
View Details

Mass Assignment API Testing

exploiting-mass-assignment-in-rest-apis
mukul975/Anthropic-Cybersecurity-Skills
344
Guide for discovering and exploiting mass-assignment vulnerabilities in REST APIs to escalate privileges, manipulate restricted fields, and bypass authorization by injecting unexpected parameters during API security assessments.
View Details

EternalBlue Exploitation Workflow

exploiting-ms17-010-eternalblue-vulnerability
mukul975/Anthropic-Cybersecurity-Skills
145
Documenting how red teams and pentesters identify and exploit the MS17-010 EternalBlue SMBv1 flaw, covering scanning, payload configuration, execution, and post-exploitation tasks along with detection/validation steps for authorized environments.
View Details
Prev123...172173174175176177178...194195196Next
Language
简体中文
English