Skill UI

This skill provides comprehensive methods for detecting and preventing privilege escalation within Kubernetes pods and containers. It details using runtime tools like Falco for monitoring syscalls and capabilities, and implementing admission controls via OPA Gatekeeper or Pod Security Admission to enforce security best practices, thereby hardening the cluster against unauthorized access and dangerous configurations.

This skill details the exploitation of the critical Zerologon vulnerability (CVE-2020-1472) found in the Microsoft Netlogon Remote Protocol. It allows an unauthenticated attacker to compromise a domain controller by resetting its machine account password. The guide covers the complete attack chain, including initial exploitation, credential dumping via DCSync, and subsequent privilege escalation in Active Directory environments. Used exclusively for authorized red teaming and security testing.

IAM Permission Boundaries are an advanced AWS security feature used to set the maximum permissions an identity-based policy can grant to an IAM entity (user or role). This allows security teams to safely delegate role creation to developers while strictly enforcing least-privilege principles, preventing unintended privilege escalation.

A comprehensive guide to securing Kubernetes Role-Based Access Control (RBAC). It teaches best practices for implementing least-privilege policies, eliminating excessive cluster-admin bindings, utilizing namespace-scoped roles, and integrating external identity providers (OIDC) to mitigate risks like privilege escalation and unauthorized data access.

A comprehensive guide and workflow for performing authorized penetration testing on AWS environments using the open-source Pacu framework. This skill covers enumerating IAM configurations, identifying privilege escalation paths, testing credential harvesting, and validating security controls across S3, EC2, Lambda, and Secrets Manager. It is designed for red team exercises and risk assessment when auditing cloud infrastructure security.

Kubesec is a powerful open-source tool designed to perform comprehensive security risk analysis on Kubernetes resource manifests (YAML/JSON). It automatically detects critical misconfigurations, potential privilege escalation vectors, and deviations from industry security best practices. It provides actionable scoring and hardening recommendations, making it essential for CI/CD pipelines, security auditing, and automated compliance checks.

This skill provides comprehensive guidance on hardening GitHub Actions CI/CD pipelines against modern supply chain attacks, credential theft, and privilege escalation. It teaches best practices such as pinning actions to immutable SHA digests, minimizing GITHUB_TOKEN permissions, preventing script injection from untrusted inputs, and implementing required approval gates for critical deployments.

This tool systematically tests API endpoints for mass assignment (over-posting) vulnerabilities. It simulates an attacker injecting undocumented or privileged fields (such as 'role' or 'balance') into standard API requests. By analyzing the server's response, it determines if the API binds all client-supplied parameters to the data model without proper filtering, which could allow unauthorized privilege escalation or data modification. This is critical for achieving OWASP API Top 10 compliance.

A comprehensive guide for advanced penetration testing designed to identify flaws in application business rules that automated scanners miss. Focus areas include price manipulation, workflow bypass, privilege escalation, and race conditions. Essential for securing e-commerce platforms, financial systems, and multi-step critical processes.

A comprehensive guide and toolkit for performing deep security assessments on mobile application backends. It covers identifying vulnerabilities such as broken authentication, insecure token management (JWT, opaque tokens), session fixation, privilege escalation, and IDOR (Broken Object-Level Authorization) across various OAuth flows (OIDC, PKCE). Essential for penetration testers assessing API security.

This skill provides a comprehensive guide and structured SQL templates for performing deep forensic investigations on AWS cloud logs. It utilizes AWS Athena to query massive datasets from CloudTrail, VPC Flow Logs, S3 access logs, and ALB logs. Ideal for detecting unauthorized access, data exfiltration, and privilege escalation during security incident response.

Provides step-by-step techniques for assessing AWS security, covering IAM enumeration, privilege escalation, SSRF metadata attacks, S3/Lambda exploitation, and red-team persistence workflows with recommended tools and commands.