Skill UI

A comprehensive guide for digital forensics professionals on analyzing volatile memory dumps using Volatility 3. Learn to extract critical evidence, including running processes, network connections, loaded DLLs, system credentials, and detecting advanced threats like process hollowing and rootkits. Essential for incident response and malware analysis.

This comprehensive guide outlines the end-to-end workflow for mobile device forensics, covering data acquisition and analysis for both iOS and Android platforms. It details techniques using commercial tools like Cellebrite UFED and open-source utilities (ALEAPP, iLEAPP, ADB). This methodology is critical for investigating deleted messages, call logs, location data, and application artifacts in legal or corporate investigations.

Conduct comprehensive security assessments for Operational Technology (OT) networks, including SCADA and DCS systems. This skill maps industrial protocols (Modbus, DNP3, OPC UA) and analyzes traffic against the Purdue Model. It is crucial for identifying IT/OT convergence risks, detecting misconfigurations, and ensuring compliance with standards like IEC 62443.

This tool orchestrates safe vulnerability assessments for Operational Technology (OT) and Industrial Control Systems (ICS) environments. It prioritizes safety by guiding users through passive monitoring, native protocol querying, and carefully controlled active scanning methods, specifically designed to identify vulnerabilities without risk of disrupting industrial processes or crashing legacy controllers. Essential for compliance audits (e.g., IEC 62443).

This skill demonstrates how to craft and inject custom, malformed, or spoofed network packets using tools like Scapy and hping3. It is designed for authorized cybersecurity assessments to rigorously test firewall rules, Intrusion Detection/Prevention Systems (IDS/IPS) signatures, anti-spoofing controls, and overall network stack resilience against protocol anomalies and fragmentation attacks. Use only in controlled, authorized environments.

This skill provides comprehensive cybersecurity assessments for critical electric power infrastructure, covering EMS, SCADA, and substation automation systems. It is crucial for verifying NERC CIP compliance, analyzing IEC 61850 protocols, and securing synchrophasor (PMU) networks against advanced threats like Industroyer. Use it for regulatory audits and operational security reviews.

This skill provides a comprehensive framework for performing privilege escalation assessments post-initial compromise. It guides testers in identifying paths from low-privilege access to root or SYSTEM-level control on both Linux and Windows operating systems. Techniques covered include abusing SUID binaries, exploiting misconfigured services, leveraging kernel vulnerabilities, and harvesting credentials.

This skill covers advanced techniques used in red teaming and penetration testing to elevate privileges from a low-level user to root access on a compromised Linux system. It details how to enumerate and exploit various vectors, including SUID/SGID binaries, misconfigured sudo rules, kernel vulnerabilities (e.g., Dirty Pipe), Cron job abuse, and abusing system services. Essential for comprehensive security assessments.

A specialized analyzer designed to examine Siemens S7comm and S7CommPlus protocol traffic. It helps security professionals assess the security posture of SIMATIC S7 PLCs, detecting vulnerabilities such as unauthorized program downloads, PLC stop commands, and potential integrity bypasses in Operational Technology (OT) environments.

This guide provides a comprehensive methodology for auditing essential HTTP security headers, including CSP, HSTS, X-Frame-Options, and Referrer-Policy. It helps identify missing or improperly configured browser-level protections, crucial for mitigating vulnerabilities like XSS, clickjacking, and mixed content issues, ensuring compliance with standards like PCI DSS and SOC 2.

This sophisticated tool automates the security review of serverless functions across major cloud providers, including AWS Lambda, Azure Functions, and GCP Cloud Functions. It systematically identifies critical misconfigurations such as overly permissive IAM execution roles (wildcard actions), hardcoded secrets in environment variables, and potential lack of runtime protections. Ideal for pre-production auditing and compliance checks.

A comprehensive tool for conducting deep security assessments of SSL/TLS server configurations. It uses the sslyze library to evaluate supported protocol versions (e.g., TLS 1.0-1.3), cipher suite strength, certificate chain validity, HSTS enforcement, and scan for critical vulnerabilities like Heartbleed and ROBOT. Ideal for security auditing and incident response.