Skill UI

A comprehensive guide for systematically assessing REST and GraphQL API endpoints against the OWASP API Security Top 10 risks. This includes practical workflows for testing critical vulnerabilities such as Broken Object Level Authorization (BOLA), broken authentication, excessive data exposure, and rate limiting, using tools like Burp Suite, Postman, and ffuf. Ideal for pre-deployment audits and authorized penetration testing engagements.

This skill provides a comprehensive framework for simulating and testing disaster recovery plans against ransomware threats. It guides users through measuring Recovery Time Objective (RTO) and Recovery Point Objective (RPO), validating clean backup restores, and hardening security controls to ensure organizational resilience. It is designed for tabletop exercises and compliance auditing, not for active incident response.

This guide details securing the CAST AI integration across multiple layers. It covers best practices for API key management (including rotation and secrets storage), implementing least-privilege RBAC using 'kubectl', deploying the Kvisor security agent for runtime scanning, and setting up Kubernetes Network Policies to restrict egress traffic. Use this when hardening production clusters or performing security audits.

A comprehensive guide to implementing Role-Based Access Control (RBAC) in ClickHouse. Learn how to manage user authentication, define hierarchical roles, enforce row-level security (RLS) for tenant isolation, restrict data access via column-level grants, and manage resource consumption using quotas and settings profiles. Essential for multi-tenant SaaS and secure data analytics platforms.

This guide provides a comprehensive blueprint for deploying the Abridge clinical AI integration to highly secure, HIPAA-compliant cloud infrastructure. It covers best practices for healthcare deployments, including utilizing BAA-covered services (GCP Cloud Run), robust secret management via GCP Secret Manager, and implementing VPC-restricted networking for maximum data security.

A comprehensive playbook detailing advanced techniques for post-exploitation security bypass on Linux systems. Covers escaping restricted shells (rbash), evading noexec/read-only filesystems using in-memory execution (DDexec, memfd_create), and circumventing mandatory access controls like AppArmor and SELinux. Essential for penetration testing and red team operations.