Skill UI

This skill deploys Remote Browser Isolation (RBI) as a core component of a Zero Trust security architecture. It implements sophisticated isolation policies utilizing URL categorization, risk-based routing, and Content Disarming and Reconstruction (CDR) for file sanitization. It provides robust data loss prevention controls, effectively mitigating zero-day exploits, phishing, and data exfiltration across isolated web sessions, and integrating with SWG and ZTNA platforms.

This skill guides the comprehensive hardening of LDAP directory services. It addresses common vulnerabilities such as LDAP injection, anonymous binding, and credential harvesting. Users can enforce strong security controls, including LDAPS, channel binding, and granular access control lists (ACLs). It is essential when establishing robust identity access management (IAM) architecture or meeting stringent compliance requirements like NIST standards.

A comprehensive, pre-deployment, defense-in-depth security audit tool for Solidity smart contracts built with Foundry. It combines static analysis (Slither, Aderyn), symbolic execution (Mythril), property-based fuzz testing, and key hygiene checks to proactively detect critical vulnerabilities like reentrancy, access control flaws, and arithmetic bugs before deployment to any EVM chain.

This methodology guides organizations through a comprehensive cybersecurity risk assessment using the NIST SP 800-30 framework. It systematically identifies threat sources, vulnerabilities, and potential threat events. By determining the likelihood and impact of these threats, the process calculates overall risk, resulting in a prioritized, defensible risk register. Essential for compliance (e.g., ISO 27001, HIPAA), system authorization, and strategic risk reporting.

This skill provides a comprehensive solution for monitoring brand impersonation attacks across multiple digital vectors. It systematically scans domains, social media platforms, mobile app stores, and the dark web to detect phishing campaigns, typosquatting, and unauthorized brand usage. It is essential for security teams conducting proactive threat intelligence gathering and vulnerability assessments to safeguard brand integrity.

Automated system designed to monitor paste sites (e.g., Pastebin, GitHub Gists) for leaked credentials, API keys, and sensitive data dumps. It uses advanced scraping, keyword matching, and regex patterns to provide early detection of data breaches and security incidents.

This skill details the process of building and maintaining a comprehensive anti-phishing training program. It covers establishing baseline susceptibility assessments, deploying regular, progressive simulations, and providing interactive, role-based learning modules (using platforms like KnowBe4 or Proofpoint). The focus is on measuring and improving the human layer of defense against social engineering and sophisticated phishing attempts, thereby fostering a continuous security culture.

A comprehensive guide for conducting authorized vishing (voice phishing) pretext calls. This technique, utilized in red-teaming, simulates an attacker impersonating a trusted authority (e.g., IT support, vendor) to test an organization's human security controls. It measures employee adherence to verification protocols and highlights vulnerabilities in staff security awareness.

This guide provides a deep dive into the cryptographic techniques used by ransomware, including AES, RSA, ChaCha20, and hybrid schemes. It covers identifying algorithms, analyzing key management patterns (strong, weak, flawed), and reverse engineering file encryption routines to assess decryption feasibility and support recovery efforts.

This skill provides comprehensive functionality for monitoring and mapping adversary-controlled assets, such as C2 servers, phishing domains, and exploit kit hosts. By leveraging tools like Passive DNS, Certificate Transparency logs, and specialized scanners (Shodan/Censys), analysts can discover, track, and pivot through complex threat actor infrastructure over time, significantly enhancing security operations and threat intelligence maturity.

A comprehensive guide detailing the systematic workflow for analyzing malicious Linux ELF binaries. It covers essential techniques including static analysis (using readelf, elftools), dynamic tracing (strace, ltrace), and deep reverse engineering (GDB) of various threats like botnets, cryptominers, and ransomware targeting Linux environments, containers, and cloud infrastructure.