Skill UI

This guide provides comprehensive instructions for deploying applications that interact with Clay—such as webhook receivers, enrichment processors, or CRM sync services—to major production infrastructure platforms (Vercel, Google Cloud Run, or Docker). It covers environment configuration, secret management, and setting up secure HTTPS endpoints for robust production deployment.

Assists with security fundamentals by auto-activating when asked about https certificate checker tasks, guiding through detection patterns, secure coding, and validation workflows for reliable certificate handling.

This skill guide provides comprehensive instructions for deploying Instantly.ai's API v2 webhook receivers and automation services to major cloud platforms. It covers setting up resilient, public HTTPS endpoints using Vercel serverless functions, Google Cloud Run containers, or Fly.io services. Use this when moving from local development to production or setting up robust webhook endpoints that handle real-time event processing.

Hands-on lab guide to configuring HTTP, HTTPS, SNMP, and SMB services for pentesting, covering setup, firewall rules, enumeration tools, and log inspection in controlled environments.

Automate Spotify workflows through the Composio MCP to manage playlists, search the catalog, control playback, retrieve track/album data, and inspect authenticated user profiles once SPOTIFY_* tools are enabled via https://rube.app/mcp.

Performs a GEO-focused technical SEO audit covering crawlability, indexability, security, performance, SSR, and AI crawler access to keep both search engines and AI agents from losing visibility.

This comprehensive guide details how to deploy and configure a resilient Command and Control (C2) infrastructure using the advanced Sliver framework. It covers setting up multi-protocol listeners (HTTPS, mTLS, DNS, WireGuard), implementing complex redirectors, domain fronting, and establishing operational security controls for professional red team engagements and advanced security assessments.

This guide provides a comprehensive walkthrough for deploying and configuring a production-grade Command and Control (C2) infrastructure using the open-source Havoc framework. It covers setting up the Teamserver, configuring secure HTTPS listeners, implementing redirectors (e.g., Nginx), and deploying Demon agents for advanced post-exploitation red team operations. This skill is essential for authorized security assessments and building robust defensive countermeasures.

This skill uses the Python azure-mgmt-storage SDK to perform comprehensive security audits on Azure Blob and ADLS storage accounts. It detects critical misconfigurations, including public access exposure, weak or long-lived SAS tokens, lack of encryption at rest, failure to enforce HTTPS, and outdated TLS versions. The output is a detailed, risk-scored report with remediation recommendations, essential for SOC analysts and security posture management.

A comprehensive guide for intercepting and analyzing HTTP/HTTPS traffic from mobile applications using Burp Suite. This skill walks through configuring proxies on Android and iOS, handling CA certificate installation, and executing advanced penetration testing techniques. It is essential for assessing API security, identifying data leakage, and finding authentication vulnerabilities in mobile client-server communications.

This skill provides advanced techniques for bypassing SSL/TLS certificate pinning in Android and iOS applications. It supports interception of HTTPS traffic during authorized security assessments, covering pinning mechanisms like OkHttp, TrustManager, NSURLSession, and utilizes tools such as Frida and Objection for comprehensive testing.

Automates complex red team operations using the Covenant C2 framework. This guide covers the entire lifecycle of authorized adversary simulation, including configuring HTTP/HTTPS listeners, deploying agents (grunts), executing tasks remotely, and tracking lateral movement. It is essential for performing comprehensive penetration testing and security auditing.