Login
Download

Skill UI

Browse and discover 9746+ curated skills
All Development Artificial Intelligence Design & Creative Product & Business Data Science Marketing Soft Skills Productivity Engineering Languages
Search Penetration Testing , found 162 results
Default Newest Most Downloaded

Wireless Network Penetration Testing Guide

performing-wireless-network-penetration-test
mukul975/Anthropic-Cybersecurity-Skills
120
This comprehensive guide details the end-to-end process of conducting wireless security assessments. It covers passive reconnaissance, capturing WPA/WPA2 handshakes, cracking keys using Aircrack-ng and Hashcat, simulating Evil Twin attacks, detecting rogue access points, and testing network segmentation. It is essential for organizations validating their WiFi infrastructure security.
View Details

Wireless Security Assessment With Kismet

performing-wireless-security-assessment-with-kismet
mukul975/Anthropic-Cybersecurity-Skills
446
A comprehensive guide detailing how to conduct passive wireless security assessments using Kismet. This skill covers identifying rogue access points, detecting weak encryption (WEP, TKIP), mapping hidden SSIDs, and analyzing raw 802.11 frame types. It is essential for professional network auditing, incident response, and penetration testing in complex wireless environments.
View Details

Testing Android Intents for Vulnerability Assessment

testing-android-intents-for-vulnerabilities
mukul975/Anthropic-Cybersecurity-Skills
138
This skill is designed for assessing the security of Android inter-process communication (IPC) by systematically testing intents, broadcast receivers, content providers, and exported components. It helps identify critical vulnerabilities such as intent injection, unauthorized data leakage, and component hijacking, which are crucial during mobile penetration testing and security audits.
View Details

Assessing Api Security with OWASP Top 10

testing-api-security-with-owasp-top-10
mukul975/Anthropic-Cybersecurity-Skills
65
A comprehensive guide for systematically assessing REST and GraphQL API endpoints against the OWASP API Security Top 10 risks. This includes practical workflows for testing critical vulnerabilities such as Broken Object Level Authorization (BOLA), broken authentication, excessive data exposure, and rate limiting, using tools like Burp Suite, Postman, and ffuf. Ideal for pre-deployment audits and authorized penetration testing engagements.
View Details

Testing CORS Misconfiguration for Security Assessment

testing-cors-misconfiguration
mukul975/Anthropic-Cybersecurity-Skills
392
This skill provides a comprehensive guide and methodology for identifying and exploiting Cross-Origin Resource Sharing (CORS) misconfigurations in web applications. It covers testing origin validation bypasses, analyzing preflight requests, and simulating data exfiltration during authorized penetration tests, crucial for assessing API security.
View Details

Testing for Broken Access Control

testing-for-broken-access-control
mukul975/Anthropic-Cybersecurity-Skills
283
A comprehensive methodology for penetration testing web applications to identify broken access control vulnerabilities. This guide covers systematic testing for Role-Based Access Control (RBAC), privilege escalation, insecure direct object references (IDOR), and API authorization flaws in multi-tenant environments. It outlines the use of tools like Burp Suite and ffuf to map endpoints and simulate various user roles.
View Details

Business Logic Vulnerability Testing Guide

testing-for-business-logic-vulnerabilities
mukul975/Anthropic-Cybersecurity-Skills
86
A comprehensive guide for advanced penetration testing designed to identify flaws in application business rules that automated scanners miss. Focus areas include price manipulation, workflow bypass, privilege escalation, and race conditions. Essential for securing e-commerce platforms, financial systems, and multi-step critical processes.
View Details

Host Header Injection Vulnerability Testing

testing-for-host-header-injection
mukul975/Anthropic-Cybersecurity-Skills
326
This skill guides comprehensive security testing for Host Header Injection vulnerabilities in web applications. It simulates attacks to identify critical risks such as password reset poisoning, web cache poisoning, Server-Side Request Forgery (SSRF), and virtual host routing manipulation. It is essential for penetration testers assessing backend security behind proxies and load balancers.
View Details

Testing For Open Redirect Vulnerabilities

testing-for-open-redirect-vulnerabilities
mukul975/Anthropic-Cybersecurity-Skills
373
This skill provides a comprehensive methodology for identifying and exploiting open redirect vulnerabilities in web applications. It covers advanced bypass techniques (e.g., URL encoding, protocol-relative URLs, path traversal) and demonstrates chaining with other flaws like OAuth redirection for advanced phishing simulations and token theft. Designed for authorized security professionals conducting penetration tests.
View Details

Testing for XML Injection Vulnerabilities

testing-for-xml-injection-vulnerabilities
mukul975/Anthropic-Cybersecurity-Skills
451
A comprehensive guide and set of payloads for penetration testing web applications that process XML input. It details how to test for major vulnerabilities such as XXE, XPath injection, SSRF, and XML parsing attacks, providing step-by-step workflows and advanced payloads for identifying data exposure and security flaws.
View Details

Xss Vulnerability Penetration Testing

testing-for-xss-vulnerabilities
mukul975/Anthropic-Cybersecurity-Skills
497
This comprehensive skill guides the testing of web applications for Cross-Site Scripting (XSS) vulnerabilities. It covers reflected, stored, and DOM-based injection points. Testers learn to map input/output contexts, craft context-appropriate payloads, and bypass complex sanitization and CSP protections, ensuring thorough client-side security assessment.
View Details

Testing XSS Vulnerabilities With Burp Suite

testing-for-xss-vulnerabilities-with-burpsuite
mukul975/Anthropic-Cybersecurity-Skills
309
A comprehensive guide detailing how to identify and validate Cross-Site Scripting (XSS) vulnerabilities using Burp Suite's advanced tools (Repeater, Intruder, DOM Invader). This methodology covers reflected, stored, and DOM-based XSS, and includes strategies for bypassing security filters and Content Security Policy (CSP), making it essential for web application penetration testing and bug bounty programs.
View Details
Prev123...67891011121314Next
Language
简体中文
English