Skill UI

This skill provides comprehensive guidance on deploying and tuning Web Application Firewall (WAF) rules across major cloud platforms, including AWS, Azure, and Cloudflare. It details strategies to protect cloud-hosted applications against OWASP Top 10 attacks, implement rate limiting for brute force protection, configure geo-blocking, and refine rules to minimize false positives.

A comprehensive guide to configuring multi-layered DDoS protection using Cloudflare. This skill covers mitigating volumetric (L3/4) and application-layer (L7) attacks by setting up managed rulesets, Web Application Firewall (WAF) rules, rate limiting, and Bot Management. Ideal for strengthening security architecture and meeting compliance standards.

Learn how to implement Runtime Application Self-Protection (RASP) agents for Java and Python web applications. This skill covers deploying OpenRASP, detecting OWASP Top 10 attacks (SQLi, XSS, RCE), configuring security policies, and integrating real-time security alerts with SIEM platforms for comprehensive defense in depth.

A comprehensive guide to configuring ModSecurity WAF with OWASP Core Rule Set (CRS). It covers establishing robust web application logging, tuning rules to minimize false positives, and implementing custom SecRules for advanced threat detection. Essential for security audits, compliance, and architectural hardening.

This skill is designed for implementing and managing user verification workflows within a Laravel PHP framework. It facilitates processes such as email confirmation, password reset validation, and ensuring data integrity for secure application access. It is essential for robust web backend development.

This skill guides authorized security professionals through testing web applications for clickjacking vulnerabilities. It involves checking frame embedding controls (like X-Frame-Options and CSP) and crafting complex proof-of-concept overlays to see if users can be tricked into performing unintended sensitive actions, such as deleting accounts or transferring funds.

This skill details advanced methodologies for bypassing Content Security Policy (CSP) protections. It covers exploiting misconfigurations, such as using 'unsafe-inline' or 'unsafe-eval', leveraging JSONP endpoints, manipulating base-uri, and leaking nonces. It is essential for web application penetration testing and security auditing when standard XSS payloads are blocked by CSP.

This guide provides a comprehensive methodology for performing directory traversal and path traversal testing on web applications. It covers identifying file path parameters, executing basic payloads (Linux/Windows), bypassing common security filters using encoding (URL, double, UTF-8), and automating the process with tools like ffuf and dotdotpwn. It also details advanced steps for local file inclusion (LFI) and potential escalation to Remote Code Execution (RCE) via log poisoning.

A comprehensive guide for performing authorized security assessments on GraphQL APIs. This skill covers key areas such as endpoint discovery, schema introspection, testing for authorization flaws (BOLA/BFLA), injection vulnerabilities (SQL/NoSQL), and denial-of-service risks. Essential for penetration testers and bug bounty researchers targeting modern web applications.

This guide details the technique and workflow for executing HTTP Parameter Pollution (HPP) attacks. HPP exploits how web applications and back-end systems handle duplicate HTTP parameters (e.g., first-wins, last-wins, concatenation). It is a critical method for bypassing Web Application Firewalls (WAFs), testing input validation logic, and identifying vulnerabilities in API, OAuth, and payment processing flows.

A comprehensive guide for cybersecurity professionals detailing the process of collecting, parsing, and correlating system, application, and security logs (Windows EVTX, Linux syslog, web logs). It helps reconstruct event timelines, identify breach activity, and establish evidence for forensic reports.

This skill simulates SSL stripping and Man-in-the-Middle (MITM) attacks using specialized tools like Bettercap and sslstrip. It is designed for authorized penetration testing to assess a web application's resilience against downgrade attacks. Users can test if HSTS headers are properly enforced, if TLS certificates are correctly validated, and if sensitive data remains encrypted throughout the session.