Browse Skills — Page 146

performing-post-quantum-cryptography-migration

mukul975/Anthropic-Cybersecurity-Skills

>

performing-power-grid-cybersecurity-assessment

mukul975/Anthropic-Cybersecurity-Skills

>

performing-privacy-impact-assessment

mukul975/Anthropic-Cybersecurity-Skills

>

performing-privilege-escalation-assessment

mukul975/Anthropic-Cybersecurity-Skills

>

performing-privilege-escalation-on-linux

mukul975/Anthropic-Cybersecurity-Skills

Linux privilege escalation involves elevating from a low-privilege user account to root access on a compromised system. Red teams exploit misconfigurations, vulnerable services, kernel exploits, and w

performing-privileged-account-access-review

mukul975/Anthropic-Cybersecurity-Skills

Conduct systematic reviews of privileged accounts to validate access rights, identify excessive permissions, and enforce least privilege across PAM infrastructure.

performing-privileged-account-discovery

mukul975/Anthropic-Cybersecurity-Skills

Discover and inventory all privileged accounts across enterprise infrastructure including domain admins, local admins, service accounts, database admins, cloud IAM roles, and application admin account

performing-purple-team-atomic-testing

mukul975/Anthropic-Cybersecurity-Skills

>

performing-purple-team-exercise

mukul975/Anthropic-Cybersecurity-Skills

>

performing-ransomware-response

mukul975/Anthropic-Cybersecurity-Skills

>

performing-ransomware-tabletop-exercise

mukul975/Anthropic-Cybersecurity-Skills

>

performing-red-team-phishing-with-gophish

mukul975/Anthropic-Cybersecurity-Skills

>-

performing-red-team-with-covenant

mukul975/Anthropic-Cybersecurity-Skills

Conduct red team operations using the Covenant C2 framework for authorized adversary simulation, including listener setup, grunt deployment, task execution, and lateral movement tracking.

performing-reflected-file-download

xalgord/xalgorix

Identifying and exploiting Reflected File Download (RFD) where an endpoint reflects attacker-controlled

performing-return-oriented-programming

xalgord/xalgorix

Methodology for building Return-Oriented Programming (ROP) chains to bypass NX/DEP by reusing existing code

performing-s7comm-protocol-security-analysis

mukul975/Anthropic-Cybersecurity-Skills

>

performing-sca-dependency-scanning-with-snyk

mukul975/Anthropic-Cybersecurity-Skills

>

performing-scada-hmi-security-assessment

mukul975/Anthropic-Cybersecurity-Skills

>

performing-second-order-sql-injection

mukul975/Anthropic-Cybersecurity-Skills

Detect and exploit second-order SQL injection vulnerabilities where malicious input is stored in a database and later executed in an unsafe SQL query during a different application operation.

performing-security-code-review

aAAaqwq/AGI-Super-Team

This skill provides automated assistance for security agent tasks

performing-security-headers-audit

mukul975/Anthropic-Cybersecurity-Skills

Auditing HTTP security headers including CSP, HSTS, X-Frame-Options, and cookie attributes to identify missing or misconfigured browser-level protections.

performing-serverless-function-security-review

mukul975/Anthropic-Cybersecurity-Skills

>

performing-service-account-audit

mukul975/Anthropic-Cybersecurity-Skills

Audit service accounts across enterprise infrastructure to identify orphaned, over-privileged, and non-compliant accounts. This skill covers discovery of service accounts in Active Directory, cloud pl

performing-service-account-credential-rotation

mukul975/Anthropic-Cybersecurity-Skills

Automate credential rotation for service accounts across Active Directory, cloud platforms, and application databases to eliminate stale secrets and reduce compromise risk.

performing-soap-web-service-security-testing

mukul975/Anthropic-Cybersecurity-Skills

Perform security testing of SOAP web services by analyzing WSDL definitions and testing for XML injection, XXE, WS-Security bypass, and SOAPAction spoofing.

performing-soc-tabletop-exercise

mukul975/Anthropic-Cybersecurity-Skills

>

performing-soc2-type2-audit-preparation

mukul975/Anthropic-Cybersecurity-Skills

>

performing-sqlite-database-forensics

mukul975/Anthropic-Cybersecurity-Skills

Perform forensic analysis of SQLite databases to recover deleted records from freelists and WAL files, decode encoded timestamps, and extract evidence from browser history, messaging apps, and mobile device databases.

performing-ssl-certificate-lifecycle-management

mukul975/Anthropic-Cybersecurity-Skills

SSL/TLS certificate lifecycle management encompasses the full process of requesting, issuing, deploying, monitoring, renewing, and revoking X.509 certificates. Poor certificate management is a leading

performing-ssl-stripping-attack

mukul975/Anthropic-Cybersecurity-Skills

>

performing-ssl-tls-inspection-configuration

mukul975/Anthropic-Cybersecurity-Skills

Configure SSL/TLS inspection on network security devices to decrypt, inspect, and re-encrypt HTTPS traffic for threat detection while managing certificates, exemptions, and privacy compliance.

performing-ssl-tls-security-assessment

mukul975/Anthropic-Cybersecurity-Skills

Assess SSL/TLS server configurations using the sslyze Python library to evaluate cipher suites, certificate chains, protocol versions, HSTS headers, and known vulnerabilities like Heartbleed and ROBOT.

performing-ssrf-vulnerability-exploitation

mukul975/Anthropic-Cybersecurity-Skills

>-

performing-static-malware-analysis-with-pe-studio

mukul975/Anthropic-Cybersecurity-Skills

>

performing-steganography-detection

mukul975/Anthropic-Cybersecurity-Skills

Detect and extract hidden data embedded in images, audio, and other media files using steganalysis tools to uncover covert communication channels.

performing-subdomain-enumeration-with-subfinder

mukul975/Anthropic-Cybersecurity-Skills

Enumerate subdomains of target domains using ProjectDiscovery's Subfinder passive reconnaissance tool to map the attack surface during security assessments.

performing-supply-chain-attack-simulation

mukul975/Anthropic-Cybersecurity-Skills

Simulate and detect software supply chain attacks including typosquatting detection via Levenshtein distance, dependency confusion testing against private registries, package hash verification with pip, and known vulnerability scanning with pip-audit.

performing-thick-client-application-penetration-test

mukul975/Anthropic-Cybersecurity-Skills

Conduct a thick client application penetration test to identify insecure local storage, hardcoded credentials, DLL hijacking, memory manipulation, and insecure API communication in desktop applications using dnSpy, Procmon, and Burp Suite.

performing-threat-emulation-with-atomic-red-team

mukul975/Anthropic-Cybersecurity-Skills

>

performing-threat-hunting-with-elastic-siem

mukul975/Anthropic-Cybersecurity-Skills

>

performing-threat-hunting-with-yara-rules

mukul975/Anthropic-Cybersecurity-Skills

>

performing-threat-intelligence-sharing-with-misp

mukul975/Anthropic-Cybersecurity-Skills

Use PyMISP to create, enrich, and share threat intelligence events on a MISP platform, including IOC management, feed integration, STIX export, and community sharing workflows.

performing-threat-landscape-assessment-for-sector

mukul975/Anthropic-Cybersecurity-Skills

Conduct a sector-specific threat landscape assessment by analyzing threat actor targeting patterns, common attack vectors, and industry-specific vulnerabilities to inform organizational risk management.

performing-threat-modeling-with-owasp-threat-dragon

mukul975/Anthropic-Cybersecurity-Skills

Use OWASP Threat Dragon to create data flow diagrams, identify threats using STRIDE and LINDDUN methodologies, and generate threat model reports for secure design review.

performing-timeline-reconstruction-with-plaso

mukul975/Anthropic-Cybersecurity-Skills

Build comprehensive forensic super-timelines using Plaso (log2timeline) to correlate events across file systems, logs, and artifacts into a unified chronological view.

performing-user-behavior-analytics

mukul975/Anthropic-Cybersecurity-Skills

>

performing-vlan-hopping-attack

mukul975/Anthropic-Cybersecurity-Skills

>

performing-vulnerability-scanning-with-nessus

mukul975/Anthropic-Cybersecurity-Skills

>

performing-web-application-firewall-bypass

mukul975/Anthropic-Cybersecurity-Skills

Bypass Web Application Firewall protections using encoding techniques, HTTP method manipulation, parameter pollution, and payload obfuscation to deliver SQL injection, XSS, and other attack payloads past WAF detection rules.

performing-web-application-penetration-test

mukul975/Anthropic-Cybersecurity-Skills

>

performing-web-application-scanning-with-nikto

mukul975/Anthropic-Cybersecurity-Skills

Nikto is an open-source web server and web application scanner that tests against over 7,000 potentially dangerous files/programs, checks for outdated versions of over 1,250 servers, and identifies ve

performing-web-application-vulnerability-triage

mukul975/Anthropic-Cybersecurity-Skills

Triage web application vulnerability findings from DAST/SAST scanners using OWASP risk rating methodology to separate true positives from false positives and prioritize remediation.

performing-web-cache-deception-attack

mukul975/Anthropic-Cybersecurity-Skills

Execute web cache deception attacks by exploiting path normalization discrepancies between CDN caching layers and origin servers to cache and retrieve sensitive authenticated content.

performing-web-cache-poisoning-attack

mukul975/Anthropic-Cybersecurity-Skills

Exploiting web cache mechanisms to serve malicious content to other users by poisoning cached responses through unkeyed headers and parameters during authorized security tests.

performing-wifi-password-cracking-with-aircrack

mukul975/Anthropic-Cybersecurity-Skills

>

performing-windows-artifact-analysis-with-eric-zimmerman-tools

mukul975/Anthropic-Cybersecurity-Skills

Perform comprehensive Windows forensic artifact analysis using Eric Zimmerman's open-source EZ Tools suite including KAPE, MFTECmd, PECmd, LECmd, JLECmd, and Timeline Explorer for parsing registry hives, prefetch files, event logs, and file system metadata.

performing-windows-binary-exploitation

xalgord/xalgorix

Methodology for exploiting classic 32-bit Windows stack buffer overflows in network services during authorized

performing-wireless-network-penetration-test

mukul975/Anthropic-Cybersecurity-Skills

Execute a wireless network penetration test to assess WiFi security by capturing handshakes, cracking WPA2/WPA3 keys, detecting rogue access points, and testing wireless segmentation using Aircrack-ng and related tools.

performing-wireless-security-assessment-with-kismet

mukul975/Anthropic-Cybersecurity-Skills

Conduct wireless network security assessments using Kismet to detect rogue access points, hidden SSIDs, weak encryption, and unauthorized clients through passive RF monitoring.

performing-xs-search-attacks

xalgord/xalgorix

Performing XS-Search / XS-Leaks attacks that extract cross-origin information through side channels — using

performing-yara-rule-development-for-detection

mukul975/Anthropic-Cybersecurity-Skills

Develop precise YARA rules for malware detection by identifying unique byte patterns, strings, and behavioral indicators in executable files while minimizing false positives.

performing-zero-day-vulnerability-discovery

xalgord/xalgorix

Systematic methodology for discovering novel vulnerabilities through manual code auditing, fuzzing, reverse engineering, and creative attack chaining during authorized security assessments.

perigon-automation

ComposioHQ/awesome-claude-skills

"Automate Perigon tasks via Rube MCP (Composio). Always search tools first for current schemas."

period-close

vm0-ai/vm0-skills

Orchestrate the month-end and quarter-end accounting close with task sequencing, dependency management, and progress tracking. Use for close calendar planning, close checklist management, close task tracking, close timeline optimization, close day activities, hard close procedures, accelerated close planning, or close process improvement.

perl-patterns

affaan-m/ECC

Modern Perl 5.36+ idioms, best practices, and conventions for building robust, maintainable Perl applications.

perl-security

affaan-m/ECC

Comprehensive Perl security covering taint mode, input validation, safe process execution, DBI parameterized queries, web security (XSS/SQLi/CSRF), and perlcritic security policies.

perl-testing

affaan-m/ECC

Perl testing patterns using Test2::V0, Test::More, prove runner, mocking, coverage with Devel::Cover, and TDD methodology.

permission-auditor

UseAI-pro/openclaw-skills-security

Analyze OpenClaw skill permissions and explain exactly what each permission allows. Identifies over-privileged

permission-manager

aAAaqwq/AGI-Super-Team

管理Claude Code的全局工具权限配置，自动将MCP命令或其他工具添加到allowedTools中，避免每次使用时都需要手动批准。工作流程：确认用户需要添加的命令

permission-marketing

guia-matthieu/clawfu-skills

"Build marketing that people actually want using Seth Godin's Permission Marketing methodology—earn attention instead of demanding it, turning strangers into friends and friends into customers. Use when: **Build an email list** that's engaged and valuable; **Design lead magnets** that earn real permission; **Create content strategy** based on earning attention; **Evaluate marketing tactics** for permission vs. interruption; **Improve email marketing** by increasing anticipation and relevance"

perp-funding-basis

HKUDS/Vibe-Trading

Perpetual futures funding rate analysis and cash-carry basis trading — funding rate regimes, annualized basis signals, carry trade construction, and funding rate arbitrage between exchanges.

perplexity

vm0-ai/vm0-skills

Perplexity API for AI search. Use when user mentions "Perplexity", "AI

perplexity-api

TerminalSkills/skills

>-

perplexity-search

mkurman/zorai

Perform AI-powered web searches with real-time information using Perplexity models via LiteLLM and OpenRouter. This skill should be used when conducting web searches for current information, finding recent scientific literature, getting grounded answers with source citations, or accessing information beyond the model knowledge cutoff. Provides access to multiple Perplexity models including Sonar Pro, Sonar Pro Search (advanced agentic search), and Sonar Reasoning Pro through a single OpenRouter API key.

perplexityai-automation

ComposioHQ/awesome-claude-skills

"Automate Perplexityai tasks via Rube MCP (Composio). Always search tools first for current schemas."

perseus-api

kaivyy/perseus

Deep-dive API security analysis (REST, GraphQL, WebSocket, gRPC, OAuth, Cache)

perseus-client

kaivyy/perseus

Client-side security analysis (DOM XSS, React/Vue/Angular, SSR, prototype pollution)

perseus-config

kaivyy/perseus

Security configuration analysis (Headers, CORS, Docker, CI/CD, Cloud, K8s)

perseus-crypto

kaivyy/perseus

Deep-dive cryptography and secrets analysis (JWT, hashing, encryption, key management)

perseus-file

kaivyy/perseus

File security analysis (path traversal, upload bypass, XXE, zip slip)

perseus-injection

kaivyy/perseus

Deep-dive injection vulnerability analysis (NoSQL, LDAP, XPath, Template, OS Command, Expression Language)

perseus-logic

kaivyy/perseus

Business logic, race conditions, and AI security analysis

perseus-specialist

kaivyy/perseus

Run all specialist deep-dive skills in parallel for comprehensive analysis

perseus-supply-chain

kaivyy/perseus

Supply chain security analysis (CVEs, dependencies, typosquatting, licenses)

perseus:audit

kaivyy/perseus

Use when analyzing components for vulnerabilities (Phase 2 - Parallel Analysis)

perseus:exploit

kaivyy/perseus

Use when verifying vulnerabilities with Dynamic Exploit Generation (Phase 3)

perseus:report

kaivyy/perseus

Use when generating the final executive security report (Phase 4)

perseus:scan

kaivyy/perseus

Use when starting a security assessment to map architecture, entry points, and attack surface (Phase 1 & 2)

perseus:start

kaivyy/perseus

Use when you want to run a full, automated penetration test from start to finish (Scan -> Audit -> Exploit -> Report)

persist-maintain

wgpsec/AboutSecurity

权限持久化方法论。当已获取目标系统权限后需要维持长期访问时使用。覆盖 Linux(cron/SSH key/webshell) 和 Windows(计划任务/服务/注册表/WMI) 持久化技术，以及 Web 层面的 webshell 部署和隐蔽策略

persistiq-automation

ComposioHQ/awesome-claude-skills

"Automate Persistiq tasks via Rube MCP (Composio). Always search tools first for current schemas."

persoenlichen-angriff-entschaerfen

Klotzkette/claude-fuer-deutsches-recht

Konkrete Technik zur Umformulierung persoenlicher Angriffe: vom Du zum Sie, vom Vorwurf zur Frage, vom Urteil zur Beobachtung. Vorher-Nachher-Tabellen fuer typische Angriffsmuster in beruflicher Korrespondenz.

persoenlicher-anwendungsbereich-rollen-art-3

Klotzkette/claude-fuer-deutsches-recht

Klaert die Rollen nach Art. 3 KI-VO: Anbieter (provider) Betreiber (deployer) Einfuehrer (importer) Haendler (distributor) Produkthersteller und Bevollmaechtigter. Erste Rollenzuordnung als Einstieg vor der detaillierten Rollenpruefer-Skills.

person-dossier

joelhooks/joelclaw

"Build and update person dossiers from communication history. Use when a person is discussed for strategy, follow-up, opportunities, relationship context, or decisions. Automatically pull evidence from Front email, Granola meetings, memory recall, and event logs; then write/update a structured dossier in Vault/Resources/."

persona-construction

yogsoth-ai/de-anthropocentric-research-engine

Build a detailed adversarial persona with background, motivation, expertise, blind spots, and preferred attack patterns.

persona-generator

guia-matthieu/clawfu-skills

"Create research-backed buyer personas that drive real marketing and product decisions. Combine Buyer Personas methodology with Jobs-to-be-Done to build profiles based on actual behavior, not demographics fiction. Use when: **Starting customer discovery** to define who you're validating with; **Marketing campaign planning** to target the right messages to right people; **Content strategy** to create content that resonates with specific audiences; **Product roadmap prioritization** to build fea..."

personal-analogy

yogsoth-ai/de-anthropocentric-research-engine

Empathic identification — become the system/component. First-person embodiment to discover hidden constraints and opportunities.

personal-identification

yogsoth-ai/de-anthropocentric-research-engine

First-person empathic identification with a system or component. Produces experience description and design insights from embodiment.

personal-statement

aipoch/medical-research-skills

Use when writing medical school personal statements, residency application essays, fellowship statements, or graduate school admissions essays. Crafts compelling narratives highlighting clinical experiences, research achievements, and career motivations for healthcare education applications.

personal-tool-builder

diegosouzapw/awesome-omni-skills

Personal Tool Builder workflow skill. Use this skill when the user needs Expert in building custom tools that solve your own problems first and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.