Browse Skills — Page 75

exploiting-nosql-injection-vulnerabilities

mukul975/Anthropic-Cybersecurity-Skills

Detect and exploit NoSQL injection vulnerabilities in MongoDB, CouchDB, and other NoSQL databases to demonstrate authentication bypass, data extraction, and unauthorized access risks.

exploiting-oauth-misconfiguration

mukul975/Anthropic-Cybersecurity-Skills

Identifying and exploiting OAuth 2.0 and OpenID Connect misconfigurations including redirect URI manipulation, token leakage, and authorization code theft during security assessments.

exploiting-orm-injection

xalgord/xalgorix

Exploiting ORM injection (ORM Leak) where applications pass attacker-controlled keys/operators directly into

exploiting-os-command-injection

xalgord/xalgorix

Identifying and exploiting OS command injection vulnerabilities in web

exploiting-postmessage-vulnerabilities

xalgord/xalgorix

Exploiting insecure cross-window messaging where senders use a wildcard targetOrigin (leaking sensitive

exploiting-prototype-pollution-in-javascript

mukul975/Anthropic-Cybersecurity-Skills

Detect and exploit JavaScript prototype pollution vulnerabilities on both client-side and server-side applications to achieve XSS, RCE, and authentication bypass through property injection.

exploiting-race-condition-vulnerabilities

mukul975/Anthropic-Cybersecurity-Skills

Detect and exploit race condition vulnerabilities in web applications using Turbo Intruder's single-packet attack technique to bypass rate limits, duplicate transactions, and exploit time-of-check-to-time-of-use flaws.

exploiting-reverse-tab-nabbing

xalgord/xalgorix

Identifying and exploiting reverse tabnabbing, where a link opened with target="_blank" without

exploiting-saml-authentication-flaws

xalgord/xalgorix

Identifying and exploiting SAML SSO weaknesses including XML Signature Wrapping (XSW1-8), comment

exploiting-server-side-includes-esi-injection

xalgord/xalgorix

Exploiting Server-Side Includes (SSI) and Edge-Side Includes (ESI) injection where unsanitized input is

exploiting-server-side-request-forgery

mukul975/Anthropic-Cybersecurity-Skills

Identifying and exploiting SSRF vulnerabilities to access internal services, cloud metadata, and restricted network resources during authorized penetration tests.

exploiting-smb-vulnerabilities-with-metasploit

mukul975/Anthropic-Cybersecurity-Skills

>

exploiting-sql-injection-vulnerabilities

mukul975/Anthropic-Cybersecurity-Skills

>

exploiting-sql-injection-with-sqlmap

mukul975/Anthropic-Cybersecurity-Skills

Detecting and exploiting SQL injection vulnerabilities using sqlmap to extract database contents during authorized penetration tests.

exploiting-stack-buffer-overflows

xalgord/xalgorix

Methodology for discovering and exploiting stack-based buffer overflows in native binaries during authorized

exploiting-subdomain-takeover-vulnerabilities

xalgord/xalgorix

Identifying and exploiting dangling DNS records pointing to unclaimed cloud services, enabling subdomain takeover for phishing, cookie stealing, and authentication bypass during authorized penetration tests.

exploiting-sudo-suid-and-cron-misconfigurations

xalgord/xalgorix

Local privilege escalation through sudo rule abuse (GTFOBins, SETENV/LD_PRELOAD/BASH_ENV/PYTHONPATH),

exploiting-template-injection-vulnerabilities

mukul975/Anthropic-Cybersecurity-Skills

Detecting and exploiting Server-Side Template Injection (SSTI) vulnerabilities across Jinja2, Twig, Freemarker, and other template engines to achieve remote code execution.

exploiting-type-juggling-vulnerabilities

mukul975/Anthropic-Cybersecurity-Skills

Exploit PHP type juggling vulnerabilities caused by loose comparison operators to bypass authentication, circumvent hash verification, and manipulate application logic through type coercion attacks.

exploiting-vulnerabilities-with-metasploit-framework

mukul975/Anthropic-Cybersecurity-Skills

The Metasploit Framework is the world's most widely used penetration testing platform, maintained by Rapid7. It contains over 2,300 exploits, 1,200 auxiliary modules, and 400 post-exploitation modules

exploiting-websocket-vulnerabilities

mukul975/Anthropic-Cybersecurity-Skills

Testing WebSocket implementations for authentication bypass, cross-site hijacking, injection attacks, and insecure message handling during authorized security assessments.

exploiting-xpath-injection

xalgord/xalgorix

Exploiting XPath injection where applications build XPath/XQuery expressions from unsanitized user input to

exploiting-xslt-server-side-injection

xalgord/xalgorix

Exploiting server-side XSLT injection where an application transforms XML with attacker-influenced

exploiting-zerologon-vulnerability-cve-2020-1472

mukul975/Anthropic-Cybersecurity-Skills

Exploit the Zerologon vulnerability (CVE-2020-1472) in the Netlogon Remote Protocol to achieve domain controller compromise by resetting the machine account password to empty.

exploratory-data-analysis

K-Dense-AI/scientific-agent-skills

Perform comprehensive exploratory data analysis on scientific data files across 200+ file formats. This skill should be used when analyzing any scientific data file to understand its structure, content, quality, and characteristics. Automatically detects file type and generates detailed markdown reports with format-specific analysis, quality metrics, and downstream analysis recommendations. Covers chemistry, bioinformatics, microscopy, spectroscopy, proteomics, metabolomics, and general scientific data formats.

exploratory-testing

686f6c61/alfred-dev

Usar para testing exploratorio con sesiones documentadas. También: probar sin script, buscar bugs, testing manual, edge cases, sesión de testing.

explore

yonatangross/orchestkit

explore — Deep codebase exploration with parallel agents. Use when exploring a repo, discovering architecture, finding files, or analyzing design patterns.

explore-codebase

686f6c61/alfred-dev

Usar antes de modificar código existente para entender el contexto. Activar cuando el usuario quiera entender el código, saber cómo funciona esto, explorar un repositorio, prepararse antes de modificar, analizar la estructura del proyecto o familiarizarse con una base de código nueva.

explore-data

anthropics/knowledge-work-plugins

Profile and explore a dataset to understand its shape, quality, and patterns. Use when encountering a new table or file, checking null rates and column distributions, spotting data quality issues like duplicates or suspicious values, or deciding which dimensions and metrics to analyze.

explore-resume

yogsoth-ai/de-anthropocentric-research-engine

Understand the user's background comprehensively — technical stack, project experience, research experience, publications, research directions. Allows user to express interest beyond their resume. Execute once only, never re-run.

Exploring Alternatives

obra/clank

Try 2-3 different approaches before implementing - don't settle for first design you think of

exploring-codebases

oaustegard/claude-skills

>-

exploring-data

oaustegard/claude-skills

Exploratory data analysis using ydata-profiling. Use when users upload .csv/.xlsx/.json/.parquet files or request "explore data", "analyze dataset", "EDA", "profile data". Generates interactive HTML or JSON reports with statistics, visualizations, correlations, and quality alerts.

explorium

vm0-ai/vm0-skills

Explorium API for external data enrichment. Use when user mentions "Explorium",

expo

TerminalSkills/skills

>-

expo-api-docs

expo/expo

Write TSDoc comments for Expo SDK APIs following official conventions. MUST USE when introducing new user-facing TypeScript APIs in expo-* packages - document APIs correctly from the start, not as an afterthought. Also use when improving existing documentation. Covers @platform, @example, @deprecated, @default annotations, third-person declarative style, blockquote notes, and type export patterns for docs generation.

diegosouzapw/expo-api-routes

diegosouzapw/awesome-omni-skills

Create a secret workflow skill. Use this skill when the user needs Guidelines for creating API routes in Expo Router with EAS Hosting and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

openai/expo-api-routes

openai/plugins

Guidelines for creating API routes in Expo Router with EAS Hosting

expo/expo-api-routes

expo/skills

Guidelines for creating API routes in Expo Router with EAS Hosting

expo-api-routes-v2

diegosouzapw/awesome-omni-skills

Create a secret workflow skill. Use this skill when the user needs Guidelines for creating API routes in Expo Router with EAS Hosting and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

expo-api-routes-v3

diegosouzapw/awesome-omni-skills

Create a secret workflow skill. Use this skill when the user needs Guidelines for creating API routes in Expo Router with EAS Hosting and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

expo-brownfield

expo/skills

Integrate Expo and React Native into an existing native iOS or Android app. Use when the user mentions brownfield, embedding React Native in a native app, AAR/XCFramework, or adding Expo to an existing Kotlin/Swift project. Covers both the isolated approach and the integrated approach.

expo-build

TheBushidoCollective/han

Use when building and deploying Expo apps with EAS Build. Covers build configuration, development builds, production builds, and app store submission.

diegosouzapw/expo-cicd-workflows

diegosouzapw/awesome-omni-skills

EAS Workflows Skill workflow skill. Use this skill when the user needs Helps understand and write EAS workflow YAML files for Expo projects. Use this skill when the user asks about CI/CD or workflows in an Expo or EAS context, mentions .eas/workflows/, or wants help with EAS build pipelines or deployment automation and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

openai/expo-cicd-workflows

openai/plugins

Helps understand and write EAS workflow YAML files for Expo projects. Use this skill when the user asks about CI/CD or workflows in an Expo or EAS context, mentions .eas/workflows/, or wants help with EAS build pipelines or deployment automation.

expo/expo-cicd-workflows

expo/skills

Helps understand and write EAS workflow YAML files for Expo projects. Use this skill when the user asks about CI/CD or workflows in an Expo or EAS context, mentions .eas/workflows/, or wants help with EAS build pipelines or deployment automation.

expo-cicd-workflows-v2

diegosouzapw/awesome-omni-skills

EAS Workflows Skill workflow skill. Use this skill when the user needs Helps understand and write EAS workflow YAML files for Expo projects. Use this skill when the user asks about CI/CD or workflows in an Expo or EAS context, mentions .eas/workflows/, or wants help with EAS build pipelines or deployment automation and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

expo-cicd-workflows-v3

diegosouzapw/awesome-omni-skills

EAS Workflows Skill workflow skill. Use this skill when the user needs Helps understand and write EAS workflow YAML files for Expo projects. Use this skill when the user asks about CI/CD or workflows in an Expo or EAS context, mentions .eas/workflows/, or wants help with EAS build pipelines or deployment automation and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

expo-config

TheBushidoCollective/han

Use when configuring Expo apps with app.json, app.config.js, and EAS configuration. Covers app metadata, plugins, build configuration, and environment variables.

diegosouzapw/expo-deployment

diegosouzapw/awesome-omni-skills

Expo Deployment workflow skill. Use this skill when the user needs Deploy Expo apps to production and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

openai/expo-deployment

openai/plugins

Deploying Expo apps to iOS App Store, Android Play Store, web hosting, and API routes

expo/expo-deployment

expo/skills

Deploying Expo apps to iOS App Store, Android Play Store, web hosting, and API routes

expo-deployment-v2

diegosouzapw/awesome-omni-skills

Expo Deployment workflow skill. Use this skill when the user needs Deploy Expo apps to production and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

expo-deployment-v3

diegosouzapw/awesome-omni-skills

Expo Deployment workflow skill. Use this skill when the user needs Deploy Expo apps to production and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

diegosouzapw/expo-dev-client

diegosouzapw/awesome-omni-skills

iOS (requires Xcode) workflow skill. Use this skill when the user needs Build and distribute Expo development clients locally or via TestFlight and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

openai/expo-dev-client

openai/plugins

Build and distribute Expo development clients locally or via TestFlight

expo/expo-dev-client

expo/skills

Build and distribute Expo development clients locally or via TestFlight

expo-dev-client-v2

diegosouzapw/awesome-omni-skills

iOS (requires Xcode) workflow skill. Use this skill when the user needs Build and distribute Expo development clients locally or via TestFlight and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

expo-dev-client-v3

diegosouzapw/awesome-omni-skills

iOS (requires Xcode) workflow skill. Use this skill when the user needs Build and distribute Expo development clients locally or via TestFlight and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

openai/expo-module

openai/plugins

Guide for writing Expo native modules and views using the Expo Modules API (Swift, Kotlin, TypeScript). Covers module definition DSL, native views, shared objects, config plugins, lifecycle hooks, autolinking, and type system. Use when building or modifying native modules for Expo.

expo/expo-module

expo/skills

Guide for creating and writing Expo native modules and views using the Expo Modules API (Swift, Kotlin, TypeScript). Covers module definition DSL, native views, shared objects, config plugins, lifecycle hooks, autolinking, and type system. Use when building or modifying native modules for Expo.

expo-modules

TheBushidoCollective/han

Use when working with Expo SDK modules for camera, location, notifications, file system, and other device APIs. Covers permissions, configurations, and best practices.

expo-observe

expo/skills

Use for anything related to EAS Observe — adding `expo-observe` to an Expo project (AppMetricsRoot/ObserveRoot HOC, markInteractive, the useObserve hook, and the Expo Router / React Navigation integrations for per-route metrics), querying via the EAS CLI (`eas observe:metrics-summary`, `observe:metrics`, `observe:routes`, `observe:events`, `observe:versions`), or interpreting the resulting metrics (cold/warm launch, TTR, TTI, navigation cold/warm TTR, update download, and the TTI frameRate params for triaging slow startups).

expo-router

TheBushidoCollective/han

Use when implementing file-based routing in Expo with Expo Router. Covers app directory structure, navigation, layouts, dynamic routes, and deep linking.

diegosouzapw/expo-tailwind-setup

diegosouzapw/awesome-omni-skills

Tailwind CSS Setup for Expo with react-native-css workflow skill. Use this skill when the user needs Set up Tailwind CSS v4 in Expo with react-native-css and NativeWind v5 for universal styling and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

expo/expo-tailwind-setup

expo/skills

Set up Tailwind CSS v4 in Expo with react-native-css and NativeWind v5 for universal styling

openai/expo-tailwind-setup

openai/plugins

Set up Tailwind CSS v4 in Expo with react-native-css and NativeWind v5 for universal styling

expo-tailwind-setup-v2

diegosouzapw/awesome-omni-skills

Tailwind CSS Setup for Expo with react-native-css workflow skill. Use this skill when the user needs Set up Tailwind CSS v4 in Expo with react-native-css and NativeWind v5 for universal styling and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

expo-tailwind-setup-v3

diegosouzapw/awesome-omni-skills

Tailwind CSS Setup for Expo with react-native-css workflow skill. Use this skill when the user needs Set up Tailwind CSS v4 in Expo with react-native-css and NativeWind v5 for universal styling and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

expo-ui

expo/skills

Build native UI with the @expo/ui package: real SwiftUI on iOS and Jetpack Compose on Android rendered from React in an Expo or React Native app. Covers universal cross-platform components (Host, Column, Row, Button, Text, List, and more imported from @expo/ui), drop-in replacements for popular React Native community libraries (BottomSheet, DateTimePicker, Slider, Menu, etc.), and platform-specific SwiftUI (@expo/ui/swift-ui) and Jetpack Compose (@expo/ui/jetpack-compose) trees and modifiers. Use when adding or reviewing @expo/ui Host/RNHostView trees, building native-feeling UI where standard React Native components fall short (lists with swipe actions and sections, settings forms with toggles, menus, sheets, pickers, sliders), choosing between universal and platform-specific components, or replacing an RN community UI library with a native @expo/ui equivalent. Not for custom native modules, Expo Router navigation, Reanimated, or data fetching.

expo-ui-jetpack-compose

diegosouzapw/awesome-omni-skills

expo-ui-jetpack-compose workflow skill. Use this skill when the user needs expo-ui-jetpack-compose and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

expo-ui-jetpack-compose

openai/plugins

`@expo/ui/jetpack-compose` package lets you use Jetpack Compose Views and modifiers in your app.

expo-ui-jetpack-compose-v2

diegosouzapw/awesome-omni-skills

expo-ui-jetpack-compose workflow skill. Use this skill when the user needs expo-ui-jetpack-compose and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

expo-ui-swift-ui

diegosouzapw/awesome-omni-skills

expo-ui-swift-ui workflow skill. Use this skill when the user needs expo-ui-swift-ui and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

expo-ui-swift-ui

openai/plugins

`@expo/ui/swift-ui` package lets you use SwiftUI Views and modifiers in your app.

expo-ui-swift-ui-v2

diegosouzapw/awesome-omni-skills

expo-ui-swift-ui workflow skill. Use this skill when the user needs expo-ui-swift-ui and the operator should preserve the upstream workflow, copied support files, and provenance before merging or handing off.

expo-updates

TheBushidoCollective/han

Use when implementing over-the-air (OTA) updates with Expo Updates. Covers update configuration, checking for updates, and update strategies.

expofp-automation

ComposioHQ/awesome-claude-skills

"Automate Expofp tasks via Rube MCP (Composio). Always search tools first for current schemas."

export-agent

openakita/openakita

Export a local Agent profile as a portable .akita-agent package file. Use when user wants to share, backup, or distribute an Agent with its skills and configuration.

export-solution

microsoft/power-platform-skills

>-

express

partme-ai/full-stack-skills

"Provides comprehensive guidance for Express.js framework including routing, middleware, request handling, error handling, and API development. Use when the user asks about Express, needs to create HTTP servers, set up routes, implement middleware, or build REST APIs."

express-bus-booking

NomaDamas/k-skill

Search and assist Korean 고속버스/KOBUS bookings using official HTTP/API-first flows; use for 고속버스 예매, 시간표, 좌석 조회, 임시 선점, and official checkout-entry handoff.

expression-language-injection

wgpsec/AboutSecurity

表达式语言(EL)注入方法论。当目标使用 Spring(SpEL)、Struts2(OGNL)、Confluence(OGNL)、JSP/JSF(Java EL) 且存在用户可控的表达式求值时使用。覆盖多语法探测与区分(${7*7}/#{7*7}/%{7*7})、SpEL RCE(Runtime.exec/ProcessBuilder/反射绕沙箱)、Spring Cloud Gateway CVE-2022-22947、OGNL RCE(_memberAccess 操纵/OgnlUtil 黑名单清除)、Struts2 经典 CVE(S2-045/S2-046/S2-016/S2-057)、Confluence CVE-2021-26084、Java EL RCE。任何涉及 Spring/Struts2/Confluence/JSF 框架的表达式注入测试都应使用此 skill

extension-operations

SteelMorgan/1c-agent-based-dev-framework

Операции с расширениями конфигурации 1С (CFE) — init, borrow, diff, validate. Используй при создании расширений, заимствовании объектов, анализе состава и перехватчиков.

extension-points

BuilderIO/agent-native

>-

External Feature

aaronjmars/aeon

Proactively enhance watched repos — fix issues, add features, improve code

external-dns

TerminalSkills/skills

>-

extract

alirezarezvani/claude-skills

Turn a proven pattern or debugging solution into a standalone reusable skill with SKILL.md, reference docs, and examples. Use when the user runs /si:extract or asks to package a recurring solution from memory into a skill.

Extract structured data from unstructured files (PDF, PPTX, DOCX...)

run-llama/vibe-llama

Invoke this skill BEFORE implementing any structured data extraction from documents to learn the correct llama_cloud_services API usage. Required reading before writing extraction code. Requires llama_cloud_services package and LLAMA_CLOUD_API_KEY as an environment variable.

extract-data

yogsoth-ai/de-anthropocentric-research-engine

Structured data extraction from deep-read papers — produces comparison tables (method, dataset, metrics, results, limitations). Used by systematic-survey and deep-survey.

extract-ds-skill

vercel-labs/ds-skill-extraction-workshop

Extract a Claude Code design-system skill from a real DS source. Use when the user wants to turn a design system (component library, token set, asset package) into an installable skill at .claude/skills/<slug>/ in their project. Triggers: 'make a skill from <DS>', 'extract a DS skill', 'turn mantine/geist/material/<DS> into a skill'. Scope: tokens, assets, component descriptions, component APIs. Out of scope: tone of voice, marketing copy, product copywriting - route copy rules to a separate copy skill, do not extract them here. IMPORTANT: this file is an orchestrator. Load the references/ files named in the routing table; SKILL.md alone is insufficient for any phase past initial discovery framing.

extract-plan-md

closedloop-ai/claude-plugins

|

extract-thread-spine

lyndonkl/claude

Extracts the 5-7 point argument backbone of a published substacker essay into a structured _spine.json working artifact that downstream platform-rewrite skills consume. Pulls verbatim sentences where possible (not paraphrases). Tags each point with evidence anchor (paper, anecdote, formula, analogy), essay section, and translatability score. Use at the start of a Distribution Translator run. Trigger keywords: spine, backbone, extract claims, thread spine, argument skeleton.

extract-to-jaspr

flutter/website

Extracts a part of a website and converts it to a Jaspr component. Use when you need to migrate a part of a website to Jaspr.

extracta-ai-automation

ComposioHQ/awesome-claude-skills

"Automate Extracta AI tasks via Rube MCP (Composio). Always search tools first for current schemas."

extracting-browser-history-artifacts

mukul975/Anthropic-Cybersecurity-Skills

Extract and analyze browser history, cookies, cache, downloads, and bookmarks from Chrome, Firefox, and Edge for forensic evidence of user web activity.

extracting-config-from-agent-tesla-rat

mukul975/Anthropic-Cybersecurity-Skills

Extract embedded configuration from Agent Tesla RAT samples including SMTP/FTP/Telegram exfiltration credentials, keylogger settings, and C2 endpoints using .NET decompilation and memory analysis.

extracting-credentials-from-memory-dump

mukul975/Anthropic-Cybersecurity-Skills

Extract cached credentials, password hashes, Kerberos tickets, and authentication tokens from memory dumps using Volatility and Mimikatz for forensic investigation.

extracting-iocs-from-malware-samples

mukul975/Anthropic-Cybersecurity-Skills

>

extracting-keywords

oaustegard/claude-skills

Extract keywords from documents using YAKE algorithm with support for 34 languages (Arabic to Chinese). Use when users request keyword extraction, key terms, topic identification, content summarization, or document analysis. Includes domain-specific stopwords for AI/ML and life sciences. Optional deeper extraction mode (n=2+n=3 combined) for comprehensive coverage.