pentest-network-internal
This Claude Code skill simulates internal network attacks by mapping network topology, enumerating services and Active Directory structures, auditing credential weaknesses, and testing lateral movement paths. Use it during authorized security assessments to identify vulnerabilities from an internal attacker perspective, including weak passwords, misconfigured services, and Active Directory trust weaknesses that could enable privilege escalation or asset compromise.
git clone --depth 1 https://github.com/jd-opensource/JoySafeter /tmp/pentest-network-internal && cp -r /tmp/pentest-network-internal/skills/pentest-network-internal ~/.claude/skills/pentest-network-internalSKILL.md
# Pentest Network Internal ## Purpose Simulate an internal attacker to identify weak credentials, misconfigured services, and Active Directory paths to high-value assets. ## Core Workflow 1. **Network Discovery**: Map the internal network, live hosts, and open ports using `nmap` and `masscan`. 2. **Service Enumeration**: Identify running services, versions, and potential entry points (SMB, RDP, SSH, etc.). 3. **Vulnerability Scanning**: Check for known service vulnerabilities (e.g., EternalBlue, ZeroLogon) using `nuclei` and `nmap-scripts`. 4. **Credential Auditing**: Test weak passwords and default credentials using `hydra` and `netexec` (CrackMapExec). 5. **Active Directory Enum**: Map AD trust relationships, users, and groups using `bloodhound` and `ldapdomaindump`. 6. **Lateral Movement**: Simulate movement between hosts using valid credentials or exploits. ## References - `references/tools.md` - `references/workflows.md`
You MUST use this before any creative work - creating features, building components, adding functionality, or modifying behavior. Explores user intent, requirements and design before implementation.
Use when you have a written implementation plan to execute in a separate session with review checkpoints
OpenClaw 安全检测工具,基于安全实践指南验证配置安全、权限隔离、网络策略、日志审计和运行时完整性
OpenClaw 攻击模式检测工具,识别数据外传、反弹Shell、文件泄露、Prompt注入、供应链投毒等高危行为,支持 MITRE ATT&CK 映射
Comprehensive PDF manipulation toolkit for extracting text and tables, creating new PDFs, merging/splitting documents, and handling forms. When Claude needs to fill in a PDF form or programmatically process, generate, or analyze PDF documents at scale.
AI/LLM application security testing — prompt injection, jailbreaking, data exfiltration, and insecure output handling per OWASP LLM Top 10.
Deep OWASP API Security Top 10 testing for REST, GraphQL, gRPC, and WebSocket APIs — BFLA, mass assignment, rate limiting, and unsafe consumption.