Skill282 estrellas del repoactualizado yesterday

pentest-ctf-binary

This Claude Code skill provides tools for binary exploitation and reverse engineering, enabling security researchers to analyze compiled programs, identify vulnerabilities like buffer overflows and format string bugs, and develop exploits using techniques such as ROP chains and shellcode injection. Use it when analyzing CTF challenges, performing penetration testing on binary applications, or studying software for memory corruption vulnerabilities.

Ver fuente Repositorio: JoySafeter

Instalar en Claude Code

Copiar

git clone --depth 1 https://github.com/jd-opensource/JoySafeter /tmp/pentest-ctf-binary && cp -r /tmp/pentest-ctf-binary/skills/pentest-ctf-binary ~/.claude/skills/pentest-ctf-binary

Después abre una sesión nueva de Claude Code; el skill carga automáticamente.

Definición

SKILL.md

# Pentest CTF Binary

## Purpose
Analyze binary files to understand their behavior, identify memory corruption vulnerabilities, and develop exploits (ROP, Heap, Format String).

## Core Workflow
1. **Static Analysis**: Inspect binary properties, protections (NX, PIE), and code structure using `checksec` and `ghidra`.
2. **Dynamic Analysis**: Run the binary under a debugger (`gdb`) to observe behavior and register states.
3. **Vulnerability Identification**: Locate crashes, buffer overflows, or format string bugs.
4. **Exploit Development**: Construct payloads (shellcode, ROP chains) using `pwntools`.
5. **Remote Exploitation**: Launch the exploit against the target server to retrieve the flag.

## References
- `references/tools.md`
- `references/workflows.md`

Del mismo repositorio

appSkill

brainstormingSkill

You MUST use this before any creative work - creating features, building components, adding functionality, or modifying behavior. Explores user intent, requirements and design before implementation.

executing-plansSkill

Use when you have a written implementation plan to execute in a separate session with review checkpoints

openclaw-security-checkerSkill

OpenClaw 安全检测工具，基于安全实践指南验证配置安全、权限隔离、网络策略、日志审计和运行时完整性

openclaw-threat-detectSkill

OpenClaw 攻击模式检测工具，识别数据外传、反弹Shell、文件泄露、Prompt注入、供应链投毒等高危行为，支持 MITRE ATT&CK 映射

pdfSkill

Comprehensive PDF manipulation toolkit for extracting text and tables, creating new PDFs, merging/splitting documents, and handling forms. When Claude needs to fill in a PDF form or programmatically process, generate, or analyze PDF documents at scale.

pentest-ai-llm-securitySkill

AI/LLM application security testing — prompt injection, jailbreaking, data exfiltration, and insecure output handling per OWASP LLM Top 10.

pentest-api-deepSkill

Deep OWASP API Security Top 10 testing for REST, GraphQL, gRPC, and WebSocket APIs — BFLA, mass assignment, rate limiting, and unsafe consumption.