Total 43,865 skills, Security & Compliance has 1636 skills
Showing 12 of 1636 skills
Alert Logic integration. Manage data, records, and automate workflows. Use when the user wants to interact with Alert Logic data.
TaxJar integration. Manage Orders, Nexuses, Customers. Use when the user wants to interact with TaxJar data.
Dope.security integration. Manage data, records, and automate workflows. Use when the user wants to interact with Dope.security data.
Code42 integration. Manage data, records, and automate workflows. Use when the user wants to interact with Code42 data.
NowSecure integration. Manage data, records, and automate workflows. Use when the user wants to interact with NowSecure data.
Path traversal and LFI playbook. Use when file paths, download endpoints, include operations, archive extraction, or wrapper behavior may expose filesystem control.
HTTP request smuggling and desynchronization testing. Use when front proxies, CDNs, or load balancers disagree with the origin on message framing (Content-Length vs Transfer-Encoding), on HTTP/2→HTTP/1 translation, or when exploring client-side desync via browser fetch pipelines.
API authorization and BOLA testing playbook. Use when APIs expose object identifiers, nested resources, hidden writable fields, or weak function-level authorization.
Reconnaissance and methodology playbook. Use when mapping assets, discovering endpoints, fingerprinting technology, and building a structured testing plan for a new target.
Source control and artifact exposure (.git, .svn, .hg, backups, .env). Use when recon finds VCS paths, 403 on hidden dirs, or backup/config leaks during authorized testing.
Entry P0 primary router for HackSkills. Use when the task involves web application testing, API security assessment, recon, vulnerability triage, exploit path planning, or choosing the right next category skill before any deep topic skill.
SQL injection playbook. Use when input reaches SQL queries, authentication logic, sorting, filtering, reporting, or DB-specific blind and out-of-band execution paths.