awesome skills

Rahmanhsim

A structured collection of security skills for web application penetration testing, API security assessment, network infrastructure auditing, and smart contract analysis.

Web Pentest API Security Recon & OSINT Active Directory Smart Contract 110+ Skills 15 Categories
skill-loader.sh

Security Skills.

Injection27 skills
XSSSQLiSSRFSSTIXXEJNDINoSQLCMDiWAF BypassSmugglingPrototype PollutionCRLFWebSocketHTTP2XSLT
Auth9 skills
JWTOAuthSAMLCSRFCORSClickjackingAuth Bypass401/403 BypassSession
API5 skills
RESTGraphQLBOLA/IDORBFLAJWT AbuseAPI Recon
Recon7 skills
SubdomainOSINTGoogle DorksShodanEmail HarvestThreat IntelTraffic Analysis
Active Directory7 skills
KerberosACL AbuseADCSNTLM RelayLateral MoveAV EvasionPrivEsc
Linux / macOS9 skills
PrivEscContainer EscapeKernelReverse ShellSandboxmacOS PrivEsc
Binary Exploit9 skills
ROPHeapUAFFormat StringV8Symbolic ExecAnti-Debug
Infra / Network7 skills
TunnelingPivotingKubernetesDNS RebindingDependency Conf
Mobile3 skills
AndroidiOSSSL PinningADBFrida
Crypto / Reverse7 skills
RSALatticeHash AttackStegoDeobfuscationSymmetric
Smart Contract12 skills
SoliditySui/MoveEVMDeFiBridgeCLMM/AMMProxyTokenNFTSolanaCosmWasmFlash Loan
AI / LLM2 skills
Prompt InjectionLLM SecurityJailbreakModel Abuse
File & Forensics6 skills
Upload BypassLFI/PathMemoryVolatilityMalware
Business Logic4 skills
Race ConditionPricing AbuseWorkflow BypassState Attack
CI/CD & OSINT5 skills
Pipeline PoisonSecret LeakOSINTThreat IntelIOC

Find Me.