Explore skills

This document outlines the VMware vSphere/vCenter Server external attack matrix, covering version fingerprinting, a chain of high-impact CVEs (including unauthenticated file upload, RCE, SSTI, and APT-exploited vulnerabilities), default credentials, SSO configuration disclosure, and vmdir LDAP enumeration.

This skill assists in writing bug bounty reports for platforms like H1, Bugcrowd, Intigriti, and Immunefi, offering templates, impact-first writing, CVSS 3.1 scoring, and a pre-submit checklist. Use it after validating a finding and before submission, remembering to prove all claims.

External reconnaissance for software supply-chain attack surfaces, identifying risks like package-namespace squatting, dependency-confusion, GitHub Actions injection, and CI/CD exposure. This skill is for reconnaissance and identification only, not offensive actions such as package publishing or typosquat attacks.

Printing Press CLI/MCP for confirmed TikTok Shop Seller APIs. Safe v1 supports auth readiness, token exchange/refresh, read-only shops/orders/products/inventory/package/warehouse commands, and defers risky mutations.

This skill provides resources for writing various internal communications in company-preferred formats. Claude should use it for tasks like status reports, leadership updates, newsletters, FAQs, and incident reports.

Push architecture docs to oh-my-mermaid cloud. Handles login, link, and push workflow with error guidance. Use when the user says "omm push", "push to cloud", "deploy architecture", or "share architecture".

AWS SNS notification service for pub/sub messaging. Use when creating topics, managing subscriptions, configuring message filtering, sending notifications, or setting up mobile push.

AWS SQS is a message queue service for decoupled architectures. Use when creating queues, configuring dead-letter queues, managing visibility timeouts, implementing FIFO ordering, or integrating with Lambda.

AWS CloudWatch monitoring for logs, metrics, alarms, and dashboards. Use when setting up monitoring, creating alarms, querying logs with Insights, configuring metric filters, building dashboards, or troubleshooting application issues.

AWS ECS container orchestration for running Docker containers. Use when deploying containerized applications, configuring task definitions, setting up services, managing clusters, or troubleshooting container issues.

AWS Identity and Access Management for users, roles, policies, and permissions. Use when creating IAM policies, configuring cross-account access, setting up service roles, troubleshooting permission errors, or managing access control.

AWS S3 object storage for bucket management, object operations, and access control. Use when creating buckets, uploading files, configuring lifecycle policies, setting up static websites, managing permissions, or implementing cross-region replication.