top skills
pricing
resources
install
github
sign in
sign up
back to leaderboard
YA
@yaklang
contributor on implexa, with 102 skills ranked by
SkillRank
across 1 source.
yaklang on github
publishes to skills.sh
skills, ranked by SkillRank
score
source
skill
4.5
skills.sh
expression-language-injection
expression-language-injection documents detection and exploitation vectors for java el evaluation in spring, struts2, and jsp/jsf contexts, distinguishing them from template injection attacks.
4.2
skills.sh
api-authorization-and-bola
api-authorization-and-bola covers broken object and function-level authorization testing through cross-account token replay, object id manipulation, and http verb abuse patterns.
4.2
skills.sh
prototype-pollution-advanced
prototype-pollution-advanced covers server-side rce escalation via template engines and node.js gadgets, but lacks complete step-by-step procedures and concrete detection examples.
4.2
skills.sh
tunneling-and-pivoting
tunneling-and-pivoting covers ssh port forwarding, socks proxies, transparent tunneling tools (chisel, ligolo-ng, socat), and windows pivoting techniques with cross-layer chaining guidance.
4.2
skills.sh
websocket-security
websocket-security covers protocol headers, cswsh risk patterns, and vulnerability classes relevant to websocket implementations. fragments included; no complete procedure or decision logic present.
4.2
skills.sh
401-403-bypass-techniques
401-403-bypass-techniques catalogs path normalization, http method override, and header-based access control evasion tactics, with emphasis on proxy-backend desynchronization vectors.
3.9
skills.sh
clickjacking
clickjacking covers ui redress attack mechanics including iframe transparency, header bypass techniques, and multi-step chaining, positioned as offensive exploitation rather than defensive mitigation.
3.9
skills.sh
rsa-attack-techniques
rsa-attack-techniques outlines cryptanalytic approaches for rsa including factorization, small exponent, lattice-based, broadcast, and padding oracle attacks. lacks procedural depth and actionable steps.
3.8
skills.sh
file-access-vuln
file-access-vuln is a routing entry point that categorizes file-related vulnerabilities into path traversal/lfi and upload validation issues, but lacks concrete procedural steps for exploitation or remediation.
3.8
skills.sh
upload-insecure-files
upload-insecure-files documents attack patterns for file upload validation bypass and storage abuse across multiple platforms, but lacks actionable step-by-step procedure and concrete decision logic.
3.6
skills.sh
sandbox-escape-techniques
sandbox-escape-techniques documents attack patterns across python, lua, seccomp, chroot and container contexts but lacks actionable procedures, decision frameworks, and clear failure mode handling.
3.6
skills.sh
symbolic-execution-tools
symbolic-execution-tools documents angr, Z3, and Unicorn Engine techniques for CTF challenges, but lacks concrete procedures, trigger specificity, and actionable guidance beyond abstract problem areas.
3.2
skills.sh
format-string-exploitation
format string exploitation covers attack patterns including stack reading, arbitrary writes via %n, and protection bypass techniques, but lacks actionable procedural steps and concrete decision logic.
3.2
skills.sh
stack-overflow-and-rop
stack-overflow-and-rop documents rop chain construction and stack exploitation techniques including buffer overflow, ret2libc, gadget selection, and canary bypass, but lacks actionable procedures.
2.3
skills.sh
active-directory-certificate-services
active-directory-certificate-services documents ad cs attack variants (esc1-esc13) and certificate persistence techniques, but lacks actionable procedure, decision logic, and concrete output contracts.
—
skills.sh
recon-for-sec
>-
—
skills.sh
csv-formula-injection
>-
—
skills.sh
api-recon-and-docs
>-
—
skills.sh
api-auth-and-jwt-abuse
>-
—
skills.sh
insecure-source-code-management
>-
—
skills.sh
injection-checking
>-
—
skills.sh
nosql-injection
>-
—
skills.sh
graphql-and-hidden-parameters
>-
—
skills.sh
saml-sso-assertion-attacks
>-
—
skills.sh
auth-sec
>-
—
skills.sh
recon-and-methodology
>-
—
skills.sh
ghost-bits-cast-attack
>-
—
skills.sh
reverse-shell-techniques
>-
—
skills.sh
macos-process-injection
>-
—
skills.sh
macos-security-bypass
>-
—
skills.sh
symmetric-cipher-attacks
>-
—
skills.sh
lattice-crypto-attacks
>-
—
skills.sh
linux-privilege-escalation
>-
—
skills.sh
container-escape-techniques
>-
—
skills.sh
steganography-techniques
>-
—
skills.sh
dns-rebinding-attacks
>-
—
skills.sh
linux-lateral-movement
>-
—
skills.sh
dangling-markup-injection
>-
—
skills.sh
linux-security-bypass
>-
—
skills.sh
memory-forensics-volatility
>-
—
skills.sh
subdomain-takeover
>-
—
skills.sh
mobile-ssl-pinning-bypass
>-
—
skills.sh
kubernetes-pentesting
>-
—
skills.sh
defi-attack-patterns
>-
—
skills.sh
csp-bypass-advanced
>-
—
skills.sh
windows-lateral-movement
>-
—
skills.sh
ntlm-relay-coercion
ntlm-relay-coercion — an installable skill for AI agents, published by yaklang/hack-skills.
—
skills.sh
binary-protection-bypass
>-
—
skills.sh
llm-prompt-injection
>-
—
skills.sh
windows-privilege-escalation
windows-privilege-escalation — an installable skill for AI agents, published by yaklang/hack-skills.
—
skills.sh
ai-ml-security
>-
—
skills.sh
classical-cipher-analysis
>-
—
skills.sh
windows-av-evasion
>-
—
skills.sh
network-protocol-attacks
>-
—
skills.sh
smart-contract-vulnerabilities
>-
—
skills.sh
unauthorized-access-common-services
>-
—
skills.sh
active-directory-kerberos-attacks
>-
—
skills.sh
anti-debugging-techniques
>-
—
skills.sh
vm-and-bytecode-reverse
>-
—
skills.sh
browser-exploitation-v8
>-
—
skills.sh
ssti-server-side-template-injection
>-
—
skills.sh
ios-pentesting-tricks
>-
—
skills.sh
active-directory-acl-abuse
>-
—
skills.sh
hash-attack-techniques
>-
—
skills.sh
arbitrary-write-to-rce
>-
—
skills.sh
email-header-injection
>-
—
skills.sh
http2-specific-attacks
>-
—
skills.sh
race-condition
>-
—
skills.sh
request-smuggling
>-
—
skills.sh
dependency-confusion
>-
—
skills.sh
crlf-injection
>-
—
skills.sh
deserialization-insecure
>-
—
skills.sh
kernel-exploitation
>-
—
skills.sh
http-host-header-attacks
>-
—
skills.sh
cors-cross-origin-misconfiguration
>-
—
skills.sh
csrf-cross-site-request-forgery
>-
—
skills.sh
heap-exploitation
>-
—
skills.sh
prototype-pollution
>-
—
skills.sh
traffic-analysis-pcap
>-
—
skills.sh
xslt-injection
>-
—
skills.sh
type-juggling
>-
—
skills.sh
jndi-injection
>-
—
skills.sh
web-cache-deception
>-
—
skills.sh
cmdi-command-injection
>-
—
skills.sh
waf-bypass-techniques
>-
—
skills.sh
open-redirect
>-
—
skills.sh
business-logic-vuln
business-logic-vuln — an installable skill for AI agents, published by yaklang/hack-skills.
—
skills.sh
xxe-xml-external-entity
>-
—
skills.sh
http-parameter-pollution
>-
—
skills.sh
ssrf-server-side-request-forgery
>-
—
skills.sh
sqli-sql-injection
>-
—
skills.sh
oauth-oidc-misconfiguration
>-
—
skills.sh
path-traversal-lfi
>-
—
skills.sh
code-obfuscation-deobfuscation
>-
—
skills.sh
business-logic-vulnerabilities
>-
—
skills.sh
android-pentesting-tricks
>-
—
skills.sh
authbypass-authentication-flaws
>-
—
skills.sh
idor-broken-object-authorization
>-
—
skills.sh
jwt-oauth-token-attacks
>-
—
skills.sh
api-sec
>-
—
skills.sh
xss-cross-site-scripting
>-
—
skills.sh
hack
>-
