The library
Everything we index — ranked by what works, never by stars.
forSalesMarketingHRFinanceLegalOpsProductEngineeringDataProductivitySupportsetup≤ plug & play≤ + a key≤ multi-tool
● works · ● untested / no effect · ● hurts — every rank is measured against a no-skill baseline
untested★1,791→untested★381→untested★1,791→untested★0→untested★145→untested★1,791→untested★381→untested★19→untested★1,791→untested★1,791→untested★2,257→untested★1,791→untested★0→untested★381→untested★1,791→untested★1,791→untested★82→untested★1,791→untested★46→untested★0→untested★1,791→untested★0→untested★1,791→untested★1,791→untested★1→untested★143→untested★1→untested★1,791→untested★1,791→untested★135→untested★1,791→untested★61→untested★1→untested★1,791→untested★1→untested★1,791→untested★27→untested★1,791→untested★1,791→untested★381→untested★1,791→untested★381→untested★1,791→untested★0→untested★1,791→untested★30→untested★1→untested★28→untested★0→untested★2→
Find and chain open redirect vulnerabilitiesskillEngineeringOpsL3
hunt-open-redirect · Creating low-friction phishing links when the target's own domain is trusted.
Audit code for OWASP Top 10 security risksskillEngineeringL2
security-scan · Baseline security assessment before manual penetration testing.
Hunt race conditions in web applicationsskillEngineeringOpsL3
hunt-race-condition · Bypassing single-use limits (OTP, tokens) via parallel submission before invalidation.
Architect React Native app structureskillEngineeringProductL2
mobile-architect · Scaling Android/iOS apps to 10+ features without DI complexity explosion.
Audit artifact skills for complianceskillOpsL2
skill-usage-audit · Verifying governance compliance across codebases without manual file inspection.
Detect SAML and SSO attacksskillLegalOpsL1
hunt-saml · Discovering saml vulnerabilities when generic scanners miss domain-specific chains.
Apply Vibecode brand design systemskillMarketingProductL1
vibecode-brand-design · Ensuring visual consistency across branded UI components at scale.
Audit documentation freshness and accuracyskillOpsProductL1
compound-agent-doc-gardener · Orchestrating multi-step task flows with guaranteed validation and tracking.
Find session management vulnerabilitiesskillLegalOpsL1
hunt-session · Discovering session vulnerabilities when generic scanners miss domain-specific chains.
Audit Microsoft SharePoint farmsskillLegalOpsL1
hunt-sharepoint · Discovering sharepoint vulnerabilities when generic scanners miss domain-specific chains.
Execute PRD tasks end-to-endskillProductEngineeringL1
cy-execute-task · Orchestrating multi-step task flows with guaranteed validation and tracking.
Hunt source code and build leaksskillLegalOpsL1
hunt-source-leak · Discovering source leak vulnerabilities when generic scanners miss domain-specific chains.
Compress LLM KV cache with TurboQuantskillEngineeringDataL2
turboquant-pytorch · Implementing turboquant pytorch workflows that require automation.
Build RAG pipeline for knowledge extractionskillEngineeringDataL2
llm-pipeline · Extracting structured knowledge from unstructured messaging with high-signal batching.
Detect SQL injection vulnerabilitiesskillLegalOpsL1
hunt-sqli · Discovering sqli vulnerabilities when generic scanners miss domain-specific chains.
Identify SSRF attack vectorsskillLegalOpsL1
hunt-ssrf · Discovering ssrf vulnerabilities when generic scanners miss domain-specific chains.
Upgrade dependencies safelyskillEngineeringOpsL1
upgrade-deps · Implementing upgrade deps workflows that require automation.
Hunt server-side template injectionskillLegalOpsL1
hunt-ssti · Discovering ssti vulnerabilities when generic scanners miss domain-specific chains.
Build industrial control protocolsskillEngineeringOpsL2
industrial · Implementing industrial workflows that require automation.
Sync delta specs to main specsskillProductEngineeringL1
openspec-sync-specs · Implementing openspec sync specs workflows that require automation.
Detect subdomain takeover risksskillLegalOpsL1
hunt-subdomain · Discovering subdomain vulnerabilities when generic scanners miss domain-specific chains.
Build MCP servers with TypeScriptskillEngineeringL3
mcp-server-patterns · Implementing mcp server patterns workflows that require automation.
Audit TLS and DNS misconfigurationsskillLegalOpsL1
hunt-tls-network · Discovering tls network vulnerabilities when generic scanners miss domain-specific chains.
Find WebSocket security gapsskillLegalOpsL1
hunt-websocket · Discovering websocket vulnerabilities when generic scanners miss domain-specific chains.
Isolate feature work with git worktreesskillEngineeringOpsL1
using-git-worktrees · When feature work requires complete isolation from current workspace without branch switching.
Classify structural genome variantsskillDataL2
genomics-sv-detection · When you have SV VCF output from Manta/Delly/Sniffles and need aggregated counts and size bins.
Search Unity built-in assetsskillProductEngineeringL1
assets-find-built-in · When searching Unity built-in resources by name without needing GUIDs or exact paths.
Hunt XML external entity attacksskillLegalOpsL1
hunt-xxe · When hunting XXE on XML-heavy endpoints, file parsers, or SAML flows where file-read or SSRF payoff is high.
Red-team Microsoft 365 EntraskillLegalOpsL2
m365-entra-attack · When testing M365 credential attacks with locked-down attempt budgets and needing AADSTS code interpretation.
Use assistant-ui library componentsskillProductEngineeringL2
assistant-ui · When building AI chat interfaces with composable primitives and streaming backends, versus monolithic UI libraries.
Detect meme coin security risksskillFinanceL2
meme-coin-audit · When doing pre-investment due diligence on meme coins or auditing token contracts for rug-pull mechanisms.
Set up Effect services architectureskillEngineeringL2
effect-services · When defining services in Effect v4 with compile-time type safety and explicit dependency wiring.
Build production Discord botsskillEngineeringL2
discord-bot-architect · When building production Discord bots with modern slash commands rather than legacy prefix-based bots.
Detect active security threatsskillOpsL3
mid-engagement-ir-detection · When running active testing against monitored targets and needing to separate your activity from external attacker activity.
Search the web with AIskillL2
tavily-search · When needing semantic search over current web with ranking, versus full-text grep search.
Map attack surface externallyskillOpsL3
offensive-osint · When conducting reconnaissance from attacker perspective with only public information.
Automate GitHub issue routingskillEngineeringL2
github-triage · When triaging large GitHub backlogs systematically rather than manual browser review.
Test Okta authentication defensesskillOpsL3
okta-attack · When testing Okta for credential attacks or session manipulation during authorized assessments.
Execute comprehensive security reconskillOpsL3
osint-methodology · When reconnaissance needs repeatable structure and documentation versus ad-hoc browsing.
Convert agents to Skills formatskillEngineeringL2
migrate-to-skills · When converting one-off scripts into reusable components for team collaboration.
Master red-team operator disciplineskillOpsL1
redteam-mindset · When planning red-team engagements with structured threat modeling versus vulnerability checklist testing.
Generate complete software specskillEngineeringL2
project-specification-writer · When clarifying project scope and objectives before development begins.
Format red-team findings reportskillOpsL1
redteam-report-template · When documenting red-team findings with proper impact quantification and evidence chain.
Analyze frontend task risksskillEngineeringL2
frontend-task-analysis · When decomposing frontend work into concrete, parallelizable subtasks with clear acceptance criteria.
Write bug bounty reports fastskillOpsL1
report-writing · Ensures reports pass triage by enforcing impact-first writing and exact reproduction over theoretical claims.
Update project dependenciesskillEngineeringL2
update-deps · Keeps dependencies current while catching regressions through automated post-update checks.
Create or update C# scriptsskillEngineeringL2
script-update-or-create · Programmatically generates and verifies Unity C# scripts without manual IDE interaction.
Send and read WhatsApp messagesskillL2
WhatsApp Assistant · Monitors WhatsApp archives without opening the app, extracting and actionifying conversation data.
Build Databricks AI agentsskillDataL3
databricks-agent-bricks · Reduces AI app deployment time by assembling pre-built conversational components without code.
Optimize cloud infrastructure costsskillFinanceL2
cloud-cost-models · Reduces cloud spend 30-70% through instance selection, savings plans, and per-environment scheduling formulas.