The library
Everything we index — ranked by what works, never by stars.
forSalesMarketingHRFinanceLegalOpsProductEngineeringDataProductivitySupportsetup≤ plug & play≤ + a key≤ multi-tool
● works · ● untested / no effect · ● hurts — every rank is measured against a no-skill baseline
untested★2,144→untested★44→untested★0→untested★2,144→untested★19→untested★0→untested★12→untested★0→untested★2,144→untested★45→untested★0→untested★2,144→untested★45→untested★0→untested★2,144→untested★12→untested★20→untested★0→untested★2,144→untested★6→untested★15→untested★0→untested★6→untested★15→untested★0→untested★13→untested★15→untested★20→untested★2,144→untested★11→untested★19→untested★2,144→untested★11→untested★2,144→untested★11→untested★2,144→untested★15→untested★2,144→untested★7→untested★2,144→untested★5→untested★15→untested★2,144→untested★5→untested★15→untested★2,144→untested★2,144→untested★10→untested★20→untested★2,144→
Exploit HTTP parameter pollutionskillEngineeringL2
offensive-parameter-pollution · Bypassing security controls when backend and frontend parse parameters differently
Automate UK grocery shoppingskillOpsL2
uk-grocery-cli · Automating recurring grocery orders across multiple UK chains with price comparison before checkout
Detect path traversal vulnerabilitiesskillEngineeringL3
sast-pathtraversal · Large codebases needing path traversal scanned in parallel without overwhelming context
Exploit race condition bugsskillEngineeringL2
offensive-race-condition · Bug bounty race condition testing on registration, payments, and single-use tokens
Stage and commit code changesskillEngineeringL1
commit · Rapid multi-file commits with auto-generated messages matching repo conventions
Detect remote code execution flawsskillEngineeringL3
sast-rce · Finding command injection and eval-like RCE across large codebases in parallel
Track Discord channel memoryskillOpsL2
discord-channel-memory · Maintaining agent memory across 3+ Discord channels without loading full history at session start
Generate consolidated security reportskillEngineeringL1
sast-report · Executive-facing security report consolidating 10+ vulnerability types into one prioritized list
Exploit HTTP request smugglingskillEngineeringL2
offensive-request-smuggling · Bug bounty request smuggling on multi-tier proxies and load balancers (Nginx, HAProxy, AWS ALB)
Generate codebase documentationskillEngineeringL1
cm-dockit · One-shot knowledge base generation from source code without writing separate documentation
Detect SQL injection vulnerabilitiesskillEngineeringL3
sast-sqli · Finding SQLi across authentication and bulk data endpoints in large codebases
Test SQL injection exploitsskillEngineeringL2
offensive-sqli · Bug bounty exploitation of SQL injection on login and export endpoints
Run visual QA through browserskillProductL2
cm-browse · Quick content extraction and link discovery from any web page
Detect server-side request forgeryskillEngineeringL3
sast-ssrf · Finding SSRF that reaches internal microservices, cloud metadata (169.254.169.254), or database servers
Exploit server-side request forgeryskillEngineeringL2
offensive-ssrf · AWS/GCP credential theft via IMDSv1 metadata endpoint and internal database access
Scan for sensitive data before commitskillEngineeringL1
check-before-commit · Pre-commit quality gates preventing style/error commits from reaching main
Maintain impact diagramsskillProductL1
diagram · Generating architecture diagrams, flowcharts, and sequence diagrams from code or text
Detect server-side template injectionskillEngineeringL3
sast-ssti · Finding SSTI in microtemplate rendering (Jinja2, ERB, Handlebars) on dynamic pages
Exploit template injection flawsskillEngineeringL2
offensive-ssti · RCE via template injection on Jinja2, ERB, and Handlebars endpoints
Visualize codebase structure instantlyskillEngineeringL1
project-structure-viewer · Quick understanding of unfamiliar codebase layout without reading all files
Niri window manager referenceskillEngineeringL1
niri · Rapid keyboard-driven workflow setup for developers using Linux Wayland
Detect XSS vulnerabilities automaticallyskillEngineeringL3
sast-xss · Use for specialized sast-xss scenarios where standard approaches are insufficient.
Build Arbitrum dApps with StylusskillEngineeringL3
arbitrum-dapp-skill · Opinionated guide for building dApps on Arbitrum using Stylus (Rust) and/or Solidity
GNOME desktop environment guideskillEngineeringL1
gnome · Use for specialized gnome scenarios where standard approaches are insufficient.
Find XXE injection vulnerabilitiesskillEngineeringL3
sast-xxe · Use for specialized sast-xxe scenarios where standard approaches are insufficient.
Get second opinion on code changesskillEngineeringL2
cross-review · Run a cross-review using the opposite CLI reviewer for proposal review and change assessment
Manage media library with *arr stackskillOpsL3
media · Media Management (\*arr Stack) Skill
Master GitHub CLI operationsskillEngineeringL2
gh-cli · GitHub CLI (gh) comprehensive reference for repositories, issues, pull requests, Actions, projects, releases, gists, codespaces,...
Execute BLE penetration testsskillEngineeringL4
offensive-bluetooth-ble · Bluetooth Low Energy (BLE) attack methodology — GATT enumeration, characteristic read/write without auth, pairing downgrade...
Shrink browser prompts 95%skillEngineeringL2
predicate-snapshot · ML-powered DOM pruning for 95% smaller browser prompts
Track ETF news by categoryskillDataL2
etf-news · Fetch and tag news articles by Indian ETF category with sentiment scores
Attack Bluetooth Classic devicesskillEngineeringL4
offensive-bluetooth-classic · Bluetooth Classic (BR/EDR) attack methodology — device discovery, service enumeration via SDP, LMP/L2CAP layer attacks,...
Generate flashcards from STEM materialskillProductivityL2
generating-stem-flashcards · Generates atomic flashcards from technical/STEM source material
Execute WiFi deauth attacksskillEngineeringL4
offensive-deauth-disassoc · Deauthentication and disassociation attacks against 802
Apply Laravel production patternsskillEngineeringL1
laravel-best-practices · Laravel best practices and architecture patterns for building production-ready applications
Deploy evil twin access pointsskillEngineeringL4
offensive-evil-twin · Evil Twin / KARMA / Mana access point methodology — rogue AP construction with hostapd-mana...
Manage GitHub repositories and PRsskillEngineeringL2
github · GitHub & Git Integration Skill
Exploit KRACK and FragAttacksskillEngineeringL4
offensive-krack-fragattacks · KRACK (CVE-2017-13077
Decrypt WeChat backup databasesskillOpsL3
wx-backup-decrypt · Decrypt and extract WeChat backup database (
Attack LoRaWAN and sub-GHz networksskillEngineeringL4
offensive-lorawan-sub-ghz · LoRaWAN and sub-GHz (433 / 868 / 915 MHz) attack methodology — LoRaWAN ABP/OTAA join...
Maintain agent knowledge baseskillProductivityL2
llm-wiki · SOP for agent-maintained personal knowledge base: ingest, query, lint, graph, update, and delete knowledge assets
Stylix desktop theming referenceskillEngineeringL1
stylix · NixOS declarative system theming where all apps must inherit a consistent color palette from a single wallpaper or scheme.
Map WiFi networks with precisionskillEngineeringL3
offensive-wifi-recon · Initial wireless engagement phase to build target topology before active attacks (deauth, evil-twin, handshake capture).
Assess agent deployment securityskillEngineeringL2
trent-openclaw-security · Post-deployment security audit of OpenClaw agents to catch configuration drift and multi-setting attack chains before production.
Set up Agent Build PipelineskillEngineeringL2
agenix · Declarative secret management for NixOS infrastructure where secrets must be versioned and reproduced identically across hosts.
Penetration Test Wireless NetworksskillOpsL3
offensive-wifi · Red-team wireless assessments where authorized testing of WPA/WPA2/WPA3 PSK, EAP, or WPS security is needed.
Audit Enterprise WiFi SecurityskillOpsL3
offensive-wpa-enterprise · Corporate Wi-Fi engagements where 802.1X authentication is used and client cert validation is lax (BYOD, unmanaged devices).
Auto-Repair GitHub Issues with AIskillEngineeringL3
autoloop · Service/ops issues on GitHub that can be auto-fixed (config updates, restart cycles, cleanup) with delayed human verification.
Build Feature from Spec to TaskskillEngineeringL2
kiro-skill · Feature development where spec-first methodology improves clarity and reduces implementation rework.
Crack WiFi Passwords with GPUskillOpsL3
offensive-wpa2-psk · WPA2-PSK (pre-shared key) network cracking where offline dictionary attack is faster than online brute-force.