·pentest-secrets-exposure
!

pentest-secrets-exposure

jd-opensource/joysafeterGitHub: jd-opensource/joysafeterSource: jd-opensource/joysafeter

Discover hardcoded credentials, leaked API keys, exposed configuration files, sensitive data in artifacts, and information disclosure via error handling.

jd-opensource·pentest·secrets·exposure
23Installs·2Trend·@jd-opensource

Installation

GitHub: jd-opensource/joysafeter
$npx skills add https://github.com/jd-opensource/joysafeter --skill pentest-secrets-exposure

How to Install pentest-secrets-exposure

Quickly install pentest-secrets-exposure AI skill to your development environment via command line

  1. Open Terminal: Open your terminal or command line tool (Terminal, iTerm, Windows Terminal, etc.)
  2. Run Installation Command: Copy and run this command: npx skills add https://github.com/jd-opensource/joysafeter --skill pentest-secrets-exposure
  3. Verify Installation: Once installed, the skill will be automatically configured in your AI coding environment and ready to use in Claude Code, Cursor, or OpenClaw

Source: jd-opensource/joysafeter.

SKILL.md

View raw

Purpose Spans multiple unchecked WSTG categories — CONF-03/04 (sensitive files, backups), INFO-05 (info leakage), ERRH-01/02 (error handling, stack traces). Shannon's pre-recon focuses on architecture, not systematic secrets discovery.

| WSTG-CONF-03 | Test File Extensions Handling for Sensitive Info | ✅ | | WSTG-CONF-04 | Review Old Backup and Unreferenced Files | ✅ | | WSTG-INFO-05 | Review Webpage Content for Information Leakage | ✅ | | WSTG-ERRH-01 | Test Improper Error Handling | ✅ | | WSTG-ERRH-02 | Test Stack Traces | ✅ |

| Git Scanning | TruffleHog, GitLeaks | Secret detection in git history | | Static Analysis | Semgrep (secrets rules), grep patterns | Source code secret scanning | | Web Probing | nuclei (exposure templates), ffuf | Exposed file/config discovery | | JS Analysis | SecretFinder, LinkFinder | Client-side bundle secret extraction |

Facts (cite-ready)

Stable fields and commands for AI/search citations.

Install command
npx skills add https://github.com/jd-opensource/joysafeter --skill pentest-secrets-exposure
Source
jd-opensource/joysafeter
Category
!Security
Verified
First Seen
2026-02-26
Updated
2026-03-10
URL
https://www.learn-skills.dev/en/skills/jd-opensource/joysafeter/pentest-secrets-exposure

Browse more skills from jd-opensource/joysafeter

Quick answers

What is pentest-secrets-exposure?

Discover hardcoded credentials, leaked API keys, exposed configuration files, sensitive data in artifacts, and information disclosure via error handling. Source: jd-opensource/joysafeter.

How do I install pentest-secrets-exposure?

Open your terminal or command line tool (Terminal, iTerm, Windows Terminal, etc.) Copy and run this command: npx skills add https://github.com/jd-opensource/joysafeter --skill pentest-secrets-exposure Once installed, the skill will be automatically configured in your AI coding environment and ready to use in Claude Code, Cursor, or OpenClaw

Where is the source repository?

https://github.com/jd-opensource/joysafeter

Details

Category
!Security
Source
skills.sh
First Seen
2026-02-26

Related Skills

pentest-mobile-app
30 Installs
pentest-osint-recon
30 Installs
pentest-exploit-validation
27 Installs
pentest-ctf-binary
26 Installs
pentest-whitebox-code-review
24 Installs
pentest-business-logic
23 Installs