·pentest-recon-attack-surface

pentest-recon-attack-surface

Name: pentest-recon-attack-surface
Author: jd-opensource

✓

jd-opensource/joysafeterGitHub: jd-opensource/joysafeter 来源: jd-opensource/joysafeter

白盒攻击面映射 - 将外部扫描、浏览器探索和源代码关联到结构化端点清单、角色架构和授权漏洞候选者中。

jd-opensource·pentest·recon·attack·surface

19安装·1热度·@jd-opensource

安装

GitHub: jd-opensource/joysafeter

$npx skills add https://github.com/jd-opensource/joysafeter --skill pentest-recon-attack-surface

如何安装 pentest-recon-attack-surface

通过命令行快速安装 pentest-recon-attack-surface AI 技能到你的开发环境

打开终端: 打开你的终端或命令行工具（如 Terminal、iTerm、Windows Terminal 等）
运行安装命令: 复制并运行以下命令：npx skills add https://github.com/jd-opensource/joysafeter --skill pentest-recon-attack-surface
验证安装: 安装完成后，技能将自动配置到你的 AI 编程环境中，可以在 Claude Code、Cursor 或 OpenClaw 中使用

来源：jd-opensource/joysafeter。

SKILL.md

查看原文

Perform comprehensive attack surface mapping by correlating three data sources: external network scans, authenticated browser exploration, and source code analysis. Produces a structured endpoint inventory with authorization metadata, role/privilege architecture, and prioritized authorization vulnerability candidates for downstream code review and exploitation.

| API Endpoint Inventory | Table: method, path, authrequired, rolesallowed, validationsummary, file:line | | Network Interaction Map | External services, internal services, exposed ports, subdomain inventory | | Role & Privilege Architecture | Role hierarchy, permission matrix, privilege escalation paths |

| Authorization Vulnerability Candidates | Prioritized list of endpoints with suspected authz gaps | | Session Architecture | Token type, storage, rotation, expiry, invalidation behavior |

白盒攻击面映射 - 将外部扫描、浏览器探索和源代码关联到结构化端点清单、角色架构和授权漏洞候选者中。来源：jd-opensource/joysafeter。

可引用信息

为搜索与 AI 引用准备的稳定字段与命令。

安装命令: npx skills add https://github.com/jd-opensource/joysafeter --skill pentest-recon-attack-surface
来源: jd-opensource/joysafeter
分类: !安全工具
认证: ✓
收录时间: 2026-02-26
更新时间: 2026-03-10
链接: https://www.learn-skills.dev/zh/skills/jd-opensource/joysafeter/pentest-recon-attack-surface

Browse more skills from jd-opensource/joysafeter

快速解答

什么是 pentest-recon-attack-surface？

白盒攻击面映射 - 将外部扫描、浏览器探索和源代码关联到结构化端点清单、角色架构和授权漏洞候选者中。来源：jd-opensource/joysafeter。

如何安装 pentest-recon-attack-surface？

打开你的终端或命令行工具（如 Terminal、iTerm、Windows Terminal 等）复制并运行以下命令：npx skills add https://github.com/jd-opensource/joysafeter --skill pentest-recon-attack-surface 安装完成后，技能将自动配置到你的 AI 编程环境中，可以在 Claude Code、Cursor 或 OpenClaw 中使用

这个 Skill 的源码在哪？

https://github.com/jd-opensource/joysafeter

详情

分类: !安全工具
来源: skills.sh
收录时间: 2026-02-26