[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"project-78023":3},{"id":4,"name":5,"fullName":6,"owner":7,"repo":5,"description":8,"homepage":9,"htmlUrl":10,"language":11,"languages":10,"totalLinesOfCode":10,"stars":12,"forks":13,"watchers":14,"openIssues":15,"contributorsCount":15,"subscribersCount":15,"size":15,"stars1d":16,"stars7d":17,"stars30d":18,"stars90d":15,"forks30d":15,"starsTrendScore":19,"compositeScore":20,"rankGlobal":10,"rankLanguage":10,"license":10,"archived":21,"fork":21,"defaultBranch":22,"hasWiki":23,"hasPages":21,"topics":24,"createdAt":10,"pushedAt":10,"updatedAt":30,"readmeContent":31,"aiSummary":32,"trendingCount":15,"starSnapshotCount":15,"syncStatus":16,"lastSyncTime":33,"discoverSource":34},78023,"offensive-claude","hypnguyen1209\u002Foffensive-claude","hypnguyen1209","Offensive security toolkit for Claude Code covering red team, exploit dev, AD attacks, EDR bypass, mobile pentest","",null,"Shell",278,45,5,0,2,14,177,7,4.99,false,"main",true,[25,26,27,28,29],"claude-code","claude-code-skills","exploit-development","offensive-security","redteam","2026-06-12 02:03:45","# Offensive Security Research Config for Claude Code\n\nA comprehensive Claude Code configuration tailored for security researchers, red teamers, and vulnerability analysts. Includes 25 specialized skills, 6 agents, and 46 vulnerability reference files covering the full offensive security lifecycle.\n\n## Quick Setup\n\n```bash\n# Method 1: One-liner install (recommended)\ncurl -sL https:\u002F\u002Fraw.githubusercontent.com\u002Fhypnguyen1209\u002Foffensive-claude\u002Fmain\u002Finstall.sh | bash\n```\n\n```bash\n# Method 2: Clone + install script\ngit clone https:\u002F\u002Fgithub.com\u002Fhypnguyen1209\u002Foffensive-claude.git ~\u002Foffensive-claude\ncd ~\u002Foffensive-claude && bash install.sh\n```\n\n```bash\n# Method 3: Manual copy\ngit clone https:\u002F\u002Fgithub.com\u002Fhypnguyen1209\u002Foffensive-claude.git ~\u002Foffensive-claude\ncp -r ~\u002Foffensive-claude\u002Fskills ~\u002F.claude\u002Fskills\ncp -r ~\u002Foffensive-claude\u002Fagents ~\u002F.claude\u002Fagents\ncp ~\u002Foffensive-claude\u002FCLAUDE.md ~\u002F.claude\u002FCLAUDE.md\n```\n\nSkills and agents activate automatically — no additional configuration needed.\n\n## Structure\n\n```\n.\n├── skills\u002F                        # 25 skill modules (SKILL.md per directory)\n│   ├── recon-osint\u002F\n│   ├── vulnerability-analysis\u002F\n│   ├── exploit-development\u002F\n│   ├── ...\n│   └── references\u002F                # 47 vulnerability pattern files\n├── agents\u002F                        # 6 specialized sub-agents\n├── CLAUDE.md                      # System prompt & behavior config\n├── settings.json                  # Claude Code settings, permissions, MCP servers\n├── install.sh                     # One-liner install script\n└── README.md\n```\n\n## Skills (25)\n\n| # | Skill | Coverage |\n|---|-------|----------|\n| 01 | recon-osint | Subdomain enum, CVE lookup, breach intel, DNS history, Shodan\u002FCensys |\n| 02 | vulnerability-analysis | Taint analysis, source-sink tracing, false positive discipline |\n| 03 | exploit-development | ROP chains, heap exploitation, shellcode, deserialization, mitigation bypass |\n| 04 | reverse-engineering | IDA\u002FGhidra, Frida, angr, firmware extraction, anti-RE bypass |\n| 05 | web-pentest | SQLi, XSS, SSRF, race conditions, GraphQL, JWT, business logic |\n| 06 | network-attack | AD exploitation, lateral movement, pivoting, wireless, protocol attacks |\n| 07 | red-team-ops | C2, persistence, privesc, defense evasion, LOLBins, exfiltration |\n| 08 | cloud-security | AWS\u002FAzure\u002FGCP privesc, container escape, Kubernetes, IaC review |\n| 09 | malware-analysis | Static\u002Fdynamic analysis, YARA rules, unpacking, C2 protocol RE |\n| 10 | ai-security | Prompt injection, RAG poisoning, model extraction, adversarial ML |\n| 11 | threat-hunting | MITRE ATT&CK mapping, Sigma rules, log correlation, behavioral detection |\n| 12 | privesc-linux | SUID, capabilities, sudo, kernel exploits, Docker escape, cron abuse |\n| 13 | privesc-windows | Token abuse, service exploitation, UAC bypass, credential harvesting |\n| 14 | coding-mastery | Python\u002FC\u002FGo\u002FRust\u002FASM for exploit dev, scanners, C2, crypto |\n| 15 | crypto-analysis | TLS auditing, hash cracking, RSA attacks, side-channel, implementation review |\n| 16 | incident-response | Memory forensics (Volatility), timeline analysis, IOC extraction, containment |\n| 17 | edr-evasion | Hook unhooking, direct\u002Findirect syscalls, AMSI\u002FETW bypass, sleep masking |\n| 18 | initial-access | HTML smuggling, ISO\u002FMOTW bypass, DLL sideload, staged payloads, phishing |\n| 19 | shellcode-dev | PEB walk, API hashing, loaders, PE-to-shellcode, cross-platform |\n| 20 | windows-mitigations | ASLR\u002FDEP\u002FCFG\u002FCET\u002FACG bypass, WDAC\u002FASR bypass, PPL exploitation |\n| 21 | windows-boundaries | Kernel\u002Fuser boundary, sandbox escape, AppContainer, COM elevation |\n| 22 | keylogger-arch | SetWindowsHookEx, RawInput, direct HID, ETW capture, stealth IOCs |\n| 23 | mobile-pentest | Android\u002FiOS, Frida, SSL pinning bypass, exported components, biometric bypass |\n| 24 | advanced-redteam | C2 infra (redirectors, malleable profiles), OPSEC, tiered infrastructure |\n| 25 | active-directory-attack | Kerberoasting, NTLM relay, Golden\u002FSilver Ticket, ADCS, delegation abuse |\n\n## Agents (6)\n\n| Agent | Role |\n|-------|------|\n| redteam-planner | Designs attack paths, C2 infrastructure, OPSEC strategies |\n| exploit-researcher | CVE research, patch diffing, exploitation chain development |\n| security-reviewer | Deep code security audit with exploitability validation |\n| reverse-engineer | Binary\u002Ffirmware analysis, vulnerability discovery in compiled code |\n| ai-researcher | ML architecture, training optimization, interpretability, safety |\n| network-analyst | Packet analysis, protocol dissection, IDS\u002FIPS rule creation |\n\n## Vulnerability References (47 files)\n\nDetailed patterns with vulnerable\u002Fsecure code examples, organized by category:\n\n- **Taint Analysis** (4): source-sink tracing, filter evaluation, threat model, false positive reduction\n- **Memory Safety** (7): buffer overflow, integer overflow, UAF, null deref, OOB read, unsafe Rust\n- **Injection** (11): SQL, command, XSS, SSRF, SSTI, XXE, deserialization, path traversal, file upload, prototype pollution, ReDoS\n- **Authentication** (8): bypass, authorization flaws, session management, hardcoded creds, default creds, brute force, permissions\n- **Cryptography** (4): weak algorithms, key management, side-channel, certificate validation\n- **Concurrency** (3): race conditions, TOCTOU, established patterns\n- **Web\u002FAPI** (5): CORS, CSRF, open redirect, resource exhaustion, API security\n- **Supply Chain** (3): dependency confusion, code integrity, ML model files\n- **Active Directory** (1): delegation, GPO abuse, RODC, SCCM\u002FWSUS, ADCS, trust attacks\n\n## MCP Servers\n\n| Server | Purpose |\n|--------|---------|\n| mitm-search | Web search via mcp.mitm.vn |\n| ida-multi-mcp | IDA Pro integration (decompile, rename, xrefs, patching) |\n| jadx-mcp-server | Android APK decompilation and analysis |\n\n## How It Works\n\n1. Claude Code reads `CLAUDE.md` as the system prompt — sets offensive security persona\n2. Skills activate contextually based on your question\u002Ftask\n3. Agents can be spawned as sub-agents for parallel or specialized work\n4. Reference files are loaded on-demand when deeper vulnerability patterns are needed\n\n## Customization\n\n- Add new skills: create `skills\u002F\u003Cname>\u002FSKILL.md` with YAML frontmatter\n- Add new agents: create `agents\u002F\u003Cname>.md` with role description\n- Add MCP servers: edit `mcpServers` in `settings.json`\n- Modify permissions: edit `permissions.allow` in `settings.json`\n\n## Requirements\n\n- Claude Code CLI, Desktop App, or VS Code extension\n- For MCP integrations: IDA Pro with ida-multi-mcp plugin, JADX with MCP server\n","该项目是一个面向Claude Code的进攻性安全工具包，涵盖了红队、漏洞开发、AD攻击、EDR绕过和移动渗透测试。它包括25个专业技能模块、6个特工以及46个漏洞参考文件，支持从信息收集到漏洞利用的全生命周期。该工具包使用Shell脚本编写，便于快速部署与配置，无需额外设置即可激活所有功能。适合安全研究人员、红队成员及漏洞分析师在进行深度安全评估、攻防演练或漏洞研究时使用。","2026-06-11 03:56:21","CREATED_QUERY"]