PluginBench
Skill
Pass
Audit score 90

recon-for-sec

yaklang/hack-skills

How to install recon-for-sec

npx skills add https://github.com/yaklang/hack-skills --skill recon-for-sec
Claude Code
Cursor
Windsurf
Cline
Full instructions (SKILL.md)

Source of truth, from yaklang/hack-skills.


name: recon-for-sec description: >- Entry P1 category router for reconnaissance and methodology. Use when mapping scope, discovering assets, fingerprinting technology, building endpoint inventory, and choosing the first high-value security testing path.

Recon and Methodology Router

This is the starting router for new targets and unknown attack surfaces.

When to Use

  • You just received a new target and do not yet know what to test first
  • You need to begin with asset discovery, tech fingerprinting, endpoint inventory, and test-route planning
  • You want to build follow-up testing on structured methodology instead of random payload enumeration

Skill Map

Recommended Flow

  1. First confirm in-scope assets and target type
  2. Then perform asset discovery, port/service identification, technology fingerprinting, and endpoint collection
  3. Route based on collected findings to api-sec, auth-sec, injection-checking, or business-logic-vuln