attack-patterns-reference

Community

Lookup 51+ attack patterns for recon and pentest findings.

Authoruphiago
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill eliminates the time spent manually searching for the right exploitation technique when you uncover a specific vulnerability during reconnaissance, ensuring you don't miss relevant attack paths or waste effort on dead-end testing methods.

Core Features & Use Cases

  • Comprehensive Pattern Catalog: Includes 25 general attack patterns (P-01 to P-25), 18 WordPress abuse patterns (WP-01 to WP-18), and 8 CORS bypass variants (V1 to V8), all validated across 600+ real-world targets and 9 waves of reconnaissance.
  • Attack Chain Building: Cross-reference patterns to construct multi-step exploitation chains, such as CORS + user enumeration → account takeover or SSRF → IMDS → AWS credential theft.
  • Sector-Specific Intelligence: Access tier-based sector vulnerability data to prioritize testing efforts on high-yield targets like law firms, pest control services, and landscaping companies.
  • Avoid Failed Patterns: Reference the curated list of saturated and broken patterns to skip testing methods that no longer work on modern systems, saving hours of redundant work.

Quick Start

Use the attack-patterns-reference skill to match your latest WordPress CORS finding to the correct exploitation variant and related attack chain steps.

Dependency Matrix

Required Modules

None required

Components

references

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: attack-patterns-reference
Download link: https://github.com/uphiago/recon-skills/archive/main.zip#attack-patterns-reference

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 536,000+ vetted skills library on demand.