What security tools does this skill support?

It integrates industry-standard tools such as Amass, Subfinder, httpx, ffuf, Nuclei, Dalfox, and WayBackUrls into a cohesive security workflow.

Can I automate the entire reconnaissance process?

Yes, the skill provides automation scripts that chain multiple discovery, filtering, and scanning tools into a single, executable shell pipeline.

Do I need special permissions to use these tools?

Yes. You must have explicit legal permission from the target owner or be working strictly within the defined scope of an active bug bounty program.

Does this skill help with reporting vulnerabilities?

While primarily focused on discovery, it helps document findings, tech stacks, and technical details necessary for creating high-quality security reports.

Is an API key required for these tools?

Many integrated tools like Amass, Shodan, and Censys require valid API keys for full functionality, which should be configured on your attack machine.

Red Team Methodology & Security Tools

Name: Red Team Methodology & Security Tools
Author: claudiodearaujo

byclaudiodearaujo

Security & Testing

Automates security reconnaissance and vulnerability discovery using industry-standard red teaming methodologies and toolchains.

About

This skill provides an end-to-end framework for security researchers and bug bounty hunters to perform comprehensive asset discovery and vulnerability assessments. It integrates popular open-source security tools like Amass, Subfinder, and Nuclei into a streamlined workflow, covering everything from initial ASN lookups and subdomain enumeration to advanced XSS hunting and API analysis. It is particularly useful for professionals looking to automate the repetitive aspects of reconnaissance while maintaining the high-quality coverage required for successful penetration testing and vulnerability research.

Key Features

Comprehensive vulnerability scanning using Nuclei templates
0 GitHub stars
Targeted XSS hunting and parameter extraction pipelines
Automated subdomain enumeration and live host discovery
Structured application analysis based on the Jason Haddix method
Advanced technology fingerprinting and service identification

Use Cases

Conducting internal or external security audits for organizations
Performing initial reconnaissance for bug bounty programs
Automating repetitive asset discovery tasks in a DevSecOps pipeline

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/izacenter red-team-tools

For use in Claude.ai and ChatGPT

Download Skill

GitHub