The Agent Skills Directory

[SAFE]: The content is structured as a technical guide for security practitioners. It does not contain malicious instructions, attempts to exfiltrate data, or hidden backdoors.\n- [COMMAND_EXECUTION]: The skill provides example CLI commands using curl and grep. These are intended to help researchers identify reflection points and test for vulnerabilities on authorized targets.\n- [EXTERNAL_DOWNLOADS]: Includes references to out-of-band (OOB) testing services like Burp Collaborator (oastify.com) and examples of high-value targets (e.g., PayPal, Shopify). These are standard references in the context of security auditing and do not constitute a security risk.\n- [OBFUSCATION]: Contains a Base64-encoded string (YWxlcnQoMSk=) within an XSS payload example. Analysis confirms this decodes to a benign alert(1) command, which is a standard industry practice for demonstrating XSS execution without causing harm in a testing environment.

hunt-xss