essential tools

Skill

Core pentesting tools and methodology - Burp Suite usage, Playwright automation, binary analysis, testing methodology, and professional reporting standards.

Files9
  • @skills/essential-tools/SKILL.md
  • @skills/essential-tools/reference/binary-analysis-quickstart.md
  • @skills/essential-tools/reference/coding-challenges.md
  • @skills/essential-tools/reference/essential-skills-cheat-sheet.md
  • @skills/essential-tools/reference/essential-skills-index.md
  • @skills/essential-tools/reference/essential-skills-quickstart.md
  • @skills/essential-tools/reference/essential-skills-resources.md
  • @skills/essential-tools/reference/playwright-automation.md
  • @skills/essential-tools/reference/web-application-attacks.md

Essential Tools

Core tools, methodology, and reporting standards for penetration testing.

Components

ComponentPurpose
Burp SuiteProxy, scanner, intruder, repeater, sequencer
PlaywrightBrowser automation, evidence capture, SPA testing
Binary AnalysisStatic analysis, reverse engineering, string extraction
NucleiTemplated exposure & misconfiguration scanning
sslscanTLS posture (protocols, ciphers, cert)
MethodologyPTES, OWASP WSTG, attack prioritization
ReportingProfessional report templates, PDF generation

Reference

  • reference/essential-skills*.md - Burp Suite techniques and web security testing methodology
  • reference/playwright-automation.md - Playwright MCP usage for pentesting
  • reference/binary-analysis-quickstart.md - Static analysis for executable files and reverse engineering
  • reference/web-application-attacks.md - Web application attack methodology
  • formats/transilience-report-style/pentest-report.md - Finding quality standards, compliance mapping, and pre-delivery checklist

Required-at-start tooling (web/API engagements)

Run an availability check before declaring recon complete:
command -v subfinder nuclei sslscan httpx; curl -s "https://crt.sh/?q=%25.${DOMAIN}&output=json" | head -c1
  • Subdomain/CT enum: subfinder, certspotter, crt.sh
  • TLS posture: sslscan
  • Templated exposure: nuclei
If a tool-class is unavailable, record it as an explicit limitation — NEVER declare recon COMPLETE having skipped a whole class. Hand-rolled urllib is not a substitute (see skills/coordination/reference/principles.md 'Real tools before hand-rolled HTTP').
essential-tools — Kortix Marketplace | Kortix