pentest-recon-attack-surface
OfficialMap attack surfaces with integrated recon.
Authorjd-opensource
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Modern web architectures present complex, multi-source attack surfaces across external networks, authenticated browser sessions, and code. This skill consolidates external scan results, browser exploration, and source code analysis into a unified endpoint inventory augmented with authorization context to guide secure design and remediation.
Core Features & Use Cases
- Correlated reconnaissance: coalesces external technology fingerprints, deployment configs, and authenticated crawling to identify exposed endpoints and misconfigurations.
- Authz-aware mapping: extracts routes and middleware to construct a clear role/permission model and highlight missing or weak access controls.
- Actionable outputs: delivers an endpoint inventory, role architecture, and prioritized authorization vulnerability candidates for downstream code review.
Quick Start
Run the end-to-end reconnaissance workflow to generate an endpoint inventory with authorization metadata for your target application.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: pentest-recon-attack-surface Download link: https://github.com/jd-opensource/JoySafeter/archive/main.zip#pentest-recon-attack-surface Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.