aeondave/misc-ctf
offensive-ctf/misc-ctf/SKILL.md
Lab/CTF: misc challenges; jails, encodings, esolangs, VMs, DNS oddities, Linux puzzles, Unicode, QR/audio, multi-stage artifacts.
$ install --global
skillsauthnpx skillsauth add aeondave/malskill misc-ctfInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Jun 5, 2026, 3:58 AM224.5s13 files scanned
SKILL.md
- name:
- misc-ctf
- description:
- Lab/CTF: misc challenges; jails, encodings, esolangs, VMs, DNS oddities, Linux puzzles, Unicode, QR/audio, multi-stage artifacts.
- license:
- MIT
- compatibility:
- AgentSkills-compatible agents; local challenge artifacts; authorized training and lab environments.
- author:
- AeonDave
- version:
- 1.0
- category:
- ctf-solving
Misc CTF
Goal: solve miscellaneous multi-domain challenge solving tasks with professional offensive methodology, preserved imported technique coverage, and reproducible evidence.
When this skill applies
- jails, encodings, esolangs, games, VMs, RF/SDR, DNS oddities, Linux privilege escalation puzzles, unicode tricks, QR/audio artifacts, or multi-stage puzzles
- problems where no single category dominates at first triage
Operating model
- Classify the dominant artifact, primitive, or objective.
- Load the closest
offensive-techniquesmethodology before selecting tools. - Load debrandized imported references only for deep technique details.
- Choose the smallest tool chain that can produce a validation signal.
- Record the exact proof path and stop once the objective is reproducible.
Technique integration
Primary methodology to load:
crypto-techniquereversing-techniqueforensic-techniquepost-exploit-techniquewireless-techniquenetwork-technique
Use these as decision engines. This skill adds challenge-oriented triage, time-boxing, and preserved specialized patterns from the imported corpus.
Tool routing
Prefer these tool families when the corresponding signal appears:
cyberchefnetcatwiresharkaircrack-ngkismetcoding/python-patternscoding/systematic-debugging
Tool syntax belongs in the tool skills. This skill decides when a tool family fits and what output should validate progress.
Writeup-derived patterns
- Public writeup patterns favor artifact-first triage, shortest reproducible path, and explicit validation signal before pivoting.
- Record failed hypotheses with evidence so an agent does not repeat expensive dead paths.
- Prefer category-specific tools after surface classification instead of running every scanner or brute-forcer by habit.
- End with a replayable proof: recovered secret, local verification, exploit output, decoded artifact, or correlated evidence chain.
Category-specific quick pivots
- Classify the primitive, not the category label: parser, sandbox, encoding, RF, protocol, game logic, or host privilege boundary.
- Use shortest deterministic transform chain first; avoid speculative brute force until representation is known.
- For jail and VM tasks, map constraints then build minimal escape or emulator.
Quality gates
- No claim without a validation signal: recovered secret, replayed exploit, decoded artifact, reproduced model behavior, or corroborated evidence.
- Do not brute force before representation, constraints, and success oracle are known.
- Keep a pivot ledger: hypothesis, evidence, result, next shortest path.
- Keep challenge/platform/competition names out of notes and generated reports.
Resources
- references/bashjails.md — preserved, debrandized imported technique material.
- references/ctfd-navigation.md — preserved, debrandized imported technique material.
- references/dns.md — preserved, debrandized imported technique material.
- references/encodings-advanced.md — preserved, debrandized imported technique material.
- references/encodings.md — preserved, debrandized imported technique material.
- references/games-and-vms-2.md — preserved, debrandized imported technique material.
- references/games-and-vms-3.md — preserved, debrandized imported technique material.
- references/games-and-vms-4.md — preserved, debrandized imported technique material.
- references/games-and-vms.md — preserved, debrandized imported technique material.
- references/linux-privesc.md — preserved, debrandized imported technique material.
- references/pyjails.md — preserved, debrandized imported technique material.
- references/rf-sdr.md — preserved, debrandized imported technique material.
Related Skills
aeondave/vibe-audit-technique
development
VerifiedTrustedCommunity
White-box auditing methodology for AI-generated ('vibe-coded') applications. Focuses on modern stack misconfigurations (Supabase, Next.js, Vercel).
4SKILL.mdUpdated Jun 12, 2026
aeondave/source-review-technique
development
VerifiedTrustedCommunity
Hybrid AI/Deterministic SAST methodology for discovering zero-day vulnerabilities in source code. Orchestrates structural search with AI-driven data flow and sink validation.
4SKILL.mdUpdated Jun 12, 2026
aeondave/hardware-technique
development
VerifiedTrustedCommunity
Auth assessment: hardware/embedded methodology; UART/JTAG/SWD/SPI/I2C, firmware extraction, boot/debug paths, embedded OS evidence.
4SKILL.mdUpdated Jun 12, 2026
aeondave/container-technique
devops
VerifiedTrustedCommunity
Container methodology: Identifying containerization limits, Docker/K8s misconfigurations, and executing escapes to the host node.
4SKILL.mdUpdated Jun 12, 2026