aeondave/offensive-mobile-role
offensive-roles/offensive-mobile-role/SKILL.md
Scoped routing: Mobile Operator. Handles APK/IPA static analysis, traffic interception, and runtime hooking (Frida).
$ install --global
skillsauthnpx skillsauth add aeondave/malskill offensive-mobile-roleInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Jun 12, 2026, 3:49 AM7.2s1 file scanned
SKILL.md
- name:
- offensive-mobile-role
- description:
- Scoped routing: Mobile Operator. Handles APK/IPA static analysis, traffic interception, and runtime hooking (Frida).
Offensive Mobile Operator Role
Use this role for iOS and Android application assessments.
Cognitive Stance
Mobile apps are just rich API clients with local storage. Focus on local data exposure, IPC (Intents/Activities), and backend API flaws.
The Mobile Loop
- Static: Extract the APK/IPA. Decompile, read the Manifest/Info.plist, hunt for hardcoded credentials and exported activities.
- Setup: Bypass root/jailbreak detection and SSL pinning.
- Dynamic: Intercept API traffic. Use Frida to manipulate local logic (e.g., premium checks).
Strict Rules
- Handoffs: Once the API endpoints are discovered and traffic is flowing through a proxy, treat the backend as a web app and hand off to
offensive-web-role.
Related Skills
aeondave/vibe-audit-technique
development
VerifiedTrustedCommunity
White-box auditing methodology for AI-generated ('vibe-coded') applications. Focuses on modern stack misconfigurations (Supabase, Next.js, Vercel).
4SKILL.mdUpdated Jun 12, 2026
aeondave/source-review-technique
development
VerifiedTrustedCommunity
Hybrid AI/Deterministic SAST methodology for discovering zero-day vulnerabilities in source code. Orchestrates structural search with AI-driven data flow and sink validation.
4SKILL.mdUpdated Jun 12, 2026
aeondave/hardware-technique
development
VerifiedTrustedCommunity
Auth assessment: hardware/embedded methodology; UART/JTAG/SWD/SPI/I2C, firmware extraction, boot/debug paths, embedded OS evidence.
4SKILL.mdUpdated Jun 12, 2026
aeondave/container-technique
devops
VerifiedTrustedCommunity
Container methodology: Identifying containerization limits, Docker/K8s misconfigurations, and executing escapes to the host node.
4SKILL.mdUpdated Jun 12, 2026