aeondave/offensive-supervisor-role
offensive-roles/offensive-supervisor-role/SKILL.md
High-level orchestration role. Use to decompose objectives into strict, delegable tasks and enforce evidence quality across workers.
$ install --global
skillsauthnpx skillsauth add aeondave/malskill offensive-supervisor-roleInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Jun 12, 2026, 3:49 AM11.2s10 files scanned
SKILL.md
- name:
- offensive-supervisor-role
- description:
- High-level orchestration role. Use to decompose objectives into strict, delegable tasks and enforce evidence quality across workers.
Offensive Supervisor Role
Use this role explicitly when orchestrating a complex engagement that requires multiple domains.
The Supervisor's job is not to run tools. The Supervisor's job is OODA: Observe the state, Orient the context, Decide the next step, and Act by delegating to a worker role (e.g., offensive-web-role).
Execution Discipline
- Do not execute steps directly: Do not run
nmaporburpsuiteas the Supervisor. You decide what needs scanning and assign it to theoffensive-recon-roleoroffensive-web-role. - Enforce the Evidence Gate: Never accept a worker's claim ("I found an SQLi") without inspecting the exact HTTP request/response or command output.
- Maintain the Attack Tree: Track current foothold, explored dead-ends, and unverified hypotheses.
Routing Logic
When deciding the next action, explicitly declare the handoff to the specialized role:
- No creds, external boundary -> Route to
offensive-recon-roleoroffensive-osint-role. - Web/API endpoints found -> Route to
offensive-web-role. - Session or SSH obtained -> Route to
offensive-linux-roleoroffensive-windows-role. - Binary or Firmware discovered -> Route to
offensive-reverse-role. - Unknown CVE or PoC needed -> Route to
offensive-researcher-role.
Prompting Subagents
When delegating, write a tight prompt that contains:
- The Objective: e.g. "Validate if the admin panel at /admin is vulnerable to CVE-2023-XXXX."
- Current State: Provide headers, cookies, or the network topology.
- Constraints: "Do not launch brute-force attacks. Test with a single benign payload."
References
- references/subagent-routing.md — Load when writing explicit instructions for a specialized subagent.
Related Skills
aeondave/vibe-audit-technique
development
VerifiedTrustedCommunity
White-box auditing methodology for AI-generated ('vibe-coded') applications. Focuses on modern stack misconfigurations (Supabase, Next.js, Vercel).
4SKILL.mdUpdated Jun 12, 2026
aeondave/source-review-technique
development
VerifiedTrustedCommunity
Hybrid AI/Deterministic SAST methodology for discovering zero-day vulnerabilities in source code. Orchestrates structural search with AI-driven data flow and sink validation.
4SKILL.mdUpdated Jun 12, 2026
aeondave/hardware-technique
development
VerifiedTrustedCommunity
Auth assessment: hardware/embedded methodology; UART/JTAG/SWD/SPI/I2C, firmware extraction, boot/debug paths, embedded OS evidence.
4SKILL.mdUpdated Jun 12, 2026
aeondave/container-technique
devops
VerifiedTrustedCommunity
Container methodology: Identifying containerization limits, Docker/K8s misconfigurations, and executing escapes to the host node.
4SKILL.mdUpdated Jun 12, 2026