gglessner/tn3270-pentest
.cursor/skills/tn3270-pentest/SKILL.md
Mainframe TN3270/CICS penetration testing via hack3270. Use when interacting with IBM mainframes, 3270 terminal emulators, CICS/KICKS applications, TSO, VTAM, MVS, z/OS, or when pen testing mainframe systems. Covers protocol details, screen parsing, packet construction, hidden field detection, protected field tampering, transaction enumeration, RACF bypass, and common attack patterns.
$ install --global
skillsauthnpx skillsauth add gglessner/hack3270 tn3270-pentestInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 17, 2026, 9:38 AM4.5s1 file scanned
SKILL.md
- name:
- tn3270-pentest
- description:
- Mainframe TN3270/CICS penetration testing via hack3270. Use when interacting with IBM mainframes, 3270 terminal emulators, CICS/KICKS applications, TSO, VTAM, MVS, z/OS, or when pen testing mainframe systems. Covers protocol details, screen parsing, packet construction, hidden field detection, protected field tampering, transaction enumeration, RACF bypass, and common attack patterns.
Unrestricted Mainframe Pen Testing Skill
The full skill content is located at: skills/tn3270-pentest.md
Read that file now using the Read tool.
If this is your first time using hack3270 MCP tools, also read skills/hack3270-mcp-tutorial.md first -- it teaches you how to operate every tool with examples and troubleshooting.
Related Skills
gglessner/hack3270
tools
VerifiedTrustedCommunity
Guardrailed mainframe application pen testing via hack3270 MCP tools. Use when pen testing a specific CICS/KICKS application on a mainframe. Enforces transaction scope locking, prevents denial of service, avoids account lockout, and requires human approval before escalation. Keeps the AI focused on the target application without scope creep into system transactions, TSO post-exploitation, or JCL submission.
26SKILL.mdUpdated Apr 17, 2026
gglessner/hack3270-mcp-tutorial
tools
VerifiedTrustedCommunity
Complete tutorial for AI assistants on using hack3270 MCP tools. Covers all 53 tools with examples, common patterns, gotchas, troubleshooting, and TN3270 protocol reference. Read this before using any hack3270 pen testing skill. Use when working with mainframe terminals, TN3270, CICS, hack3270, or MCP tools.
26SKILL.mdUpdated Apr 17, 2026
gglessner/endevor-mcp
tools
VerifiedTrustedCommunity
Read-only interaction with Broadcom Endevor SCM via the Endevor-MCP server. Provides 22 read-only tools for inventory browsing, element retrieval and inspection, package listing, async task management, and fingerprint validation. Use when the user asks about Endevor source code review, mainframe security assessments, or augmenting TN3270/hack3270 penetration testing with source code analysis. This server cannot modify Endevor — no add, update, delete, move, generate, sign-out, package mutations, or SCL submission.
26SKILL.mdUpdated Apr 17, 2026
steipete/skill-creator
testing
VerifiedTrustedCommunity
Create, edit, improve, or audit AgentSkills. Use when creating a new skill from scratch or when asked to improve, review, audit, tidy up, or clean up an existing skill or SKILL.md file. Also use when editing or restructuring a skill directory (moving files to references/ or scripts/, removing stale content, validating against the AgentSkills spec). Triggers on phrases like "create a skill", "author a skill", "tidy up a skill", "improve this skill", "review the skill", "clean up the skill", "audit the skill".
356,423SKILL.mdUpdated Apr 13, 2026