santosomar/pt-gaining-access
skills/pt-gaining-access/SKILL.md
Guides controlled exploitation of validated vulnerabilities to measure real-world impact. Use when the user requests proof-of-concept validation, privilege escalation testing, or attack path confirmation in an authorized environment.
$ install --global
skillsauthnpx skillsauth add santosomar/ethical-hacking-agent-skills pt-gaining-accessInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 25, 2026, 6:18 PM25.9s1 file scanned
SKILL.md
- name:
- pt-gaining-access
- description:
- Guides controlled exploitation of validated vulnerabilities to measure real-world impact. Use when the user requests proof-of-concept validation, privilege escalation testing, or attack path confirmation in an authorized environment.
Pen Test Gaining Access
Authorized Use Only
Only perform controlled exploitation on explicitly approved targets. Avoid destructive actions, production instability, and unnecessary data access. Stop immediately if impact exceeds rules of engagement.
Objectives
- Validate whether identified weaknesses are exploitable.
- Demonstrate business-relevant impact with minimum disruption.
- Capture reproducible evidence for remediation.
Workflow
- Select candidates:
- Use only prioritized, in-scope findings from scanning
- Confirm preconditions and rollback/safety plan
- Define proof-of-concept boundaries:
- Minimal payloads to prove exploitability
- No persistence unless separately authorized
- Execute controlled validation:
- Record each step, command, and response
- Confirm exploit chain and resulting access level
- Assess blast radius:
- Determine reachable systems/data from obtained access
- Validate privilege boundaries and segmentation controls
- Package evidence:
- Reproduction steps
- Impact statement in business terms
- Immediate containment recommendations
Output Template
# Gaining Access Output
## Tested Vulnerability
- Identifier:
- Target:
- Preconditions:
## Validation Result
- Exploitable: Yes/No/Partial
- Access achieved:
- Impact observed:
## Evidence
- Reproduction steps:
- Logs/screenshots/artifacts:
## Risk Statement
- Technical impact:
- Business impact:
- Likelihood:
## Handoff
- Needed remediation owners:
- Retest criteria:
Quality Checks
- PoCs are non-destructive and scoped.
- Evidence is enough for independent reproduction.
- Impact is clearly tied to business risk.
Related Skills
santosomar/pt-web-application-assessment
development
VerifiedTrustedCommunity
Performs authorized web application and API penetration testing with focus on OWASP-style risks and business logic flaws. Use when assessing websites, web APIs, authentication flows, session handling, and input validation.
12SKILL.mdUpdated Apr 25, 2026
santosomar/pt-scanning
testing
VerifiedTrustedCommunity
Performs authorized security scanning using static, dynamic, and vulnerability-focused methods. Use when mapping exposed services, profiling application behavior, and identifying known weaknesses for validation.
12SKILL.mdUpdated Apr 25, 2026
santosomar/pt-report-creation
testing
VerifiedTrustedCommunity
Creates penetration test deliverables for executive and technical audiences, including prioritized findings and remediation plans. Use when drafting, structuring, or finalizing pen test reports from collected evidence.
12SKILL.mdUpdated Apr 25, 2026
santosomar/pt-post-exploitation
testing
VerifiedTrustedCommunity
Performs authorized post-exploitation activities to assess impact, lateral movement paths, credential exposure, and detection gaps after initial compromise. Use when a foothold has been validated and the test requires controlled impact expansion analysis.
12SKILL.mdUpdated Apr 25, 2026