# Rifteo > The open community hub for Rifteo skills, tools, and compliance workflows. ## Docs - [AD Pentest (Unauthenticated)](https://community.rifteo.com/contexts/ad-pentest-unauthenticated.md): Unauthenticated infrastructure pentest with Active Directory focus, covering host discovery, SMB null sessions, AS-REP roasting, Kerberoasting, and NTLM hash capture. - [Cloud Audit](https://community.rifteo.com/contexts/cloud-audit.md): AWS, Azure, and GCP security audit IAM, storage exposure, networking, secrets, and logging misconfigurations. - [Code Audit](https://community.rifteo.com/contexts/code-audit.md): Source code audit covering quality, architecture, maintainability, and security across any language, combining manual review with static analysis tooling. - [Contexts Overview](https://community.rifteo.com/contexts/overview.md): What Rifteo contexts are, how the 3-tier loading system works, and how to install one. - [Scope to Bounty ★](https://community.rifteo.com/contexts/scope-to-bounty.md): MCP server that gives AI agents live bug bounty program scope from HackerOne, Intigriti, YesWeHack, Bugcrowd, and Immunefi — plus access to all Rifteo security contexts. - [Web App Pentest](https://community.rifteo.com/contexts/web-app-pentest.md): Web application penetration testing recon, authentication, authorization, injection, session management, and business logic testing. - [Contributing](https://community.rifteo.com/getting_started/contributing.md): How to contribute a new skill or improve existing documentation. - [Introduction](https://community.rifteo.com/getting_started/introduction.md) - [Quickstart](https://community.rifteo.com/getting_started/quickstart.md): Install a skill and run your first security methodology in under 2 minutes. - [Tools Overview](https://community.rifteo.com/scripts/overview.md): Standalone automation scripts for security and compliance tasks. - [Tools Template](https://community.rifteo.com/scripts/script-template.md): A starting point for building your own Rifteo script. - [Attack Surface Mapper](https://community.rifteo.com/skills/attack-surface.md): Maps every entry point, component, and trust boundary of a target before testing begins prevents missed coverage and prioritizes the highest-value attack paths. - [Benchmarks](https://community.rifteo.com/skills/benchmarks.md): Real numbers. Same prompt. Same model. Skill on vs skill off across 18 benchmarked Rifteo skills. - [Bug Bounty Reporter](https://community.rifteo.com/skills/bugbounty-reporter.md): Converts raw bug bounty findings into a complete, triage-ready report clear description, numbered reproduction steps, self-contained PoC, risk, and remediation. - [Caveman Mode](https://community.rifteo.com/skills/caveman.md): Ultra-compressed response mode for cybersecurity contexts strips filler while keeping CVEs, payloads, CVSS scores, and findings exact. - [Check Exploit](https://community.rifteo.com/skills/check-exploit.md): Search known exploit databases and sources for a given service, version, or CVE, from searchsploit to Vulners, MSF, and beyond. - [Clickjacking Hunter](https://community.rifteo.com/skills/clickjacking-hunter.md): Complete clickjacking (UI redressing) methodology framing protection detection, single-click and multi-step PoC construction, JS frame-busting bypass, drag-and-drop and OAuth consent variants, and report structure. - [Compliance Gap Analyzer](https://community.rifteo.com/skills/compliance-gap-analyzer.md): Aggregates audit findings mapped to framework controls, classifies each control, identifies blind spots, prioritizes gaps by severity, and produces a complete gap report supports ISO 27001, NIST CSF, PCI-DSS, and OWASP. - [Control Lookup](https://community.rifteo.com/skills/control-lookup.md): Looks up any control ID across ISO 27001, NIST CSF, PCI-DSS v4, and OWASP returns the full control card, cross-framework mappings with confidence level, related controls, and testing hints. - [CTF Writeup Generator](https://community.rifteo.com/skills/ctf-writeup.md): Generates a clean, publishable CTF challenge writeup from solve notes suitable for HTB, CTFtime, personal blogs, and team wikis. - [CVSS Scorer ★](https://community.rifteo.com/skills/cvss-scorer.md): Computes an exact CVSS v3.1 base score and vector from a vulnerability description infers metrics from context, asks one sharp question only when ambiguity would change the severity level. - [Dead Angle](https://community.rifteo.com/skills/deadangle.md): A final accuracy check for offensive security work — it re-tests each conclusion against the evidence and labels every part confirmed, inferred, or assumed, so an unverified result never goes out as if it were proven. - [Economist Attack ★](https://community.rifteo.com/skills/economist-attack.md): Weighs each attack path's effort against its likely impact, pursuing the highest-value surfaces first to find the most important weakness with the least wasted effort it shapes the order you test in, not what you test. - [Engagement Handoff](https://community.rifteo.com/skills/engagement-handoff.md): Documents the current state of an active pentest engagement so the next agent session can continue without losing context, covering findings, coverage, next steps, and open threads. - [Find Skills](https://community.rifteo.com/skills/find-skills.md): Discover and install specialized Rifteo skills from the community ecosystem when users need extended audit capabilities. - [Finding Writer](https://community.rifteo.com/skills/finding-writer.md): Converts raw pentest notes, logs, or observations into a structured audit finding ready for a security report. - [HexStrike Forge ★](https://community.rifteo.com/skills/hexstrike-forge.md): A 5-phase structured pentest methodology for the hexstrike-ai MCP server, covering passive recon through finding delivery with triage gates, parallel execution, and tool failure recovery. - [HPP Hunter](https://community.rifteo.com/skills/hpp-hunter.md): Complete HTTP Parameter Pollution methodology server behavior fingerprinting, server-side and client-side HPP, WAF bypass via parameter splitting, OAuth/payment/access-control abuse, header and JSON body pollution, and report structure. - [IDOR Hunter ★](https://community.rifteo.com/skills/idor-hunter.md): Systematic IDOR/BOLA detection methodology recon, multi-account testing, bypass techniques, and report structure. - [JS Analyzer](https://community.rifteo.com/skills/js-analyzer.md): Full JavaScript analysis methodology for pentesting and bug bounty JS file discovery, secret extraction, endpoint mapping, DOM XSS, prototype pollution, postMessage abuse, client-side logic flaws, source map extraction, and hardcoded credential hunting. - [JWT Cracker](https://community.rifteo.com/skills/jwt-cracker.md): Full JWT attack methodology alg:none, RS256 to HS256 confusion, weak secret brute-force, kid injection, jku/jwk injection, and claim tampering. - [Less Aggressive Attack](https://community.rifteo.com/skills/less-aggressive-attack.md): Tests for vulnerabilities less aggressively — read-only where possible, confirming a flaw without exercising its full impact or causing damage, under a strict set of safety rules. - [Less Noise Attack](https://community.rifteo.com/skills/less-noise-attack.md): Runs offensive work in a low-noise mode — passive recon first, minimal footprint, and only deliberate, targeted active actions that blend with legitimate traffic, so the engagement stays below detection thresholds. - [Nuclei Template Writer](https://community.rifteo.com/skills/nuclei-template-writer.md): Convert a vulnerability description or HTTP request/response pair into a ready-to-run Nuclei YAML template handles auth strategies, matcher selection, OOB detection, and multi-step flows. - [Skills Overview](https://community.rifteo.com/skills/overview.md): 34 battle-tested security skills for AI agents covering every phase of a security engagement. - [Pentest Report Generator](https://community.rifteo.com/skills/pentest-report.md): Generates a complete, client-ready penetration test report from all findings in the current engagement executive summary, risk table, technical findings, and recommendations. - [Redirect Forge](https://community.rifteo.com/skills/redirect-forge.md): Complete open redirect detection and exploitation methodology parameter discovery, 30+ bypass techniques, OAuth token theft, SSRF chaining, CSP abuse, phishing escalation, and report structure. - [Red Mind ★](https://community.rifteo.com/skills/redmind.md): Red team mindset that shifts the agent to offensive security thinking across any target or engagement type. - [Remediation Planner](https://community.rifteo.com/skills/remediation-planner.md): Convert a security finding or vulnerability into a prioritized step-by-step remediation plan with effort estimates per step. - [Risk Assessor](https://community.rifteo.com/skills/risk-assessor.md): Scores a vulnerability using likelihood × impact, CIA triad analysis, CVSS correlation, and SLA-bound remediation urgency. - [Scope Grill](https://community.rifteo.com/skills/scope-grill.md): Interviews the user about a pentest or audit engagement before any testing begins, capturing target, scope, rules of engagement, auth, and deliverables into a structured brief. - [Skill Benchmark](https://community.rifteo.com/skills/skill-benchmark.md): Scores any SKILL.md across 5 quality dimensions, runs a compatibility check against 50+ AI agents, and returns a ranked fix list. - [SSRF Hunter ★](https://community.rifteo.com/skills/ssrf-hunter.md): Complete SSRF detection and exploitation methodology injection point discovery, cloud metadata theft (AWS/GCP/Azure), internal network enumeration, protocol handler abuse, filter bypass techniques, blind SSRF via OOB, and report structure. - [SSTI Hunter](https://community.rifteo.com/skills/ssti-hunter.md): Complete SSTI detection and exploitation methodology engine fingerprinting, RCE payloads per engine, sandbox escapes, blind detection, and report structure. - [Vulnerability Diagnose](https://community.rifteo.com/skills/vuln-diagnose.md): Builds a deterministic, reproducible proof-of-concept for a suspected vulnerability before writing a finding eliminates false positives and produces airtight evidence. - [XSS Hunter ★](https://community.rifteo.com/skills/xss-hunter.md): Complete XSS testing methodology reflected, stored, DOM-based, blind, and mutation XSS, CSP bypass, DOM clobbering, filter/WAF evasion, and impact escalation. - [XXE Phantom](https://community.rifteo.com/skills/xxe-phantom.md): Complete XXE (XML External Entity) detection and exploitation methodology classic file read, blind OOB exfiltration, XInclude, SVG/DOCX/SAML vectors, WAF bypass, SSRF chaining, and report structure. - [Commands](https://community.rifteo.com/usage/commands.md): Full reference for all rifteo-skills CLI commands and flags. - [Configuration](https://community.rifteo.com/usage/configuration.md): Environment variables and agent config options for rifteo-context-mcp. - [Examples](https://community.rifteo.com/usage/examples.md): Common Rifteo usage patterns and real-world scenarios.