Status: Stable
Version: 1.0.0
Author: Rifteo
Tags: pentest, workflow
Summary
Create a compact handoff document that captures exactly where a pentest engagement stands a fresh agent session reading it should be able to continue without asking any questions.- Scans the session to capture all findings, tools run, targets tested, and open threads
- References existing artifacts (
ENGAGEMENT.md, findings files) rather than duplicating them kept under 100 lines - Maps coverage: what was tested, what was skipped, what was partially tested
- Lists open threads (suspected vulnerabilities not yet confirmed, areas needing deeper testing)
- Writes an ordered list of next steps specific enough for a fresh session to start immediately
- Saves to
HANDOFF.mdin the current directory
SKILL.md file
Discover skill details
Discover skill details
Engagement Handoff
Create a compact handoff document that captures exactly where the current engagement stands. A fresh agent session reading this file should be able to continue without asking any questions.When to Use This Skill
Use this skill when the user:- Says “handoff”, “save progress”, “pick this up next session”, “summarize the engagement”
- The context window is getting long and work needs to continue in a fresh session
- At the end of a testing day or shift change
What Does It Check?
Coverage captured:- Findings identified (title + severity, not full text references the finding file)
- Targets tested and which were skipped or partially tested
- Tools run and what they produced
- Open threads: suspected vulnerabilities not yet confirmed
- Areas flagged for deeper testing
- Follow-up requests from the client or scope document
How It Works
Step 1: Scan the SessionReview all findings identified, tools run, targets tested, and threads opened in the current session.Step 2: Check for ENGAGEMENT.mdIf it exists, reference it do not repeat scope/target info already there. Open the handoff with: “Continue from: see ENGAGEMENT.md for scope and target details.”Step 3: Capture FindingsList each finding by title + severity. Do not rewrite the full finding reference the finding file.Step 4: Map CoverageWhat was tested, what was skipped, what was partially tested.Step 5: List Open ThreadsSuspected vulnerabilities not yet confirmed, areas that need deeper testing, follow-up requests.Step 6: Write Next StepsAn ordered list of what to do first in the next session specific enough to start without additional context.Step 7: SaveWrite toHANDOFF.md in the current directory unless the user specifies otherwise.Output
AHANDOFF.md file under 100 lines, using the template in references/handoff-template.md:Known Limitations
- Keep it under 100 lines longer means you’re duplicating instead of referencing
- Never include credentials, tokens, or sensitive evidence in the handoff file
- Next steps must be specific enough that the next agent can start without any additional context
Benchmark Results
Tested on claude-sonnet-4-6 via Claude Code CLI. Same prompt, same model, same target. The only variable is whether the skill is loaded.| Metric | Without Skill | With Skill |
|---|---|---|
| Turns to complete | 2 | 1 |
| Response tokens | ~2,499 | ~1,060 |
| Total time | 52s | 23s |
Related skills
scope-grill
Interviews the user about a pentest engagement before any testing begins
pentest-report
Generates a complete, client-ready penetration test report from all findings
finding-writer
Convert raw pentest notes into structured audit findings ready for reporting