Your cart is empty
Add prompt packs to continue
Maximize your cybersecurity potential with the definitive collection of prompts designed for professional ethical hackers. This compendium integrates elite methodologies such as OWASP Top 10 and international certification standards such as OSCP and CEH, allowing you to automate critical analysis and the generation of realistic attack scenarios with surgical precision. Each section has been structured to cover everything from intelligent passive recognition to advanced post-exploitation in complex enterprise environments. This tool transforms artificial intelligence into a high-level technical assistant capable of optimizing your security audits, improving the quality of your technical reports and accelerating the identification of compromise vectors in critical infrastructures.
100 resources included
Acts as a Senior Cybersecurity Auditor with specialization in the OWASP framework and regulatory compliance audits (GDPR, PCI-DSS). Your primary objective is to perform a thorough technical review under OWASP Category A03:2021: 'Sensitive Data Exposure' for the application [Application Name]. You must analyze both data in transit and data at rest, identifying structural weaknesses that allow unauthorized access to critical information such as PII (Personally Identifiable Information), credentials or cryptographic secrets. Starts the analysis by evaluating the encryption protocols applied to the server's communication channel [IP Address or Domain]. It is essential that you detect the use of outdated versions of TLS (1.0, 1.1) or SSL, as well as the presence of weak cipher suites that do not support Perfect Forward Secrecy (PFS). Checks if there are self-signed or expired certificates in the [Environment: Production/Staging] environment and if HSTS (HTTP Strict Transport Security) policies are correctly implemented to prevent Downgrade Attacks. Subsequently, it shifts the focus to persistent storage in [Database Type: SQL/NoSQL]. Examines whether sensitive data is encrypted using robust algorithms such as AES-256 and analyzes the lifecycle management of cryptographic keys (KMS). It is imperative to audit how user passwords are stored; specifically looks at whether modern key derivation functions such as Argon2 or Bcrypt are used with an appropriate cost factor, ruling out insecure methods such as MD5, SHA-1 or plaintext storage. Identifies if there are information leaks in system logs, memory dumps or file metadata exposed in [Storage Path or Bucket]. Finally, check the HTTP response headers and web server configuration to avoid collateral information leakage. Analyzes whether headers are being sent that reveal exact versions of the software (Server, X-Powered-By) or whether detailed error messages are exposing internal database structure or file system paths. Deliver a technical report that classifies the findings according to their criticality (Low, Medium, High, Critical), includes the attack vector, and provides a step-by-step remediation guide for the [Project Name] engineering team.
He acts as a senior Open Source Intelligence (OSINT) analyst and Red Teaming specialist. Your mission is to design an extremely detailed passive reconnaissance strategy to profile key personnel in the [NOMBRE_DE_LA_EMPRESA] organization. The goal is to identify human and technical entry vectors by collecting public information without directly interacting with the target's infrastructure. You should focus on employees who have access to [SISTEMAS_CRITICOS_O_DEPARTAMENTOS] and whose digital footprint represents a risk to the entity's perimeter security. The methodology begins with a personnel enumeration phase through professional networks and networking platforms. It uses conceptual scraping techniques and advanced operators to extract names, positions, seniority and, fundamentally, the technologies they mention in their profiles (for example, programming languages, network management software or security frameworks). It cross-references this information with metadata extracted from public documents found in the [DOMINIO_CORP] domain to validate the corporate email structure and actual versus theoretical command hierarchy. Subsequently, it develops a module for analyzing the technical infrastructure exposed by employees. This includes crawling code repositories such as GitHub, GitLab, or Bitbucket, looking for commits made by developers linked to the company that accidentally contain secrets, API keys, or comments about the internal architecture of [PROYECTO_ESPECIFICO]. Also scan technical forums like Stack Overflow where employees may have asked questions about specific issues with your internal technology stack, revealing vulnerable software versions and configurations. The process ends with the creation of an individualized risk profile for the 5 most critical profiles detected. For each profile, you must document their level of social media exposure, the possible linking of their corporate emails to historical data breaches, and an assessment of their susceptibility to social engineering attacks based on their public interests and professional connections. The entire procedure must adhere to an 'Ethical Hacker' ethical framework, ensuring that the harvesting is 100% passive and intended to strengthen [NOMBRE_DE_LA_EMPRESA]'s defenses.
Acts as an expert cyber intelligence and OSINT analyst specializing in the advanced use of Shodan for passive recognition of digital assets. Your goal is to design a comprehensive methodology for the identification of subdomains and assets linked to the [DOMINIO_OBJETIVO] domain, using exclusively Shodan's indexing capabilities through its search engine and its official API. First, it generates a detailed list of advanced search queries (Shodan Search Queries) designed to locate subdomains. You should include specific filters such as 'hostname:', 'ssl.cert.subject.cn:', and 'http.html:' to track mentions of the domain in the source code of indexed services. Be sure to explain the technical logic behind each query and what type of critical assets (such as dev environments, staging servers, api payment gateways, or vpn endpoints) each query is intended to discover. Subsequently, develop a functional Python script that automates this collection process using the official 'shodan' library. The script must be designed to receive [API_KEY_SHODAN] and [DOMINIO_OBJETIVO] as input. It must implement pagination management to ensure that results are not lost on domains with a large digital presence and must include a function to filter duplicate results. The script must extract and structure in a CSV file the hostname, IP address, open ports, the banner of the detected service and the detailed geolocation of each identified asset. Finally, it describes the process of post-processing and analysis of the data obtained. Explains how to use Shodan facets to categorize subdomains by country, organization (org), and operating system (os). Provide a technical report template in Markdown format that summarizes the most relevant findings, prioritizing the assets found according to their potential attack surface and level of exposure, based on the criticality of the detected ports and the identified software versions. Keep in mind that all information collected must be treated under a rigorous professional ethics framework, focusing exclusively on the passive recognition phase for an Ethical Hacker exercise or security audit duly authorized by the domain owner.