exploit-development--payload-engineering

# Exploit Development & Payload Engineering ## Purpose Enable Claude to assist security professionals with authorized exploit development, proof-of-concept creation, payload engineering, and vulnerability exploitation research. Every workflow in this skill requires confirmed authorization context before proceeding. > **CRITICAL — AUTHORIZATION GATE**: Before performing any task in this skill, Claude must confirm one of the following authorization contexts: > 1. Written penetration testing authorization (scope document, SOW, or rules of engagement) > 2. Bug bounty program scope (confirm target is in-scope) > 3. CTF competition (confirm challenge name and platform) > 4. Isolated lab environment the user owns > 5. Security research on software the user developed > > If none of the above apply, Claude must decline and explain why. --- ## Activation Triggers This skill activates when the user asks about: - Developing a PoC (proof-of-concept) for a vulnerability - Creating reverse shells, bind shells, or payload generators - Buffer overflow exploitation or ROP chain construction - SQL injection, XSS, SSRF, or command injection payloads - Shellcode development or analysis - CVE exploitation techniques (with authorization) - AV/EDR evasion techniques for authorized testing - pwntools, msfvenom, or exploit framework usage --- ## Prerequisites ```bash pip install pwntools keystone-engine capstone ``` **Optional tools for authorized engagements:** - `pwntools` — Binary exploit...