A structured framework for running security assessments using MITRE ATT&CK methodology. It walks through the full attack lifecycle from reconnaissance to exfiltration, with phase-by-phase guidance on techniques like privilege escalation checks, defense evasion through LOLBins, and Active Directory attacks including Kerberoasting and DCSync. The reporting section is solid, emphasizing detection gaps and attack narratives rather than just vulnerability lists. Obviously this is only for authorized pentests and red team exercises. The ethical boundaries and scope reminders are front and center, which matters when you're working with tactics that could cause real damage if misused.
npx skills add https://github.com/sickn33/antigravity-awesome-skills --skill red-team-tactics