- Home
- Skills
- Transilienceai
- Communitytools
- Html Content Analysis
html_content_analysis_skill
- Python
42
GitHub Stars
1
Bundled Files
2 months ago
Catalog Refreshed
4 months ago
First Indexed
Readme & install
Copy the install command, review bundled files from the catalogue, and read any extended description pulled from the listing source.
Installation
Preview and clipboard use veilstrat where the catalogue uses aiagentskills.
npx veilstrat add skill transilienceai/communitytools --skill html_content_analysis- SKILL.md7.4 KB
Overview
This skill parses HTML to extract technology signals from meta generator tags, HTML comments, script and asset URLs, CSS classes, and JSON-LD structured data. It turns noisy page content into concise technology indicators and confidence scores for security research, bug bounty triage, and reconnaissance. The skill is tuned to detect CMS, frameworks, libraries, CSS frameworks, and common e-commerce or organization structured data.
How this skill works
The skill fetches HTML (respecting rate limits) and uses a lenient parser to locate <meta name="generator"> tags, HTML comments, <script> and <link> URLs, class attributes, and application/ld+json blocks. Pattern dictionaries map matched values to technologies with confidence scores and optional version extraction. Results include per-page evidence, a technologies summary, and detected structured-data types.
When to use it
- Passive reconnaissance during bug bounty or pentest scoping
- Quick inventory of technologies across target pages
- Prioritizing targets by likely platform or framework
- Detecting CMS versions or framework-specific endpoints for follow-up testing
Best practices
- Respect the page fetch rate limit per domain and use cached results when possible
- Treat detected signals as probabilistic — corroborate with additional checks before exploiting
- Sanitize and store only public-page extractions; do not execute any client-side scripts
- Limit parsing to the first few megabytes of HTML to avoid resource exhaustion and handle encoding robustly
Example use cases
- Find WordPress/Drupal/Joomla instances via meta generator or script paths
- Identify Next.js or Nuxt.js deployments from _next/_nuxt paths to infer React/Vue usage
- Spot CSS frameworks (Bootstrap, Tailwind) from class patterns to speed UI-focused testing
- Extract Product or Organization JSON-LD to confirm e-commerce or business targets
- Locate jquery/bootstrap references in script URLs to guide fingerprinted vulnerability checks
FAQ
Detections are heuristic and include confidence scores; treat them as leads and validate with additional probes before taking action.
Does the skill execute JavaScript or fetch linked resources?
No. It only parses static HTML. It does not execute scripts or fetch resource bodies beyond basic URL scanning to avoid side effects.