Security & Testing Habilidades de Claude

Claude Eval Harness

Implements a formal evaluation framework for Claude Code sessions to enable reliable, test-driven AI development.

Tizen CVE Scanner

Scans Tizen application dependencies and kernel files for known security vulnerabilities and CVEs using official Samsung and OpenCVE databases.

Burp Suite Project Parser

Parses and explores Burp Suite project files from the command line to streamline security audits and traffic analysis.

Code Implementation Judge

Evaluates and scores multiple code implementations using a standardized five-criteria framework to identify optimal software solutions.

Binary RE Environment Setup

Configures and installs a complete suite of binary reverse engineering and cross-architecture analysis tools.

Binary Analysis Synthesis

Compiles gathered facts and validated hypotheses into structured binary analysis reports and actionable intelligence.

Static Binary Analysis

Performs deep static analysis on binary files to map structure, decompile code, and identify logic without execution.

Binary Triage & Fingerprinting

Identifies architecture, ABI, and potential capabilities of unknown binary files and firmware blobs using fast fingerprinting techniques.

Threat Model Generation

Generates comprehensive STRIDE-based security threat models by analyzing repository architecture and data flows.

Move Smart Contract Fuzzing

Secures Move smart contracts through comprehensive fuzzing, property testing, and vulnerability detection for Aptos, Sui, and Movement blockchains.

Dynamic Binary Analysis

Analyzes binary execution and runtime behavior through emulation, debugging, and syscall tracing.

MDM Cobordism

Manages macOS Mobile Device Management (MDM) and authentication states using topological cobordism and triadic logic.

MCP Spec Checker

Performs semantic diffing and triadic verification on Model Context Protocol (MCP) specifications to detect breaking changes and validate compliance.

Narya Event Proofs

Generates mechanically verified cryptographic proofs and audit trails for event-sourced systems to ensure consistency, security, and deterministic replay.

Tizen Certification Coordinator

Orchestrates the Tizen certification lifecycle by coordinating TCT test execution, compliance verification, and documentation.

Ruby Expert Quality Review

Performs comprehensive Ruby codebase audits using principles from industry legends like Sandi Metz and Kent Beck to ensure maintainability and performance.

Keychain Secure

Manages sensitive credentials using the hardware-backed macOS Keychain with mathematically balanced GF(3) operations.

Expert Ruby Commit Reviewer

Validates staged Ruby changes against industry-leading design principles and best practices before you commit.

Audit Context Builder

Performs deep, line-by-line code analysis to establish architectural context for security audits and bug detection.

Web Application Testing & Playwright Automation

Facilitates end-to-end testing and browser automation for local web applications using Python Playwright scripts and server management utilities.

Fnox Secrets Management

Manages encrypted secrets using age encryption and mathematical GF(3) triadic conservation for secure, git-safe configuration.

WordPress PHPStan Analysis

Streamlines the setup, configuration, and resolution of PHPStan static analysis errors within WordPress plugins and themes.

Dynamic Sufficiency

Prevents agent actions by verifying minimal skill coverage using ε-machine causal state modeling.

Fuzzing Obstacles Specialist

Identifies and overcomes common fuzzing bottlenecks to maximize code coverage and bug discovery during security testing.

Code Testability Reviewer

Audits codebases for testability design patterns and identifies business logic entangled with side effects.

MCP Protocol Spec Checker

Performs predicate-level semantic diffing and triadic verification for Model Context Protocol specifications to ensure version compatibility.

Fuzzing Obstacles

Enhances security testing effectiveness by identifying and overcoming technical barriers that prevent fuzzers from reaching deep code paths.

Boneh-Roughgarden WEV Mechanism

Implements protocol-aligned value extraction and transaction fee mechanisms based on Stanford FDCI research.

Security Scanning

Automates vulnerability detection across codebases, dependencies, and secrets using industry-standard security tools.

Security Ownership Map

Analyzes git history to map security ownership, calculate bus factor for sensitive code, and identify orphaned repository hotspots.