Security & Testing Habilidades de Claude

Windows Privilege Escalation Guide

Provides systematic methodologies for discovering and exploiting privilege escalation vulnerabilities on Windows systems during security audits.

Verification Before Completion

Enforces a strict evidence-based workflow by requiring successful command execution before any task completion claims are made.

API Security Fuzzing & Bug Bounty

Guides comprehensive security testing for REST, SOAP, and GraphQL APIs to identify vulnerabilities like IDOR and injection.

Pentest Commands Reference

Provides a comprehensive reference of essential commands and workflows for professional penetration testing and security audits.

File Path Traversal Security Testing

Identifies and tests for directory traversal vulnerabilities to prevent unauthorized access to sensitive server files.

Agent Evaluation

Implements rigorous benchmarking, behavioral testing, and reliability metrics for non-deterministic LLM agents.

API Contract Test Validator

Validates API contracts using consumer-driven testing and OpenAPI specifications to ensure provider-consumer compatibility and identify breaking changes.

Test-Driven Development (TDD) Mastery

Enforces a strict Red-Green-Refactor workflow to ensure high-quality, bug-free production code through the Iron Law of testing.

HTML Injection Security Testing

Identifies and tests for HTML injection vulnerabilities to secure web applications against content manipulation and phishing attacks.

HTML Injection Testing

Identifies and validates HTML injection vulnerabilities to secure web applications against content manipulation and phishing attacks.

HTML Injection Testing

Identifies and remediates HTML injection vulnerabilities through comprehensive security auditing and penetration testing methodologies.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, fixtures, and advanced mocking techniques to ensure code reliability.

Python Testing Patterns

Implements robust Python testing suites using pytest, advanced mocking, and test-driven development best practices.

File Path Traversal Security Testing

Provides a comprehensive framework for identifying, testing, and remediating directory traversal and Local File Inclusion (LFI) vulnerabilities in web applications.

SMTP Penetration Testing

Conducts comprehensive security audits of SMTP servers to identify vulnerabilities like open relays, user enumeration flaws, and weak authentication.

SSH Penetration Testing

Conducts comprehensive SSH security audits including service discovery, configuration analysis, credential testing, and advanced tunneling techniques.

API Security & Fuzzing Specialist

Provides expert guidance and automated workflows for security auditing, fuzzing, and vulnerability discovery across REST, SOAP, and GraphQL APIs.

SSH Penetration Testing

Conducts comprehensive SSH security audits, credential assessments, and vulnerability exploitation to identify and remediate remote access weaknesses.

TDD Workflow

Implements Test-Driven Development principles using the Red-Green-Refactor cycle to ensure robust and maintainable code.

Agent Evaluation & Benchmarking

Tests and benchmarks LLM agents through behavioral assessment, reliability metrics, and production-grade monitoring.

Pentest Checklist

Guides users through the end-to-end process of planning, executing, and remediating penetration tests with structured methodologies.

Agent Evaluation Framework

Evaluates and benchmarks LLM agents using behavioral testing, reliability metrics, and adversarial assessments to ensure production-grade performance.

Test-Driven Development (TDD) Workflow

Enforces a strict Red-Green-Refactor cycle to ensure all production code is verified by failing tests before implementation.

Verification Before Completion

Enforces a rigorous evidence-based workflow that requires real-time command output before any task is marked as complete.

Web App Testing Toolkit

Facilitates end-to-end testing and UI debugging of local web applications using Playwright scripts and automated server management.

Blueprint Develop

Implements trading strategies using test-driven development and rigorous postmortem compliance to prevent architectural regressions.

JavaScript Testing Patterns

Implements robust testing architectures and best practices using Jest, Vitest, and Testing Library for JavaScript and TypeScript projects.

Dify Frontend Testing

Generates comprehensive Vitest and React Testing Library tests for frontend components, hooks, and utilities following project-specific conventions.

Frontend Code Reviewer

Conducts automated reviews of TypeScript and JavaScript code to identify performance bottlenecks, quality issues, and logic errors.

Python Testing Patterns

Implements robust Python testing strategies using pytest, fixtures, mocking, and test-driven development best practices.