Security & Testing Habilidades de Claude

RBAC Permissions Architect

Architects secure, multi-tenant features using modular RBAC, workspace isolation, and CASL-integrated permission mapping.

Agent Performance Evaluation

Implements robust evaluation frameworks and multi-dimensional rubrics to measure the quality, accuracy, and efficiency of AI agent systems.

Audit Context Builder

Enables ultra-granular, line-by-line code analysis to build deep architectural context before vulnerability or bug finding.

Spec-to-Code Compliance Checker

Audits blockchain codebases against technical specifications and whitepapers to identify implementation gaps and logic divergences.

Professional Test Design

Designs and implements robust software testing strategies across unit, integration, and end-to-end levels for any platform.

Test-First TDD Workflow

Enforces rigorous Test-Driven Development cycles by requiring failing tests before any production code is implemented.

Professional Test Design

Architects comprehensive software testing strategies and implementations across unit, integration, and E2E layers.

Quality Assurance Guardrails

Enforces code standards, validates release readiness, and guides developers through structured pre-commit checks for production-grade software.

Professional Test Design

Designs and implements comprehensive software testing strategies across unit, integration, and E2E layers for web, mobile, and backend platforms.

Test Design & Strategy Specialist

Designs and implements comprehensive, high-quality software tests using advanced heuristics and industry-standard patterns across all platforms.

Software Test Design Expert

Standardizes the design and implementation of robust software tests across unit, integration, and E2E layers.

Root Cause Analysis Debugging

Implements a rigorous, four-phase systematic debugging framework to identify and resolve the underlying source of technical issues before attempting any code fixes.

Pre-Ship Verification

Enforces rigorous evidence-based verification before committing code or claiming task completion to ensure technical honesty.

Adversary Emulation Planning

Researches and simulates threat actor TTPs by mapping complex attack behaviors to the MITRE ATT&CK framework for advanced security testing.

Test-Driven Development (TDD) Pro

Enforces a strict Red-Green-Refactor workflow to ensure high-quality, verified production code through test-first implementation.

SSH Penetration Testing

Conducts end-to-end SSH security audits, from initial service discovery and credential testing to advanced tunneling and post-exploitation analysis.

Web App Testing Toolkit

Automates and tests local web applications using Playwright to verify functionality, debug UI behavior, and capture browser logs.

Firebase APK Security Scanner

Scans Android APKs for Firebase security misconfigurations including open databases, storage buckets, and authentication vulnerabilities.

Python Project Auditor

Audits Python projects against modern standards for configuration, security, and project structure to ensure code quality.

Langfuse Eval Infrastructure

Establishes a standardized evaluation framework for AI agents to measure performance and prevent quality regressions.

Evidence-Based Verification Gate

Validates software changes through automated test execution, acceptance criteria verification, and regression detection to ensure high-quality code delivery.

TDD Cycle Enforcer

Enforces a strict Red-Green-Refactor development workflow to ensure high test coverage and clean code architecture.

Systematic Debugging

Enforces a rigorous four-phase protocol to identify root causes and implement verified fixes for complex software bugs.

Red Team Tactics

Guides adversary simulation and security posture validation using the MITRE ATT&CK framework.

Network Services & Pen-Test Lab Setup

Configures and tests network services like HTTP, HTTPS, SNMP, and SMB for security research and penetration testing environments.

.NET BDD Unit Testing Skill

Implements domain-driven unit testing patterns for .NET using NUnit and EF Core InMemory databases to validate complex business logic.

Build Review & Repair Protocol

Performs comprehensive code reviews and automatically repairs obvious bugs using a tiered review-fix-report protocol.

Docker Security & Performance Audit

Audits Docker configurations for security vulnerabilities, performance bottlenecks, and production readiness using industry best practices.

SSH Penetration Testing

Conducts comprehensive SSH security assessments including enumeration, credential attacks, and vulnerability exploitation for hardened network environments.

Compliance Frameworks & Security Patterns

Implements security and privacy compliance patterns for SOC 2 and GDPR within B2B SaaS development workflows.