Security & Testing Habilidades de Claude

Web App Testing with Playwright

Automates browser testing and UI verification for local web applications using Playwright integration.

AgRAG LLM Judge

Evaluates Agentic GraphRAG performance using automated benchmarking and LLM-as-judge scoring rubrics.

IDOR Vulnerability Testing

Provides systematic methodologies for detecting, exploiting, and remediating Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.

IDOR Vulnerability Testing

Conducts systematic identification, exploitation, and remediation of Insecure Direct Object Reference (IDOR) vulnerabilities in web applications and APIs.

Broken Authentication Testing

Identifies and assesses authentication and session management vulnerabilities to protect web applications against unauthorized access.

PatriotForge TDD Patterns

Implements rigorous test-driven development workflows using pytest-asyncio, fakeredis, and automated fixture management.

JUDO Security Authentication Flow

Implements and manages comprehensive OAuth2 and OpenID Connect authentication pipelines within the JUDO Runtime Core.

Red Team Tactics & Adversary Simulation

Implements adversary simulation principles and security auditing workflows based on the MITRE ATT&CK framework.

Secrets Scanner & Remediation

Scans codebases and Git history for exposed credentials, API keys, and sensitive tokens with automated remediation guidance.

PatriotForge Security Operations

Enforces rigorous security standards and full-stack protection protocols across the PatriotForge ERP ecosystem.

Security Scanner

Performs comprehensive security audits and vulnerability scans across multiple programming languages and frameworks.

Wireshark Network Traffic Analysis

Analyzes and inspects network traffic using Wireshark for security audits, performance troubleshooting, and protocol analysis.

Solidity Security Patterns

Implements secure smart contract development patterns and audits Solidity code for common blockchain vulnerabilities.

Memory Forensics

Master memory acquisition and forensic analysis to investigate security incidents and analyze malware behavior from RAM captures.

Bats Testing Patterns

Provides comprehensive guidance and implementation patterns for the Bash Automated Testing System (Bats) to ensure robust shell script quality.

Security Scanning & Auditing

Conducts comprehensive security audits, vulnerability scans, and network assessments using industry-standard tools and methodologies.

GDPR Data Handling & Privacy Compliance

Implements GDPR-compliant data processing, consent management systems, and privacy-by-design controls for applications handling EU personal data.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure application reliability and prevent regressions.

STRIDE Threat Analysis Patterns

Identifies system vulnerabilities and security risks using the industry-standard STRIDE threat modeling methodology.

Production Code Auditor

Transforms entire codebases into enterprise-grade, production-ready systems through autonomous deep-scanning and automated refactoring.

Python Testing Patterns

Implements robust Python testing strategies using pytest, fixtures, and mocking to ensure code reliability and high coverage.

Threat Mitigation Mapping

Maps identified security threats to specific controls and mitigations to strengthen system defenses and prioritize remediation.

Binary Analysis Patterns

Master the art of reverse engineering with comprehensive patterns for disassembly, decompilation, and binary logic reconstruction.

Security Requirement Extraction

Transforms threat analysis and business context into actionable security requirements, user stories, and test cases.

Surgical Bugfix

Resolves software defects using a minimalist, reductive approach that prioritizes code deletion and surgical precision.

Burp Suite Web Application Testing

Conducts professional web application security testing and vulnerability assessment using Burp Suite's integrated toolset.

Plan Validation & Scoring

Validates AI-generated development plans through adversarial challenges and quantitative confidence scoring to ensure production readiness.

Burp Suite Web Application Testing

Executes comprehensive web application security testing and vulnerability scanning using Burp Suite's integrated toolset.

Wireshark Network Traffic Analysis

Analyzes network traffic using Wireshark to capture, filter, and troubleshoot network protocols and security anomalies.

API Security Best Practices

Implements robust security patterns for APIs, including authentication, authorization, input validation, and protection against common vulnerabilities.