Security & Testing Habilidades de Claude

Zeek Network Lateral Movement Detection

Identifies and analyzes lateral movement patterns in network traffic by parsing Zeek logs for SMB, RPC, and NTLM activity.

Insider Data Exfiltration Detection

Identifies unauthorized data movement by analyzing DLP logs and user behavior patterns using statistical anomaly detection.

Suricata Network Security Configuration

Deploys and configures high-performance Suricata IDS/IPS for real-time network traffic inspection and threat detection.

Asset Criticality Scoring for Vulnerabilities

Implements a multi-factor scoring model to prioritize vulnerability remediation based on business impact and data sensitivity.

AI Truthfulness Enforcer

Enforces mandatory technical verification and user confirmation protocols to eliminate false AI success claims and hallucinated progress reports.

API Gateway Security Implementation

Secures microservices and APIs by implementing centralized gateway controls including authentication, rate limiting, and threat protection.

Gamma Enterprise RBAC

Implements secure, multi-tenant role-based access control and hierarchical permissions for enterprise Gamma integrations.

Cloud Security Audit (CIS Benchmarks)

Conducts comprehensive cloud security audits across AWS, Azure, and GCP using industry-standard CIS Foundations Benchmarks.

Modbus Command Injection Detection

Monitors and detects unauthorized write operations, anomalous function codes, and command injection attacks against Modbus TCP/RTU protocols in industrial environments.

Cloud Native Forensics with Falco

Detects runtime threats and performs forensic analysis in Kubernetes and containerized environments using Falco security rules.

NIST CSF 2.0 Maturity Assessment

Conducts comprehensive cybersecurity maturity assessments using the NIST CSF 2.0 framework to evaluate risk posture and create strategic improvement roadmaps.

E2EE Messaging Implementation

Implements secure end-to-end encryption for messaging using the Signal Protocol, Double Ratchet algorithm, and AES-256-GCM.

Bloat Detector

Detects and eliminates codebase bloat, redundant documentation, and unused dependencies through progressive static and history analysis.

Service Authentication Patterns

Standardizes authentication flows for external APIs using API keys, OAuth, and token management within Claude Code environments.

Advanced Log Security Analysis

Automates security log auditing and threat detection to identify vulnerabilities and ensure regulatory compliance within the terminal.

Greenbone Vulnerability Management

Automates the deployment, execution, and reporting of network vulnerability scans using Greenbone OpenVAS and the python-gvm library.

Secure TLS 1.3 Configuration

Configures and validates TLS 1.3 protocols to enhance server security and network performance while eliminating legacy vulnerabilities.

OWASP Threat Dragon Security Modeling

Conducts structured threat modeling and secure design reviews using OWASP Threat Dragon and industry-standard methodologies like STRIDE and LINDDUN.

SOC2 Compliance Checker

Automates SOC2 compliance auditing and security control validation for software infrastructure and development workflows.

Registry Persistence Threat Hunter

Detects and analyzes registry-based persistence mechanisms in Windows environments to identify potential security compromises.

Clerk Hello World Integration

Verifies Clerk authentication integration by setting up protected routes and performing initial authenticated requests.

Atomic Red Team Threat Emulation

Automates MITRE ATT&CK security validation using Atomic Red Team tests and the atomic-operator framework.

Ethereum Smart Contract Security Audit

Performs automated security audits on Solidity smart contracts using static analysis and symbolic execution to identify critical vulnerabilities.

Detecting ARP Poisoning in Network Traffic

Detects and prevents ARP spoofing attacks using automated monitoring tools and network security configurations to protect against man-in-the-middle interceptions.

Langfuse Security & Privacy

Implements robust security protocols and PII protection for Langfuse LLM observability integrations.

Insecure Deserialization Security Checker

Detects and remediates insecure deserialization vulnerabilities by providing automated security checks and secure coding patterns.

XXE Injection Testing

Identifies and exploits XML External Entity (XXE) vulnerabilities to detect server-side file access, SSRF, and data exfiltration.

Canary Token Network Intrusion Detection

Deploys DNS, HTTP, and AWS API key canary tokens to detect unauthorized network access and lateral movement with zero-false-positive alerts.

ANY.RUN Malware Analysis

Performs interactive dynamic malware analysis using the ANY.RUN cloud sandbox to observe real-time execution behavior and capture indicators of compromise.

Office 365 Compromise Analysis

Detects indicators of Business Email Compromise (BEC) by parsing Microsoft Office 365 Unified Audit Logs via the Graph API.