Security & Testing Claudeスキル

Phishing and Social Engineering Toolkit

Conducts authorized social engineering assessments, phishing simulations, and credential harvesting to test organizational security awareness.

Active Directory Attack Toolkit

Conducts professional Active Directory penetration testing and security assessments using industry-standard tools and methodologies.

Security File Transfer Techniques

Facilitates advanced file transfers and data exfiltration across Linux and Windows using diverse protocols and living-off-the-land techniques.

Linux Privilege Escalation

Identifies and exploits Linux privilege escalation vectors including SUID binaries, sudo misconfigurations, and kernel vulnerabilities.

Windows Privilege Escalation Expert

Provides expert guidance and automated command patterns for escalating privileges on Windows systems during security audits.

Root Cause Tracing

Systematically traces software bugs backward through the execution stack to identify and resolve original triggers.

Verification Before Completion

Enforces a rigorous verification-first workflow by requiring fresh command evidence before any completion or success claims are made.

PII Redaction Enforcer

Automatically redacts sensitive personal data from logs and outputs to ensure regulatory compliance and data privacy.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure all code is verified by failing tests before implementation.

AI Security & LLM Guardrails

Secures LLM applications by implementing prompt injection detection, PII redaction, and output content filtering.

STRIDE Threat Model Generator

Generates comprehensive STRIDE-based threat models with automated risk scoring and actionable mitigation strategies.

Hook Simulator

Tests and validates Betty Framework hook manifests to ensure correct trigger logic and command execution before deployment.

Hook Register

Validates and registers version-controlled hook manifests to automate governance and enforcement within the Betty infrastructure.

Dependency Security Scan

Analyzes project dependencies across multiple ecosystems to detect, report, and automatically fix known security vulnerabilities and CVEs.

Advanced Bug Investigation

Implements a hypothesis-driven workflow to isolate root causes and resolve complex software regressions with precision.

Clerk OAuth Provider Setup

Streamlines the configuration and testing of 19+ OAuth authentication providers for Clerk-powered applications.

Test Generation Agent

Generates robust unit, integration, and end-to-end test suites to ensure code reliability and comprehensive edge case coverage.

TDD Refactor Phase

Guides developers through the refactoring stage of the Test-Driven Development cycle to enhance code quality without altering behavior.

Temporal Coalgebra Observation

Verifies system behavioral equivalence through formal coalgebraic observation and final bisimulation analysis.

Clerk Auth Testing & Validation

Validates Clerk authentication setups and automates security audits, E2E testing, and unit test generation for robust user identity management.

Clerk Next.js Integration

Implements secure Clerk authentication patterns for Next.js applications using both App Router and Pages Router.

Supabase RLS Security Templates

Implements production-ready Row Level Security (RLS) policies and security audits for Supabase applications.

Supabase RLS Security Testing

Validates and audits Supabase Row Level Security (RLS) policies using automated test patterns for user isolation and multi-tenant security.

Defense-in-Depth Validation

Implements multi-layered data validation across system boundaries to make software bugs structurally impossible.

Testing Anti-Pattern Prevention

Enforces best practices in software testing by preventing mock reliance, production code pollution, and incomplete test doubles.

Systematic Debugging

Implements a rigorous four-phase framework to identify root causes and ensure stable bug fixes before implementation.

Security Review Specialist

Conducts comprehensive security audits, threat modeling, and remediation guidance for software projects using standardized safety frameworks.

Test-Driven Development (TDD) Workflow

Enforces a strict Red-Green-Refactor cycle to ensure code reliability and high test coverage.

Skill Testing with Subagents

Applies a rigorous TDD cycle to verify and harden Claude Code skills against pressure and rationalization.

Implementation Verifier

Validates that code implementation strictly adheres to PRD specifications without unauthorized substitutions or omissions.