Security & Testing Claudeスキル

Vulnerability Scanner

Identifies security vulnerabilities, Common Vulnerabilities and Exposures (CVEs), and configuration risks within your codebase and dependencies.

Vulnerability Scanner

Performs automated security audits to identify vulnerabilities, insecure configurations, and known CVEs across your codebase and dependencies.

XSS Vulnerability Scanner

Detects and mitigates cross-site scripting (XSS) vulnerabilities across HTML, JavaScript, and CSS contexts to secure web applications.

SQL Injection Security Testing

Performs comprehensive SQL injection vulnerability assessments to identify, exploit, and remediate database security flaws in web applications.

Broken Authentication Security Testing

Conducts comprehensive security audits for authentication and session management vulnerabilities in web applications to prevent unauthorized access.

Clerk Custom Authentication Flows

Builds bespoke sign-in and sign-up authentication flows using Clerk's specialized React hooks and API reference material.

TDD Workflow

Guides developers through a disciplined Red-Green-Refactor cycle to ensure code quality through test-first development.

Wireshark Traffic Analyst

Analyzes and troubleshoots network traffic using Wireshark filters, packet capture techniques, and protocol inspection.

Jest Testing Patterns & TDD

Implements robust Jest testing strategies, TDD workflows, and factory patterns for React and React Native applications.

Testing Patterns & TDD Workflow

Implements robust Jest testing strategies, factory patterns, and TDD workflows for maintainable frontend codebases.

AWS Penetration Testing

Performs comprehensive security assessments and penetration testing workflows for AWS cloud infrastructure.

API Security Best Practices

Implements industry-standard security patterns to protect API endpoints against unauthorized access and common web vulnerabilities.

IDOR Vulnerability Testing

Provides systematic methodologies for detecting, exploiting, and remediating Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.

Burp Suite Web Security Testing

Provides comprehensive guidance for performing web application security audits and penetration testing using the Burp Suite toolset.

Systematic Debugging

Eliminates trial-and-error programming by enforcing a rigorous four-phase root cause analysis before applying code fixes.

Shodan Reconnaissance and Pentesting

Conducts advanced network reconnaissance and vulnerability discovery using the Shodan search engine and API.

Security Scanning & Vulnerability Assessment

Performs comprehensive security audits and vulnerability assessments across networks, web applications, and cloud environments using industry-standard tools.

Vulnerability Scanner

Performs expert-level security audits and threat modeling based on the OWASP 2025 framework and modern attack vectors.

Linux Privilege Escalation

Automates the identification and exploitation of security vulnerabilities to elevate user permissions on Linux systems.

Ethical Hacking Methodology

Provides a comprehensive framework and command reference for conducting authorized penetration tests and security assessments.

Production Code Audit

Transforms raw codebases into enterprise-grade, production-ready software by autonomously fixing security, performance, and architectural issues.

Production Code Auditor

Transforms entire codebases into enterprise-grade, production-ready software through autonomous security, performance, and architecture audits.

Broken Authentication Security Tester

Identifies and evaluates authentication and session management vulnerabilities in web applications using standardized security testing methodologies.

Red Team Tactics & Adversary Simulation

Implement red teaming strategies and adversary simulation principles based on the MITRE ATT&CK framework.

Jest Testing Patterns & TDD

Standardizes Jest testing workflows with factory functions, mocking strategies, and TDD patterns for React and React Native applications.

Broken Authentication Testing

Identifies and assesses authentication and session management vulnerabilities to protect web applications against unauthorized access.

IDOR Vulnerability Testing

Conducts systematic identification, exploitation, and remediation of Insecure Direct Object Reference (IDOR) vulnerabilities in web applications and APIs.

Red Team Tactics & Adversary Simulation

Implements adversary simulation principles and security auditing workflows based on the MITRE ATT&CK framework.

Wireshark Network Traffic Analysis

Analyzes and inspects network traffic using Wireshark for security audits, performance troubleshooting, and protocol analysis.

Security Scanning Tools

Provides comprehensive guidance and command-line workflows for network discovery, vulnerability assessment, and security compliance auditing.