Security & Testing Claudeスキル

Bats Shell Testing Patterns

Implements comprehensive unit and integration tests for shell scripts using the Bash Automated Testing System (Bats) framework.

Windows Privilege Escalation Expert

Provides expert guidance and automated command patterns for escalating privileges on Windows systems during security audits.

STRIDE Threat Analysis Patterns

Systematically identifies security threats across six key categories to fortify application architecture and compliance documentation.

Website Review

Conducts comprehensive QA reviews of websites by automating visual inspection, error detection, accessibility audits, and performance testing.

Linux Privilege Escalation

Identifies and exploits Linux privilege escalation vectors including SUID binaries, sudo misconfigurations, and kernel vulnerabilities.

Admin Dashboard QA Workflow

Orchestrates a rigorous, multi-phase QA workflow for implementing, modifying, and fixing admin dashboard features.

Test Helper

Generates and runs integration tests for TypeScript/JavaScript applications using the Bun test runner.

Jest Test Automation

Executes and generates Jest tests for JavaScript and TypeScript projects to streamline unit, integration, and end-to-end testing workflows.

Security File Transfer Techniques

Facilitates advanced file transfers and data exfiltration across Linux and Windows using diverse protocols and living-off-the-land techniques.

Debugging Strategies

Implements systematic troubleshooting techniques and profiling tools to identify and resolve complex software bugs across any technology stack.

E2E Testing Patterns

Implements robust end-to-end testing architectures using Playwright and Cypress to ensure application reliability and prevent regressions.

Active Directory Attack Toolkit

Conducts professional Active Directory penetration testing and security assessments using industry-standard tools and methodologies.

Skill Evaluator

Evaluates the quality of agent skills using a comprehensive, rubric-based assessment.

Workscript Node Review

Reviews workscript node implementations for compliance with development blueprints, best practices, and metadata consistency.

Phishing and Social Engineering Toolkit

Conducts authorized social engineering assessments, phishing simulations, and credential harvesting to test organizational security awareness.

Pytest Test Framework

Generates and executes robust pytest suites for Python projects with support for fixtures, mocking, and structured output.

SEMO Integrated Quality Audit

Audits the entire SEMO monorepo for package quality, standards compliance, and structural inefficiencies.

E2E Playwright Diagnosis

Diagnoses and resolves End-to-End (E2E) test failures in Playwright using a systematic, tool-driven workflow.

TypeScript Expert

Applies expert-level guidelines to write, review, and refactor TypeScript code for maintainability, type safety, and performance.

Validation Checklist

Guides software projects through a standardized pre-delivery validation process for backend and frontend code.

Pre-Commit Validator

Automates pre-commit checks for TypeScript type safety, test execution, code coverage, and Git branch compliance.

Wireless Attack & Security Testing

Automates and guides wireless network security assessments, including WPA/WPA2 cracking, WPS exploitation, and Evil Twin attacks.

Frontend Testing & Quality Suite

Implement comprehensive frontend testing patterns for React and Next.js applications, covering component, visual regression, accessibility, and performance audits.

Testing Workflow

Executes comprehensive test suites including unit, integration, E2E, and mutation tests to validate code changes and ensure quality.

Web3 & Smart Contract Security

Audits and identifies vulnerabilities in smart contracts and Web3 applications using expert penetration testing techniques.

Screen Reader Accessibility Testing

Validates web application accessibility by providing comprehensive guides and implementation patterns for screen reader testing across major platforms.

Cloud Security Exploitation

Identifies and exploits security misconfigurations across AWS, Azure, and GCP environments to harden cloud infrastructure.

Python Code Review Expert

Performs deep, context-aware Python code reviews on changed files to identify security vulnerabilities, performance bottlenecks, and architectural issues.

Quality Gate Skill

Executes a comprehensive, non-destructive quality gate including linting, formatting, type safety, tests, and security checks for your codebase.

Security Requirement Extraction

Transforms threat models and business context into actionable security requirements, user stories, and test specifications.