Can this skill help identify specific privacy leaks in my code?

Yes, it identifies common anti-patterns such as high-precision timestamps, unpadded encrypted messages, and unnecessary logging of user identifiers, providing specific code fixes for each.

What is the primary focus of the Counter-Surveillance skill?

It focuses on defensive security assessments that prioritize surveillance resistance, metadata minimization, and operational security (OPSEC) hardening.

How does this skill categorize different security threats?

It utilizes a five-tier threat model, ranging from Tier 1 (Passive network observers like ISPs) to Tier 5 (Global passive adversaries with traffic analysis capabilities across jurisdictions).

What types of metadata does this skill analyze?

It assesses multiple metadata layers including network signals (DNS/SNI), application telemetry, device fingerprints, location tracking vectors, and communication social graphs.

Counter-Surveillance Security

Name: Counter-Surveillance Security
Author: plurigrid

byplurigrid

•

セキュリティとテスト

Hardens operational security and minimizes surveillance exposure for privacy-critical applications and communications infrastructure.

The Counter-Surveillance security skill provides a comprehensive framework for auditing and hardening applications against surveillance, metadata leakage, and tracking vectors. It employs a structured methodology based on a five-tier threat model—ranging from passive network observers to global state-level adversaries—to identify vulnerabilities in network metadata, device fingerprinting, and communication protocols. By applying Trail of Bits-style defensive patterns, it helps developers implement advanced privacy controls such as E2E encryption, traffic analysis resistance, and anonymous communication systems to protect high-risk users and sensitive data.

主な機能

01Multi-tier threat modeling ranging from local observers to global passive adversaries

02Comprehensive surveillance surface taxonomy covering network, app, and device layers

03Structured audit methodology for mapping data flows and assessing encryption coverage

04Extensive hardening checklist for protocols, infrastructure, and legal jurisdiction

05Code review patterns for identifying and fixing metadata leakage anti-patterns

067 GitHub stars

ユースケース

01Auditing privacy-sensitive applications for journalists, activists, or high-risk users

02Assessing infrastructure exposure to lawful intercept, legal compulsion, and data retention

03Reviewing and hardening communications platforms against metadata analysis and tracking

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add plurigrid/asi counter-surveillance

For use in Claude.ai and ChatGPT

Download Skill