Is it safe to run this skill on a production environment?

It is strongly recommended to perform security testing in a non-production or staging environment to prevent service disruptions or data corruption.

Do I need specific tools installed to use this skill?

Yes, you should have security testing tools such as OWASP ZAP, sqlmap, or Nikto installed and accessible via your system's terminal.

What vulnerabilities does this skill scan for?

The skill covers the OWASP Top 10 vulnerabilities, specifically focusing on SQL injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and authentication weaknesses.

Does the skill provide fixes for the vulnerabilities it finds?

Yes, the skill generates a comprehensive report that includes specific remediation guidance, code fixes, and secure coding best practices.

How do I initiate a security scan with Claude?

You can trigger the skill using natural language phrases like 'scan for vulnerabilities', 'run penetration test', or 'test security' followed by your target URL.

Security Test Scanner

Name: Security Test Scanner
Author: Brmbobo

byBrmbobo

0•

セキュリティとテスト

Automates comprehensive security vulnerability scans and penetration tests to identify OWASP Top 10 risks, SQL injections, and authentication flaws.

The Security Test Scanner skill empowers Claude to perform automated security assessments by scoping targets, executing industry-standard tools like OWASP ZAP and sqlmap, and generating detailed remediation reports. It is designed for developers and security engineers to identify critical vulnerabilities such as XSS, CSRF, and configuration weaknesses early in the development lifecycle, ensuring applications meet high security standards before deployment.

主な機能

010 GitHub stars

02Actionable remediation guidance and code-fix recommendations

03Support for both passive and active penetration testing techniques

04SQL injection, XSS, and CSRF weakness scanning

05Automated OWASP Top 10 vulnerability detection

06Detailed security report generation with CVSS scoring

ユースケース

01Automating vulnerability discovery within staging environments

02Identifying and documenting authentication or authorization bypass opportunities

03Conducting pre-deployment security audits for web applications and APIs

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add brmbobo/web2podcast performing-security-testing

For use in Claude.ai and ChatGPT

主な機能

010 GitHub stars

02Actionable remediation guidance and code-fix recommendations

03Support for both passive and active penetration testing techniques

04SQL injection, XSS, and CSRF weakness scanning

05Automated OWASP Top 10 vulnerability detection

06Detailed security report generation with CVSS scoring

ユースケース

01Automating vulnerability discovery within staging environments

02Identifying and documenting authentication or authorization bypass opportunities

03Conducting pre-deployment security audits for web applications and APIs

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add brmbobo/web2podcast performing-security-testing

For use in Claude.ai and ChatGPT