How does the audit process work?

The skill follows a strict 6-phase workflow: Attack Surface Mapping, Threat Modeling (STRIDE/PASTA), Technical Checklist verification, Red Team attack simulation, Blue Team defense hardening, and a Final Veredict.

What frameworks does the 007 skill use for security analysis?

007 utilizes industry-standard frameworks including STRIDE for technical threat modeling, PASTA for risk-based analysis, and OWASP Top 10 for web, API, and LLM security checks.

Can 007 help with incident response?

Yes, 007 features a dedicated 'Incident' mode triggered by mentions of being hacked or leaked tokens, which activates immediate response playbooks and mitigation procedures.

Does this skill work for AI and LLM-based applications?

Absolutely. 007 includes specific audit domains for AI agents, focusing on prompt injection, jailbreaking, resource isolation, and LLM-specific security vulnerabilities.

007 Security Auditor & Hardening Agent

Name: 007 Security Auditor & Hardening Agent
Author: sickn33

bysickn33

•

31,432

•

보안 및 테스팅

Conducts comprehensive security audits, formal threat modeling, and infrastructure hardening using STRIDE, PASTA, and OWASP frameworks.

007 is an advanced security architecture skill that transforms Claude into a virtual Chief Security Architect with expertise in code review, infrastructure hardening, and risk management. It follows a rigorous six-phase analysis process—from attack surface mapping to final security verdicts—to identify vulnerabilities across APIs, cloud infrastructure, and AI agents. By integrating formal frameworks like STRIDE and PASTA, 007 provides both technical deep dives and business-oriented risk assessments, making it an essential tool for Red/Blue Team operations and ensuring production readiness for critical software projects.

주요 기능

01Dedicated operational modes for specific contexts like Incident Response, Deployment Approval, and Monitoring.

02Multi-framework threat modeling including STRIDE for technical components and PASTA for risk analysis.

03Automated attack surface mapping for identifying critical assets, entry points, and trust boundaries.

04Specialized security checks for LLM agents, covering prompt injection and jailbreak prevention.

05Comprehensive 6-phase audit process: Mapping, Modeling, Checklist, Red Team, Blue Team, and Verdict.

0631,432 GitHub stars

사용 사례

01Executing emergency incident response playbooks after a suspected token leak or security breach.

02Performing a pre-production security review to obtain a technical 'Approve' or 'Block' verdict.

03Conducting formal STRIDE threat modeling on new API endpoints or microservice architectures.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add sickn33/antigravity-awesome-skills 007

For use in Claude.ai and ChatGPT

주요 기능

01Dedicated operational modes for specific contexts like Incident Response, Deployment Approval, and Monitoring.

02Multi-framework threat modeling including STRIDE for technical components and PASTA for risk analysis.

03Automated attack surface mapping for identifying critical assets, entry points, and trust boundaries.

04Specialized security checks for LLM agents, covering prompt injection and jailbreak prevention.

05Comprehensive 6-phase audit process: Mapping, Modeling, Checklist, Red Team, Blue Team, and Verdict.

0631,432 GitHub stars

사용 사례

01Executing emergency incident response playbooks after a suspected token leak or security breach.

02Performing a pre-production security review to obtain a technical 'Approve' or 'Block' verdict.

03Conducting formal STRIDE threat modeling on new API endpoints or microservice architectures.