Security & Testing Claude 스킬

AI Security & LLM Guardrails

Secures LLM applications by implementing prompt injection detection, PII redaction, and output content filtering.

AIDA Project Fixer

Automates the remediation of incomplete software projects by iteratively satisfying 19 distinct quality gates across backend, frontend, and infrastructure.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure all code is verified by failing tests before implementation.

PII Redaction Enforcer

Automatically redacts sensitive personal data from logs and outputs to ensure regulatory compliance and data privacy.

1Password CLI Integration

Manages secure credential access and secret injection using the 1Password CLI within Claude Code environments.

Verification Before Completion

Enforces a rigorous verification-first workflow by requiring fresh command evidence before any completion or success claims are made.

Root Cause Tracing

Systematically traces software bugs backward through the execution stack to identify and resolve original triggers.

Hookify Rule Architect

Enables developers to create custom guardrails and automation rules for Claude Code by defining patterns that trigger specific warnings or actions.

Windows Privilege Escalation Expert

Provides expert guidance and automated command patterns for escalating privileges on Windows systems during security audits.

Linux Privilege Escalation

Identifies and exploits Linux privilege escalation vectors including SUID binaries, sudo misconfigurations, and kernel vulnerabilities.

Security Sentinel

Performs comprehensive security audits and vulnerability assessments to identify OWASP risks and hardcoded secrets.

Security File Transfer Techniques

Facilitates advanced file transfers and data exfiltration across Linux and Windows using diverse protocols and living-off-the-land techniques.

Repomix Safe Mixer

Prevents credential leaks by automatically scanning and removing hardcoded secrets before packaging codebases with Repomix.

Bug Hunter

Diagnoses root causes and implements precise fixes for code errors, crashes, and unexpected behaviors.

Security Reviewer

Identifies security vulnerabilities and provides practical, framework-specific remediation strategies to ensure code safety.

Quality Severity Triage

Classifies code issues, security findings, and review comments into prioritized severity levels to streamline triage and merge decisions.

Architecture Review Agent

Audits cloud-native architectures and codebases to ensure high reliability, security, and operational readiness.

Test Genius

Automates the creation of robust unit and integration tests using industry-standard patterns and framework detection.

PM2 Playwright Test Services

Automates the management of PM2 processes for serving Playwright test reports and trace viewers in development environments.

Security Incident Response

Manages the end-to-end lifecycle of security vulnerability reports and patches through coordinated disclosure and timely communication.

Active Directory Attack Toolkit

Conducts professional Active Directory penetration testing and security assessments using industry-standard tools and methodologies.

Phishing and Social Engineering Toolkit

Conducts authorized social engineering assessments, phishing simulations, and credential harvesting to test organizational security awareness.

Wireless Attack & Security Testing

Automates and guides wireless network security assessments, including WPA/WPA2 cracking, WPS exploitation, and Evil Twin attacks.

Cloud Security Exploitation

Identifies and exploits security misconfigurations across AWS, Azure, and GCP environments to harden cloud infrastructure.

E2E Testing Specialist

Automates browser-based end-to-end testing to ensure reliable user journeys across web applications using Playwright, Cypress, and Selenium.

Python Code Review Expert

Performs deep, context-aware Python code reviews on changed files to identify security vulnerabilities, performance bottlenecks, and architectural issues.

LimaCharlie Telemetry Onboarding

Orchestrates step-by-step connections for cloud logs, SaaS applications, and third-party telemetry into the LimaCharlie SecOps platform.

LimaCharlie Sensor Manager

Manages, deploys, and troubleshoots LimaCharlie endpoint sensors across Windows, macOS, and Linux platforms for real-time EDR telemetry.

LSP Type Safety Checker

Verifies code type safety and function signature compatibility using Language Server Protocol data to prevent runtime errors.

LimaCharlie Adapter Configurator

Configures and troubleshoots LimaCharlie adapters to seamlessly ingest telemetry from cloud services, identity providers, and various log sources.