Security & Testing Claude 스킬

Ethical Hacking & Penetration Testing Methodology

Guides users through the complete cybersecurity lifecycle from reconnaissance and vulnerability scanning to controlled exploitation and professional reporting.

XSS & HTML Injection Security Testing

Identifies and exploits cross-site scripting and HTML injection vulnerabilities to secure web applications against sophisticated client-side attacks.

AWS Penetration Testing

Provides specialized guidance and automated patterns for auditing and penetration testing Amazon Web Services (AWS) cloud environments.

AWS Penetration Testing

Performs comprehensive security audits and identifies vulnerabilities within AWS cloud environments through advanced enumeration and exploitation techniques.

macOS File Origin Auditor

Analyzes the macOS quarantine database to track file download sources, audit security risks, and manage system download history.

XSS and HTML Injection Testing

Conducts systematic security audits to identify and exploit Cross-Site Scripting and HTML injection vulnerabilities in web applications.

AWS Pentesting & Cloud Security

Conducts comprehensive security audits and penetration tests on AWS environments to identify vulnerabilities and privilege escalation paths.

XSS & HTML Injection Security Testing

Identifies, exploits, and remediates cross-site scripting and HTML injection vulnerabilities in web applications using advanced detection and bypass techniques.

Ethical Hacking Methodology

Guides users through the complete penetration testing lifecycle using industry-standard tools and professional security frameworks.

WordPress Penetration Testing

Conducts deep security audits and vulnerability assessments of WordPress installations using professional penetration testing methodologies.

Rigorous Engineering Validation

Enforces reproducible testing and evidence-driven verification to ensure every code change is proven reliable before merging.

Jest Testing Patterns & TDD

Standardizes testing workflows using Jest, factory functions, and TDD principles to ensure high-quality, maintainable codebases.

XSS and HTML Injection Security Testing

Conducts comprehensive security audits to identify, exploit, and remediate Cross-Site Scripting (XSS) and HTML injection vulnerabilities in web applications.

Looper-Go Live Tester

Validates Looper-Go behavior by executing an automated smoke test in a isolated, temporary project environment.

Security Gate for Telclaude

Screens and classifies inbound Telegram commands to protect Claude Code environments from destructive or malicious actions.

Clerk Authentication Patterns

Implements secure Clerk authentication patterns for Next.js applications using standardized middleware and server component logic.

Testing Principles

Enforces language-agnostic software testing standards, TDD workflows, and quality patterns during the development process.

Integration & E2E Testing Strategy

Optimizes testing workflows by providing ROI-driven design principles and standardized skeletons for high-quality integration and end-to-end tests.

Hookify Rule Architect

Standardize and enforce AI coding behaviors by creating custom guardrails and validation rules for Claude Code.

Clerk Authentication Integration

Streamlines the implementation of Clerk authentication and authorization patterns in Next.js applications.

Technical Architecture & Testing Spec

Enforces production-grade architecture patterns, secure environment variable management, and rigorous testing workflows for TypeScript applications.

TypeScript Frontend Testing

Standardizes frontend testing workflows using Vitest, React Testing Library, and MSW to ensure high-quality, production-ready TypeScript code.

Privilege Escalation Methods

Provides comprehensive techniques and commands for escalating privileges on Linux and Windows systems during security assessments.

Active Directory Security Assessment

Provides a comprehensive toolkit and guide for evaluating Microsoft Active Directory environments through advanced penetration testing techniques.

API Security & Fuzzing Specialist

Conducts comprehensive security audits and fuzzing on REST, SOAP, and GraphQL APIs to identify vulnerabilities like IDOR and injection.

Broken Authentication Security Testing

Identifies and evaluates authentication and session management vulnerabilities to secure web applications against unauthorized access and account takeovers.

Shodan Reconnaissance

Conducts comprehensive security reconnaissance and vulnerability discovery using Shodan's search engine, CLI, and API.

Vulnerability Scanner

Performs advanced security audits and vulnerability analysis using OWASP 2025 standards and supply chain security principles.

Advanced Jest Testing Patterns

Implements robust Jest testing strategies, TDD workflows, and factory patterns to ensure high-quality, maintainable codebases.

Clerk Authentication Expert

Implements secure user authentication and session management using Clerk patterns for modern web applications.