Security & Testing Claude 스킬

AWS Pentesting & Cloud Security

Conducts comprehensive security audits and penetration tests on AWS environments to identify vulnerabilities and privilege escalation paths.

Verification Before Completion

Enforces rigorous build and test verification protocols before allowing AI agents to claim task completion or success.

AWS Penetration Testing

Performs comprehensive security audits and identifies vulnerabilities within AWS cloud environments through advanced enumeration and exploitation techniques.

Web Application Testing & Playwright Automation

Automates and validates local web applications using Playwright for comprehensive end-to-end testing and UI debugging.

XSS and HTML Injection Testing

Conducts systematic security audits to identify and exploit Cross-Site Scripting and HTML injection vulnerabilities in web applications.

Ethical Hacking Methodology

Guides users through the complete penetration testing lifecycle using industry-standard tools and professional security frameworks.

Jest Testing Patterns & TDD

Standardizes testing workflows using Jest, factory functions, and TDD principles to ensure high-quality, maintainable codebases.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor cycle to ensure every line of production code is verified by a failing test first.

Clerk Authentication Patterns

Implements secure Clerk authentication patterns for Next.js applications using standardized middleware and server component logic.

Systematic Debugging

Enforces a rigorous four-phase framework to identify root causes and implement test-driven fixes for any software bug.

Testing Anti-Pattern Guard

Prevents common software testing mistakes by enforcing strict principles against mock misuse and production code pollution.

XSS and HTML Injection Security Testing

Conducts comprehensive security audits to identify, exploit, and remediate Cross-Site Scripting (XSS) and HTML injection vulnerabilities in web applications.

Professional Code Reviewer

Performs systematic, checklist-driven code reviews based on industry-standard engineering practices and security protocols.

Web App Testing & Playwright Automation

Automates end-to-end testing and browser interactions for local web applications using Playwright and managed server lifecycles.

Clerk Authentication Expert

Implements secure user authentication and session management using Clerk patterns for modern web applications.

Hookify Rule Architect

Standardize and enforce AI coding behaviors by creating custom guardrails and validation rules for Claude Code.

Looper-Go Live Tester

Validates Looper-Go behavior by executing an automated smoke test in a isolated, temporary project environment.

Strict Verification Guard

Enforces rigorous, evidence-based validation gates and fresh test execution before any coding task is marked as complete.

Technical Architecture & Testing Spec

Enforces production-grade architecture patterns, secure environment variable management, and rigorous testing workflows for TypeScript applications.

TypeScript Frontend Testing

Standardizes frontend testing workflows using Vitest, React Testing Library, and MSW to ensure high-quality, production-ready TypeScript code.

Verification Before Completion

Enforces a strict evidence-first protocol requiring fresh command output and validation before any task is marked as complete.

Advanced Jest Testing Patterns

Implements robust Jest testing strategies, TDD workflows, and factory patterns to ensure high-quality, maintainable codebases.

Privilege Escalation Methods

Provides comprehensive techniques and commands for escalating privileges on Linux and Windows systems during security assessments.

Active Directory Security Assessment

Provides a comprehensive toolkit and guide for evaluating Microsoft Active Directory environments through advanced penetration testing techniques.

Clerk Authentication Integration

Streamlines the implementation of Clerk authentication and authorization patterns in Next.js applications.

Integration & E2E Testing Strategy

Optimizes testing workflows by providing ROI-driven design principles and standardized skeletons for high-quality integration and end-to-end tests.

ERC-4337 Privacy Wallet Dev

Develops privacy-preserving ERC-4337 account abstraction wallets for sensitive data like vehicle identities and biometric information.

Vulnerability Scanner

Performs advanced security audits and vulnerability analysis using OWASP 2025 standards and supply chain security principles.

Eval Harness for Claude Code

Implements Eval-Driven Development (EDD) principles to systematically test, evaluate, and validate Claude's coding output through formal frameworks.

API Security & Fuzzing Specialist

Conducts comprehensive security audits and fuzzing on REST, SOAP, and GraphQL APIs to identify vulnerabilities like IDOR and injection.