Security & Testing Claude 스킬

Frontend Testing & Quality Suite

Implement comprehensive frontend testing patterns for React and Next.js applications, covering component, visual regression, accessibility, and performance audits.

Safety Architecture Framework

Implements robust safeguards for autonomous systems including kill switches, circuit breakers, and human-in-the-loop oversight.

TDD Workflow Manager

Enforces a rigorous Red-Green-Refactor cycle to ensure high-quality, test-driven code development within Claude Code.

Web Application Testing

Automates browser-based testing and debugging for local web applications using Playwright to ensure frontend reliability.

Newman API Testing Runner

Executes and analyzes Postman collections via the Newman CLI to automate API validation and reporting.

Testing Testing

Guides the implementation of software testing according to established coding standards and best practices.

Pentest Commands Reference

Provides a comprehensive library of penetration testing commands for network scanning, exploitation, and vulnerability assessment.

Network Lab Architect

Deploys and configures common network services for penetration testing labs and security research environments.

Pentest Checklist

Provides a structured methodology and comprehensive checklist for planning, executing, and managing professional penetration testing engagements.

Testing Expert (Spring Integration & E2E)

Streamlines Spring Boot integration testing by implementing E2E patterns with TestRestTemplate, reusable fixtures, and database isolation.

Automated Test Suite Writer

Generates comprehensive unit, integration, and E2E tests with a focus on edge cases, error conditions, and industry best practices.

Active Directory Security Auditing

Provides comprehensive guidance and automated workflows for identifying vulnerabilities and performing authorized security assessments on Microsoft Active Directory environments.

Windows Privilege Escalation Guide

Provides systematic methodologies for discovering and exploiting privilege escalation vulnerabilities on Windows systems during security audits.

Verification Before Completion

Enforces a strict evidence-based workflow by requiring successful command execution before any task completion claims are made.

API Security Fuzzing & Bug Bounty

Guides comprehensive security testing for REST, SOAP, and GraphQL APIs to identify vulnerabilities like IDOR and injection.

Pentest Commands Reference

Provides a comprehensive reference of essential commands and workflows for professional penetration testing and security audits.

Testing Skills With Subagents

Applies Red-Green-Refactor cycles to AI process documentation to ensure skills remain effective and compliant under high-pressure scenarios.

File Path Traversal Security Testing

Identifies and tests for directory traversal vulnerabilities to prevent unauthorized access to sensitive server files.

Agent Evaluation

Implements rigorous benchmarking, behavioral testing, and reliability metrics for non-deterministic LLM agents.

API Contract Test Validator

Validates API contracts using consumer-driven testing and OpenAPI specifications to ensure provider-consumer compatibility and identify breaking changes.

Test-Driven Development (TDD) Mastery

Enforces a strict Red-Green-Refactor workflow to ensure high-quality, bug-free production code through the Iron Law of testing.

HTML Injection Security Testing

Identifies and tests for HTML injection vulnerabilities to secure web applications against content manipulation and phishing attacks.

HTML Injection Testing

Identifies and validates HTML injection vulnerabilities to secure web applications against content manipulation and phishing attacks.

HTML Injection Testing

Identifies and remediates HTML injection vulnerabilities through comprehensive security auditing and penetration testing methodologies.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, fixtures, and advanced mocking techniques to ensure code reliability.

Python Testing Patterns

Implements robust Python testing suites using pytest, advanced mocking, and test-driven development best practices.

File Path Traversal Security Testing

Provides a comprehensive framework for identifying, testing, and remediating directory traversal and Local File Inclusion (LFI) vulnerabilities in web applications.

SMTP Penetration Testing

Conducts comprehensive security audits of SMTP servers to identify vulnerabilities like open relays, user enumeration flaws, and weak authentication.

SSH Penetration Testing

Conducts comprehensive SSH security audits including service discovery, configuration analysis, credential testing, and advanced tunneling techniques.

API Security & Fuzzing Specialist

Provides expert guidance and automated workflows for security auditing, fuzzing, and vulnerability discovery across REST, SOAP, and GraphQL APIs.