What is the DoS analysis skill for Claude Code?

It is a specialized capability that scans your source code for vulnerabilities that could lead to service downtime, performance degradation, or application crashes.

Does it provide fixes for found vulnerabilities?

Yes, when used with the appropriate flags, it can provide concrete remediation advice and code diffs to help mitigate identified DoS risks.

Which code areas are most critical for this analysis?

You should focus on API endpoints, file upload handlers, search queries, and any logic that processes untrusted external data.

Can it detect Regular Expression Denial of Service (ReDoS)?

Yes, it identifies complex regex patterns applied to user input that could cause exponential backtracking and lead to CPU exhaustion.

What security framework does this skill use?

This skill follows the STRIDE threat modeling framework, specifically focusing on the 'D' (Denial of Service) category which concerns violations of the Availability property.

Denial of Service (DoS) Analysis

Name: Denial of Service (DoS) Analysis
Author: florianbuetow

byflorianbuetow

•

보안 및 테스팅

Scans source code to identify and mitigate vulnerabilities that could lead to service disruptions or resource exhaustion.

This skill automates the detection of Denial of Service (DoS) vulnerabilities within your codebase by mapping security risks to the STRIDE 'Availability' category. It evaluates critical areas such as unconstrained resource allocation, inefficient regular expressions (ReDoS), missing rate limits, and unbounded database queries. By providing actionable insights and remediation steps, it helps developers ensure their applications remain resilient against attacks intended to degrade or crash services.

주요 기능

01Detects Regular Expression Denial of Service (ReDoS) patterns in user input processing.

02Analyzes algorithmic complexity and unbounded resource allocation in loops and buffers.

03Flags missing timeouts in external API calls, subprocesses, and database queries.

04Identifies missing rate limiting and request body size constraints on public endpoints.

056 GitHub stars

06Scans for improper handling of compressed data like zip bombs and large file uploads.

사용 사례

01Ensuring third-party integrations include proper timeout configurations to prevent cascading failures.

02Auditing public-facing API endpoints to prevent resource exhaustion and OOM crashes.

03Reviewing complex regular expressions for potential exponential backtracking vulnerabilities.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add florianbuetow/claude-code dos

For use in Claude.ai and ChatGPT

Download Skill