What vulnerabilities does this skill scan for?

It scans for the OWASP Top 10 vulnerabilities, including SQL injection, Cross-Site Scripting (XSS), CSRF, and various authentication or authorization flaws.

Can this be integrated into my DevOps workflow?

Absolutely. This skill can be integrated with other plugins to trigger security tests automatically as part of a CI/CD pipeline or following code changes.

Does it provide advice on how to fix found vulnerabilities?

Yes, the generated report includes detailed remediation steps for each identified vulnerability to help developers secure their code quickly.

Can I use this for API security testing?

Yes, the skill is designed to target specific API endpoints as well as general web application interfaces for comprehensive security assessments.

Does it require credentials for testing?

To test protected resources, you should provide the necessary authentication credentials so the scanner can assess the security of authenticated routes.

Security Vulnerability Scanner

Name: Security Vulnerability Scanner
Author: jeremylongshore

byjeremylongshore

•

883

보안 및 테스팅

Automates comprehensive security vulnerability testing and penetration scans for applications and APIs.

소개

This skill empowers Claude to perform automated security assessments, identifying critical weaknesses such as OWASP Top 10 flaws, SQL injection, and cross-site scripting (XSS). By leveraging a specialized security-test-scanner, it conducts deep dives into authentication and authorization mechanisms, providing developers with detailed reports, severity ratings, and actionable remediation steps to fortify their software throughout the development lifecycle.

주요 기능

Detection of SQL injection, XSS, and CSRF flaws
Support for both web application and API endpoint testing
Automated OWASP Top 10 vulnerability scanning
Detailed reporting with severity ratings and remediation steps
Authentication and authorization security assessment
883 GitHub stars

사용 사례

Performing a security audit on a new API endpoint before production
Automating periodic security scans as part of a CI/CD pipeline
Identifying vulnerabilities like SQL injection during the development phase

소개

주요 기능

Detection of SQL injection, XSS, and CSRF flaws
Support for both web application and API endpoint testing
Automated OWASP Top 10 vulnerability scanning
Detailed reporting with severity ratings and remediation steps
Authentication and authorization security assessment
883 GitHub stars

사용 사례

Performing a security audit on a new API endpoint before production
Automating periodic security scans as part of a CI/CD pipeline
Identifying vulnerabilities like SQL injection during the development phase