Security & Testing Agent Skills

Broken Authentication Testing

Identifies and evaluates authentication and session management vulnerabilities in web applications to prevent unauthorized access and account takeovers.

Professional TDD Workflow

Enforces rigorous test-driven development practices with comprehensive unit, integration, and E2E coverage requirements.

Codebase Stability Audit

Performs comprehensive health checks on your project to ensure stability, security, and best practices across 98+ distinct parameters.

Security Review & Hardening

Audits and secures application code by implementing industry-standard security patterns, from input validation to secrets management.

HTML Injection Security Testing

Identifies and exploits HTML injection vulnerabilities to secure web applications against content manipulation and phishing attacks.

Accessibility Audit

Audits web projects for WCAG 2.1 compliance by identifying issues with contrast, ARIA roles, keyboard navigation, and form labels.

Security Review Pro

Audits code for vulnerabilities and enforces best practices across authentication, data handling, and infrastructure.

Eval Harness for Claude Code

Implements an evaluation-driven development framework to test, verify, and track the reliability of Claude's code generation.

SQLMap Database Pentesting

Automates SQL injection detection and database exploitation using the industry-standard SQLMap tool for security audits.

Broken Authentication Security Testing

Identifies and exploits authentication and session management vulnerabilities in web applications to prevent unauthorized access.

Clerk Authentication

Implements secure Clerk authentication patterns for Next.js, including middleware route protection, server components, and user synchronization.

Clerk Authentication Patterns

Streamlines Clerk authentication integration in Next.js applications using standardized patterns for middleware and server-side logic.

Clerk Auth Patterns

Implements secure user authentication and organization management using Clerk for modern Next.js applications.

Security Review & Hardening

Implements comprehensive security checklists and best practice patterns for authentication, input validation, and sensitive data protection.

Red Team Methodology & Security Tools

Automates security reconnaissance and vulnerability discovery using industry-standard red teaming methodologies and toolchains.

TDD Workflow

Implements the Red-Green-Refactor cycle to ensure code quality through rigorous test-driven development principles.

Red Team Methodology & Tools

Implements professional cybersecurity reconnaissance and bug bounty hunting workflows using industry-standard tools and methodologies.

SQLMap Database Pentesting

Automates SQL injection vulnerability detection and database exploitation using the industry-standard SQLMap tool.

Security Review Assistant

Conducts comprehensive security audits and implements defensive coding patterns for web applications, APIs, and smart contract integrations.

Red Team Methodology & Tools

Automates comprehensive security reconnaissance, vulnerability discovery, and bug bounty hunting workflows using industry-standard penetration testing tools.

TDD Workflow

Implements a rigorous Red-Green-Refactor cycle to ensure production code is testable, reliable, and lean.

HTML Injection Security Tester

Identifies and tests HTML injection vulnerabilities to secure web applications against unauthorized content manipulation and phishing risks.

Windows Privilege Escalation Guide

Provides systematic methodologies and command references for discovering and exploiting privilege escalation vulnerabilities on Windows systems.

SMTP Penetration Testing

Conducts comprehensive security audits of SMTP servers to identify vulnerabilities like open relays, user enumeration flaws, and weak authentication.

Reticulum Protocol Links

Provides expert knowledge for implementing and managing Reticulum's encrypted, anonymous communication links with forward secrecy.

Security Core

Implements comprehensive application security layers including robust authentication, granular authorization, and OWASP-compliant hardening for modern software stacks.

JUDO Access Control Manager

Configures and manages declarative, actor-based authorization rules for applications built on the JUDO Runtime.

SMTP Penetration Testing

Performs comprehensive security assessments and penetration testing on SMTP mail servers to identify vulnerabilities and misconfigurations.

MCP Testing Suite

Provides standardized patterns and utilities for unit testing and LLM-driven evaluation of Model Context Protocol (MCP) tools.

JUDO Custom Authentication

Implements and extends custom authentication providers within the JUDO security framework.