Security & Testing Agent Skills

API Security Testing

Conducts comprehensive security audits and penetration tests on REST and GraphQL APIs to identify vulnerabilities like IDOR, injection, and authorization flaws.

Active Directory Attack Toolkit

Conducts professional Active Directory penetration testing and security assessments using industry-standard tools and methodologies.

Mobile App Pentesting

Conducts comprehensive security audits and penetration testing for Android and iOS mobile applications.

Cloud Security Exploitation

Identifies and exploits security misconfigurations across AWS, Azure, and GCP environments to harden cloud infrastructure.

Container Security & Escape Expert

Conducts deep security assessments and penetration tests for Docker and Kubernetes environments to identify and exploit vulnerabilities.

Security File Transfer Techniques

Facilitates advanced file transfers and data exfiltration across Linux and Windows using diverse protocols and living-off-the-land techniques.

Linux Privilege Escalation

Identifies and exploits Linux privilege escalation vectors including SUID binaries, sudo misconfigurations, and kernel vulnerabilities.

Network Service Enumeration

Performs professional-grade discovery, enumeration, and security assessment of network services and database protocols.

Password Attacks & Credential Cracking

Conducts professional password hash cracking, credential spraying, and authentication brute-force attacks using industry-standard tools.

Phishing and Social Engineering Toolkit

Conducts authorized social engineering assessments, phishing simulations, and credential harvesting to test organizational security awareness.

Web3 & Smart Contract Security

Audits and identifies vulnerabilities in smart contracts and Web3 applications using expert penetration testing techniques.

Windows Privilege Escalation Expert

Provides expert guidance and automated command patterns for escalating privileges on Windows systems during security audits.

Load Testing Adapter

Generates and executes comprehensive load test scripts to validate application performance and identify architectural bottlenecks.

Playwright E2E Testing

Automates end-to-end web testing using Playwright with a focus on accessibility-first locators and robust Page Object Models.

Vue Test Utils Patterns

Implements standardized testing patterns for Vue 3 components using Vue Test Utils and Vitest.

Frontend Unit Testing

Streamlines the creation and maintenance of robust unit tests for frontend applications using modern libraries like Vitest and React Testing Library.

E2E Testing Guide

Guides the implementation and optimization of end-to-end testing strategies using Playwright and Cypress for robust frontend applications.

Requirement Implementation Verifier

Validates that product requirements from planning documents are accurately reflected in implementation code before pull requests.

Dialog & Sheet Safety Verifier

Verifies interaction safety, state initialization, and UX consistency for Radix UI Dialog and Sheet components.

Data Consistency Verifier

Validates TypeScript types, Zod schemas, and mock data against business rules to ensure structural and logical integrity.

Dogfood QA Explorer

Conducts systematic exploratory QA testing on web applications to identify bugs and UX issues with comprehensive reproduction evidence.

Plan-to-Code Sync Verifier

Verifies that planning document updates are accurately synchronized across all implementation layers of your codebase.

Integrated Implementation Verifier

Orchestrates the sequential execution of all domain-specific verification skills to generate comprehensive code quality reports and automated fixes.

Test-Driven Development (TDD)

Enforces a rigorous Red-Green-Refactor workflow to ensure all production code is verified by failing tests first.

Production Module Verifier

Validates the structural integrity and coding standards of production management modules to ensure consistency across components, types, and routing.

Routing Consistency Validator

Validates routing configurations and navigation link integrity within complex frontend application architectures.

Systematic Debugging

Enforces a rigorous, root-cause-first approach to technical troubleshooting and bug resolution.

SOX Compliance Audit

Generates professional SOX compliance audit reports and detailed Excel evidence packages for financial internal controls.

Verification Before Completion

Enforces a rigorous evidence-based verification protocol before claiming tasks are complete or committing code.

End-to-End Testing Pro

Automates and manages end-to-end testing workflows using Playwright and Cypress to ensure robust user flows across all major browsers.