Security & Testing Claude 技能

C++ TDD Workflow Manager

Enforces a rigorous Test-Driven Development (TDD) lifecycle for C++20 projects using Google Test, CMake, and coverage analysis.

JUDO Testkit Helper

Streamlines the creation and troubleshooting of unit and integration tests for JUDO applications using the Guice-based testkit.

JUDO Security Authentication Flow

Implements and manages comprehensive OAuth2 and OpenID Connect authentication pipelines within the JUDO Runtime Core.

HTML Injection Security Testing

Identifies and tests for HTML injection vulnerabilities to secure web applications against content manipulation and phishing attacks.

Pentest Checklist

Provides a structured methodology and comprehensive checklists for planning, executing, and remediating penetration testing engagements.

Vulnerability Scanner

Performs advanced security audits and vulnerability analysis using modern threat landscape principles and OWASP 2025 standards.

Windows Privilege Escalation Guide

Provides systematic methodologies and command-line techniques for discovering and exploiting privilege escalation vulnerabilities on Windows systems.

Vulnerability Scanner & Security Auditor

Conducts advanced security audits and vulnerability scans using OWASP 2025 principles and supply chain analysis.

SMTP Security & Penetration Testing

Conducts comprehensive security assessments and vulnerability testing for SMTP mail servers.

IDOR Vulnerability Testing

Guides the systematic detection, exploitation, and remediation of Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.

File Path Traversal Security Testing

Conducts comprehensive security audits to identify and remediate directory traversal and Local File Inclusion (LFI) vulnerabilities.

Pentest Strategy & Checklist

Guides users through the full lifecycle of penetration testing, from scope definition and environment preparation to monitoring and remediation.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure high-quality, bug-free production code through disciplined testing.

Wireshark Network Traffic Analysis

Analyzes and troubleshoots network traffic using Wireshark to capture packets, filter data, and investigate security anomalies.

Wireshark Network Traffic Analysis

Performs comprehensive network packet capture, filtering, and protocol analysis to troubleshoot connectivity and investigate security incidents.

Vulnerability Scanner & Security Auditor

Conducts advanced security audits and vulnerability assessments using OWASP 2025 standards and modern threat modeling.

Production Code Auditor

Transforms entire codebases into enterprise-grade, production-ready software by automatically fixing security vulnerabilities, performance bottlenecks, and architectural flaws.

File Path Traversal Testing

Identifies and exploits directory traversal and local file inclusion (LFI) vulnerabilities through comprehensive testing methodologies and bypass techniques.

Wireshark Network Traffic Analysis

Performs deep packet inspection and network protocol analysis using Wireshark for security auditing, troubleshooting, and performance optimization.

IDOR Vulnerability Testing

Provides systematic methodologies for detecting, exploiting, and remediating Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.

Windows Privilege Escalation Guide

Provides systematic methodologies and commands for discovering and exploiting privilege escalation vulnerabilities on Windows systems.

Production Code Auditor

Transforms codebases into enterprise-grade, production-ready software through autonomous deep-scanning and systematic optimization.

Smart Test Fixing

Systematically identifies and resolves failing tests through intelligent error grouping and prioritized root cause analysis.

Test-Driven Development (TDD)

Enforces strict Red-Green-Refactor cycles to ensure every line of production code is verified by a failing test first.

Next.js Supabase Auth

Integrates Supabase Authentication with Next.js App Router using best practices for server-side rendering and secure session management.

Production Code Auditor

Autonomously scans and transforms codebases into enterprise-grade, production-ready software with automated security and performance fixes.

File Path Traversal Testing

Identifies, exploits, and remediates directory traversal and Local File Inclusion (LFI) vulnerabilities using structured testing methodologies.

Next.js Supabase Auth

Integrates Supabase Authentication into Next.js App Router applications using industry-standard patterns and server-side security.

Pentest Planning & Methodology

Provides a structured methodology and comprehensive checklists for planning, executing, and remediating security penetration tests.

Active Directory Security Testing

Performs comprehensive security audits and penetration testing on Microsoft Active Directory environments to identify and mitigate vulnerabilities.