Security & Testing Claude 技能

Accessibility Auditor

Audits React and TypeScript applications for WCAG 2.2 Level AA compliance using risk-based severity scoring and MUI-specific awareness.

LimaCharlie Adapter Configurator

Configures and troubleshoots LimaCharlie adapters to seamlessly ingest telemetry from cloud services, identity providers, and various log sources.

LimaCharlie Sensor Manager

Manages, deploys, and troubleshoots LimaCharlie endpoint sensors across Windows, macOS, and Linux platforms for real-time EDR telemetry.

LimaCharlie API Integrator

Integrate with the LimaCharlie SecOps platform using REST APIs, Python SDK, or Go SDK for programmatic sensor management and data streaming.

LimaCharlie Threat Intel Integrator

Integrates real-time threat intelligence feeds and API-based lookups into LimaCharlie security operations and detection rules.

Debugging Strategies

Implements systematic debugging workflows, profiling techniques, and root cause analysis to resolve complex software issues across any technology stack.

Temporal Python Testing

Implements comprehensive testing strategies for Temporal workflows using pytest, time-skipping, and replay validation.

LimaCharlie Telemetry Onboarding

Orchestrates step-by-step connections for cloud logs, SaaS applications, and third-party telemetry into the LimaCharlie SecOps platform.

Python Code Review Expert

Performs deep, context-aware Python code reviews on changed files to identify security vulnerabilities, performance bottlenecks, and architectural issues.

Cloud Security Exploitation

Identifies and exploits security misconfigurations across AWS, Azure, and GCP environments to harden cloud infrastructure.

Remediation Configuration Security

Provides actionable security fix patterns for configuration and deployment vulnerabilities across multiple programming languages.

AI Council Code Review

Performs multi-engine code reviews using Codex and Gemini to detect bugs, security vulnerabilities, and quality issues.

AI Council Deep Analysis

Performs multi-model deep reasoning and architectural investigations using Codex and Gemini with extra-high reasoning effort.

Web3 & Smart Contract Security

Audits and identifies vulnerabilities in smart contracts and Web3 applications using expert penetration testing techniques.

Codex Debug & Root Cause Analysis

Conducts high-reasoning, systematic debugging and root cause analysis to resolve complex software errors and performance issues.

Web Application Security Testing

Equips Claude with expert penetration testing methodologies and specialized payloads to identify and exploit web application vulnerabilities.

Skill Quality Gate

Validates Claude Code skill structure and content against standardized quality requirements before deployment.

Wireless Attack & Security Testing

Automates and guides wireless network security assessments, including WPA/WPA2 cracking, WPS exploitation, and Evil Twin attacks.

Initial Access Recon

Automates reconnaissance and intelligence gathering for offensive security assessments and attack surface mapping.

Phishing and Social Engineering Toolkit

Conducts authorized social engineering assessments, phishing simulations, and credential harvesting to test organizational security awareness.

Establishing Persistence Techniques

Implements and detects various methods for maintaining long-term access to compromised Windows, Linux, and cloud environments during security engagements.

Active Directory Attack Toolkit

Conducts professional Active Directory penetration testing and security assessments using industry-standard tools and methodologies.

Security File Transfer Techniques

Facilitates advanced file transfers and data exfiltration across Linux and Windows using diverse protocols and living-off-the-land techniques.

Mobile App Pentesting

Conducts comprehensive security audits and penetration testing for Android and iOS mobile applications.

Container Security & Escape Expert

Conducts deep security assessments and penetration tests for Docker and Kubernetes environments to identify and exploit vulnerabilities.

API Security Testing

Conducts comprehensive security audits and penetration tests on REST and GraphQL APIs to identify vulnerabilities like IDOR, injection, and authorization flaws.

Linux Privilege Escalation

Identifies and exploits Linux privilege escalation vectors including SUID binaries, sudo misconfigurations, and kernel vulnerabilities.

Password Attacks & Credential Cracking

Conducts professional password hash cracking, credential spraying, and authentication brute-force attacks using industry-standard tools.

Windows Privilege Escalation Expert

Provides expert guidance and automated command patterns for escalating privileges on Windows systems during security audits.

Network Service Enumeration

Performs professional-grade discovery, enumeration, and security assessment of network services and database protocols.