Security & Testing Claude 技能

Exhaustive Systems Analysis

Conducts deep, systematic audits of codebases to identify bugs, race conditions, and architectural flaws before production deployment.

Web Application Testing

Automates and tests local web applications using Playwright with integrated server lifecycle management.

Test Fixer & Debugger

Systematically identifies, groups, and resolves failing test suites using smart error analysis and prioritized fixing strategies.

Metasploit Framework Penetration Testing

Guides and automates the use of the Metasploit Framework for comprehensive security assessments, vulnerability exploitation, and post-exploitation tasks.

Next.js Supabase Authentication

Implements secure, production-ready authentication workflows using Supabase Auth and the Next.js App Router.

Metasploit Framework Expert

Guides users through comprehensive penetration testing workflows using the Metasploit Framework for exploitation and security assessments.

AL Test-Driven Development (TDD)

Implements rigorous Red-Green-Refactor patterns for AL development using telemetry-based verification to ensure correct code path execution.

Systematic Test Fixing

Automates the identification and resolution of failing software tests through smart error grouping and prioritized fixing strategies.

Test-Driven Development (TDD)

Guides Claude through the Red-Green-Refactor cycle to ensure robust, well-designed, and maintainable code.

Testing Patterns & Legacy Code Refactoring

Provides proven strategies and patterns for testing legacy code and breaking complex dependencies safely.

Active Directory Security Auditing

Provides professional frameworks and commands for assessing the security posture of Microsoft Active Directory environments.

AI Test Generation Workflow

Generates high-quality test suites using unit, property-based, and mutation testing patterns to maximize code reliability.

TDD Refactor Phase Expert

Enhances code quality by guiding Claude through the Refactor stage of Test-Driven Development without altering external behavior.

TDD Red Phase Assistant

Guides developers through the initial phase of Test-Driven Development by designing and validating failing tests before implementation.

Quantum Cryptography Signing

Implements NIST-standardized quantum-resistant cryptographic signing to secure agentic workflows and audit trails against future quantum attacks.

Code Review Pipeline

Orchestrates specialized AI agents to perform comprehensive code reviews, security audits, and architectural analysis using a scatter-gather consensus pattern.

Test Generation Workflow

Automates the creation of high-quality test suites using property-based testing and mutation analysis to identify critical edge cases.

Hookify Rules Writer

Guides the creation and configuration of custom Hookify guardrails to enforce coding standards and safety protocols in Claude Code.

File Path Traversal Testing

Identifies and tests directory traversal and Local File Inclusion (LFI) vulnerabilities to secure web application filesystems.

Spec-Driven TDD Workflow

Implements a structured Test-Driven Development lifecycle that moves seamlessly from requirements and design to traceable code implementation.

Smart Test Coverage Validator

Validates code changes by ensuring >70% test coverage for modified lines and verifying full suite integrity.

Next.js Supabase Authentication

Implements secure, production-ready authentication for Next.js applications using Supabase SSR and App Router patterns.

Hookify Rule Configuration

Standardizes the creation of custom guardrails and automation triggers to monitor and guide Claude's actions in real-time.

Systematic Debugging

Enforces a rigorous, evidence-based process for identifying root causes before implementing technical fixes to prevent guess-and-check thrashing.

Automated Test Suite Writer

Generates comprehensive unit, integration, and E2E tests with a focus on edge cases, error conditions, and industry best practices.

Active Directory Security Auditing

Provides comprehensive guidance and automated workflows for identifying vulnerabilities and performing authorized security assessments on Microsoft Active Directory environments.

Windows Privilege Escalation Guide

Provides systematic methodologies for discovering and exploiting privilege escalation vulnerabilities on Windows systems during security audits.

Verification Before Completion

Enforces a strict evidence-based workflow by requiring successful command execution before any task completion claims are made.

Website Review

Conducts comprehensive QA reviews of websites by automating visual inspection, error detection, accessibility audits, and performance testing.

File Path Traversal Security Testing

Identifies and tests for directory traversal vulnerabilities to prevent unauthorized access to sensitive server files.