Automates comprehensive security vulnerability scans and penetration testing for web applications and APIs.
The Security Test Scanner skill empowers Claude to perform end-to-end security assessments by integrating with industry-standard tools like OWASP ZAP and sqlmap to detect critical vulnerabilities. It automates the discovery of OWASP Top 10 risks, including SQL injection, XSS, and authentication weaknesses, while providing structured reports complete with CVSS scores and remediation guidance. This skill is ideal for developers and security engineers looking to bake automated security auditing into their CI/CD pipelines or pre-deployment workflows.
主要功能
01Step-by-step remediation guidance and secure coding recommendations
02Compliance assessment mapping for OWASP ASVS, GDPR, and PCI DSS
03Comprehensive report generation with severity ratings and CVSS scores
04Automated vulnerability detection for OWASP Top 10 security risks
05Identification of SQL injection, XSS, CSRF, and authentication bypasses
061 GitHub stars
使用场景
01Generating detailed security documentation for compliance and stakeholder reviews
02Performing automated penetration tests on web applications before a major release
03Auditing API endpoints for improper authorization and sensitive data exposure
