>_
🔒

Penetration Testing

296 skills in Testing & Security > Penetration Testing

phrack-exploit-analyzer

Phrack magazine article analysis, binary exploitation, vulnerability research, exploit development, Use-After-Free (UAF), heap exploitation, ROP chain, GDB debugging, pwntools, memory corruption, CVE analysis, ProFTPd exploitation, Docker exploit lab, security research, educational hacking, buffer overflow, stack exploitation, shellcode development

majiayu000/claude-skill-registry
0
0
更新日 5d ago

kratos-wire-provider

Manages Wire dependency injection providers in go-kratos microservices. Adds constructors to ProviderSets and regenerates Wire code. Use when integrating new components into dependency injection.

alecszaharia/brizy-microservices-go
0
0
更新日 5d ago

security-checklist

Application security best practices and vulnerability prevention. Use when reviewing code for security issues, implementing authentication, or discussing OWASP vulnerabilities. Triggers on mentions of security, authentication, authorization, XSS, SQL injection, CSRF, OWASP, encryption, secrets.

eous/dotclaude
0
0
更新日 5d ago

clean-architecture-review

Marketplace

Validate Clean Architecture implementation in iOS. Checks layer separation (Presentation/Domain/Data), MVVM patterns, dependency injection with Swinject, and UseCase/Repository patterns. Use when reviewing architecture, checking layer boundaries, or validating DI.

daispacy/py-claude-marketplace
0
0
更新日 5d ago

web-security

Exploits web application vulnerabilities. Use when working with SQL injection, XSS, SSRF, SSTI, command injection, path traversal, authentication bypass, deserialization, or any web-based CTF challenge.

kiwamizamurai/cctf
0
0
更新日 5d ago

brakeman

Marketplace

Static analysis security vulnerability scanner for Ruby on Rails applications. Use when analyzing Rails code for security issues, running security audits, reviewing code for vulnerabilities, setting up security scanning in CI/CD, managing security warnings, or investigating specific vulnerability types (SQL injection, XSS, command injection, etc.). Also use when configuring Brakeman, reducing false positives, or integrating with automated workflows.

el-feo/ai-context
0
0
更新日 5d ago

owasp-security-review

OWASP Cheat Sheet Series に基づくセキュリティレビューと実装支援。コードレビュー依頼、セキュリティ関連の実装・調査、脆弱性チェック時に使用する。XSS, SQL Injection, CSRF, 認証認可などのセキュリティトピックを扱う。

ayuzaka/dotfiles
0
0
更新日 5d ago

prompting-patterns

Marketplace

Automatically applies when engineering prompts for LLMs. Ensures proper prompt structure, templates, few-shot examples, context management, and injection prevention.

ricardoroche/ricardos-claude-code
0
0
更新日 5d ago

nmap-scan

Professional network reconnaissance and port scanning using nmap. Supports various scan types (quick, full, UDP, stealth), service detection, vulnerability scanning, and NSE scripts. Use when you need to enumerate network services, detect versions, or perform network reconnaissance.

consigcody94/bounty-buddy
0
0
更新日 5d ago

risk-prioritization-framework-for-engineers

Marketplace

Risk prioritization framework for engineers. CVSS interpretation, exploitability analysis, blast radius calculation, and decision trees for patch management and vulnerability remediation.

adaptive-enforcement-lab/claude-skills
0
0
更新日 5d ago

subagent-rules

Proper delegation patterns for Task() invocations with governance context injection

elevanaltd/oa
0
0
更新日 5d ago

app-architecture

Create apps following contract-port architecture with composition roots. Use when creating new apps in apps/, scaffolding CLI tools, setting up dependency injection, or when the user asks about app structure, entrypoints, or platform-agnostic design.

majiayu000/claude-skill-registry
0
0
更新日 5d ago

vulnerability-validation

Validate security findings from commit-security-scan by assessing exploitability, filtering false positives, and generating proof-of-concept exploits. Use after running commit-security-scan to confirm vulnerabilities.

Factory-AI/skills
0
0
更新日 5d ago

clean-architecture

Marketplace

Clean Architecture and SOLID principles implementation including dependency injection, layer separation, domain-driven design, hexagonal architecture, and code quality patterns

Lobbi-Docs/claude
0
0
更新日 5d ago

global-validation

Implement secure, consistent input validation on both client and server sides. Use this skill when validating form inputs, API request bodies, or user-provided data. When sanitizing input to prevent injection attacks (SQL, XSS, command injection). When writing allowlist-based validation, type checking, or business rule validation. When providing field-specific error messages to users.

89jobrien/mcp-joecc
0
0
更新日 5d ago

composable-rust-architecture

Expert knowledge for building event-driven systems with Composable Rust framework. Use when implementing reducers, designing state machines, working with effects, creating environment traits for dependency injection, building stores, or answering questions about core architectural patterns and the unidirectional data flow model.

majiayu000/claude-skill-registry
0
0
更新日 5d ago

research-finding

Expert Security Analyst for deep research and exploitability analysis of security findings. Use when you have a specific finding from semgrep, trufflehog, or manual code review that needs thorough investigation to determine if it represents an exploitable vulnerability with real-world impact.

majiayu000/claude-skill-registry
0
0
更新日 5d ago

wordpress-plugin-core

This skill provides comprehensive knowledge for WordPress plugin development, covering core patterns, security best practices, database interactions, hooks/filters, Settings API, custom post types, REST API, and AJAX. This skill should be used when creating WordPress plugins, troubleshooting security issues, implementing custom post types/taxonomies, building admin interfaces, or working with the WordPress database.Use when: Creating new WordPress plugins, implementing nonces/sanitization/escaping, working with $wpdb and prepared statements, building Settings API pages, registering custom post types or taxonomies, implementing REST API endpoints, handling AJAX requests, debugging plugin activation/deactivation issues, preventing SQL injection/XSS/CSRF vulnerabilities.Keywords: wordpress plugin development, wordpress security, wordpress hooks, wordpress filters, wordpress database, wpdb prepare, sanitize_text_field, esc_html, wp_nonce, custom post type, register_post_type, settings api, rest api, admin-aja

jackspace/ClaudeSkillz
0
0
更新日 5d ago

ast-injection

Use AST-aware edits to reduce syntax errors and maintain structure.

CheekyCodexConjurer/quant-lab
0
0
更新日 5d ago

kubernetes-helm-deployment

Kubernetes deployment patterns with Helm charts. Covers deployments, services, ConfigMaps, Secrets, Dapr sidecar injection, health probes, and resource management.

Hamza123545/Todo_giaic_five_phases
0
0
更新日 5d ago