Claude Code Skills·Claude Skills·The open SKILL.md registry for Claude
ClaudSkillsSecurity › Appsec Tools

Appsec Tools

219 Claude Code skills in the Appsec Tools sub-category of Security.

219 skills · updated 2026-05-27 · showing 1–60 of 219 by quality score

For the full experience including quality scoring and one-click install features for each skill — upgrade to Pro.

loom-security-scan
Quick routine security checks for secrets, dependencies, container images, and common vulnerabilities.
protocol-fuzzer
Expert skill for protocol fuzzing, vulnerability discovery, and security testing
scanit
Packages and runs a local SAST pipeline scan to identify source code vulnerabilities.
semgrep
Run Semgrep static analysis scan on a codebase using parallel subagents. Supports two scan modes — "run all" (full ruleset coverage) and "important only" (high-confidence security…
semgrep-rule-creator
Creates custom Semgrep rules for detecting security vulnerabilities, bug patterns, and code patterns. Use when writing Semgrep rules or building custom static analysis detections.
cve-research
Research CVEs and security advisories for project dependencies. Uses Exa, NVD API, OSV.dev, and GitHub Advisory Database to find known vulnerabilities.
cve-scan
Scan project dependencies for known CVEs using native audit tools (npm, pip, composer, cargo, go, bundler, dart)
sast-scan
Static application security testing (SAST) for changed source files — Vulnetix''s built-in rule set plus optional Semgrep augmentation when `.semgrep` config is present.
CVE/CWE Database Skill
CVE and CWE database querying and management
security-scanner
Run security scans including SAST, dependency scanning, and secret detection
59-cost-disaster-recovery
Create your operational excellence skill in one prompt, then learn to improve it throughout the chapter
agent-database-administrator
Expert database administrator specializing in high-availability systems, performance optimization, and disaster recovery.
algorand-vulnerability-scanner
Scans Algorand smart contracts for 11 common vulnerabilities including rekeying attacks, unchecked transaction fees, missing field validations, and access control issues.
alibaba-resilience-bcdr-review
Review Alibaba Cloud workload HA and BCDR designs — RDS High-Availability Edition failover, PolarDB Global Database Network, ACK multi-zone, ECS disaster recovery cross-region,…
alibaba-solution-architect
Design Alibaba Cloud solutions — product selection (PolarDB vs RDS, ACK vs ASK vs SAE, MaxCompute vs AnalyticDB), architecture patterns, landing zone design, and disaster recovery…
allocate-cve
Walk a security team member through allocating a CVE for an tracking issue. Prints the ASF Vulnogram allocation URL and a CVE-ready title (the issue title stripped of…
api-fuzzing-bug-bounty
Provide comprehensive techniques for testing REST, SOAP, and GraphQL APIs during bug bounty hunting and penetration testing engagements.
openstack-backup
OpenStack backup operations skill for protecting cloud infrastructure through systematic backup strategies and disaster recovery procedures.
backup-disaster-recovery
Implement backup strategies, disaster recovery plans, and data restoration procedures for protecting critical infrastructure and data.
backup-etcd
Create and manage etcd backups for OpenShift control plane disaster recovery, including automated backup procedures and verification.
bcm-specialist
Expert for Business Continuity Management (BCM) with deep knowledge of ISO 22301, ISO 22313, and integration with ISO 27001.
bearer-cli-sast-code-security-privacy-scanner
Bearer CLI is an open-source static application security testing (SAST) tool that scans source code to identify, filter, and prioritize security vulnerabilities and privacy risks.
building-vulnerability-aging-and-sla-tracking
Implement a vulnerability aging dashboard and SLA tracking system to measure remediation performance against
building-vulnerability-dashboard-with-defectdojo
Deploy DefectDojo as a centralized vulnerability management dashboard with scanner integrations, deduplication,
building-vulnerability-exception-tracking-system
Build a vulnerability exception and risk acceptance tracking system with approval workflows, compensating controls
cairo-vulnerability-scanner
Scans Cairo/StarkNet smart contracts for 6 critical vulnerabilities including felt252 arithmetic overflow, L1-L2 messaging issues, address conversion problems, and signature…
tray-caracteristicas
API de Características de Produtos da Tray. Utilize quando o desenvolvedor precisar gerenciar características (propriedades) dos produtos, incluindo cadastro, atualização,…
check-vanta
Fetches dependency vulnerabilities from Vanta, Snyk, Dependabot, or GitHub Security Advisories, creates a tracking issue in Jira/Linear/GitHub Issues, then fixes, commits, pushes,…
clawsec-scanner
Automated vulnerability scanner for agent platforms. Performs dependency scanning (npm audit, pip-audit), multi-database CVE lookup (OSV, NVD, GitHub Advisory), SAST analysis…
clickhouse-operations
Complete ClickHouse operations guide for DevOps and SRE teams managing production deployments. Provides practical guidance on monitoring essential metrics (query latency,…
tray-clientes
API de Clientes da Tray. Utilize quando o desenvolvedor precisar gerenciar dados de clientes da loja: listagem, consulta, cadastro, atualização e exclusão.
codex-fix
Post-edit loop that invokes `/codex:rescue` for a second-model review of the current branch, collects the findings, and hands them off to `refactor-verify`'s review-driven fix…
container-grype
Container vulnerability scanning and dependency risk assessment using Grype with CVSS severity ratings, EPSS exploit probability, and CISA KEV indicators.
container-image-vulnerability-scanner
Scans Docker and OCI container images for vulnerabilities using Trivy JSON output and the Docker Hub API v2 for image metadata.
container-scanner
Scans containers and Dockerfiles for security issues. Wraps Hadolint for Dockerfile linting and Trivy for container image scanning.
google-continuous-fuzzing
Apply Google's continuous fuzzing methodology using OSS-Fuzz and ClusterFuzz. Emphasizes coverage-guided fuzzing, automated bug triage, and integration into CI/CD.
cosmos-vulnerability-scanner
Scans Cosmos SDK blockchain modules and CosmWasm contracts for consensus-critical vulnerabilities — chain halts, fund loss, state divergence.
create-semgrep-rule
Create custom Semgrep rules for vulnerability detection. Use when writing new rules for specific vulnerability patterns, creating org-specific detections, or building rules for…
crisis-triage
Audit emergency and crisis triage systems for call prioritization accuracy, resource dispatching algorithm quality, severity classification model evaluation, response time…
crisis-war-room
Startup crisis management operating system covering 14 crisis types with severity scoring, escalation matrices, war room protocols, stakeholder communication playbooks, runway…
cto-risk-resilience
Expert methodology for identifying, assessing, and mitigating technical and operational risks including security, incidents, compliance, and disaster recovery.
cve-search
Searches the NIST NVD database for CVE vulnerabilities using API 2.0. Returns CVE details, CVSS scores, affected software, and references.
cve-tracking-system
Эксперт CVE tracking. Используй для vulnerability management, security advisories и patch prioritization.
cveapi
Look up CVE vulnerability details by ID via MITRE CVE API with NVD fallback — severity, CVSS score, affected products, and references
dast-ffuf
Fast web fuzzer for DAST testing with directory enumeration, parameter fuzzing, and virtual host discovery.
dast-nuclei
Fast, template-based vulnerability scanning using ProjectDiscovery's Nuclei with extensive community templates covering CVEs, OWASP Top 10, misconfigurations, and security issues…
dast-scanner
Dynamic Application Security Testing execution and management. Configure and execute OWASP ZAP and Nuclei scans, run authenticated scanning, manage scan policies and scope,…
dast-zap
Dynamic application security testing (DAST) using OWASP ZAP (Zed Attack Proxy) with passive and active scanning, API testing, and OWASP Top 10 vulnerability detection.
data-backup-patterns
Implement reliable data backup and recovery strategies with automated scheduling, encryption, rotation policies, and disaster recovery testing.
data-replication-setup
Set up database replication for high availability and disaster recovery. Use when configuring master-slave replication, multi-master setups, or replication monitoring.
database-backup-restore
Implement backup and restore strategies for disaster recovery. Use when creating backup plans, testing restore procedures, or setting up automated backups.
dependency-vulnerability-checker
Dependency Vulnerability Checker - Auto-activating skill for Security Fundamentals. Triggers on: dependency vulnerability checker, dependency vulnerability checker Part of the…
dependency-vulnerability-scanner-agent
Scans project dependencies using OSV.dev API and Snyk CLI for known CVEs across npm, PyPI, Maven, and Go modules. Generates SBOM in CycloneDX format via syft.
dependency-vulnerability-triage
Turns npm audit/Snyk results into prioritized patch plans with severity assessment, safe upgrade paths, breaking change analysis, and rollback strategies.
deps-upgrade
Dependency-upgrade campaign — outdated scan, batch-by-severity, breaking-change remediation, lockfile audit.
dev-vulnerability-analyzer
Analyse et évalue les vulnérabilités d'un système ou d'une application. À utiliser pour comprendre et prioriser les vulnérabilités.
disaster-prediction
Analyze disaster prediction and early warning systems — model accuracy for flood, earthquake, wildfire, hurricane, and tsunami hazards, data pipeline reliability from sensor…
disaster-recovery
Implement disaster recovery and backup strategies for Proxmox. Create and manage backups, test recovery procedures, and ensure business continuity for your infrastructure.
disaster-recovery-testing
Execute comprehensive disaster recovery tests, validate recovery procedures, and document lessons learned from DR exercises.
dns-management
Manage DNS records, routing policies, and failover configurations for high availability and disaster recovery.
All Security skills →
More in SecurityWeb Security (479) · Threat Hunting (328) · Red Team (244) · Identity Access (223) · Network Security (196) · Compliance (110) · Malware Analysis (106) · Forensics (63) · Cloud Security (62) · Appsec Build (37) · Crypto Keymgmt (33) · Zero Trust (26) · Incident Response (12) · Ot Ics Security (6)

Categories

Use cases

Popular tags

Learn

Site