Automated evidence collection across compliance frameworks from cloud providers, identity systems, and security tools
System bottleneck identification and exploitation skill with throughput analysis and five focusing steps implementation
Container image and Kubernetes security scanning for CVEs, misconfigurations, and compliance
GLAW Court Records — the firm's docket-and-opinion fetch agent. Pulls dockets, filings, and opinions from CourtListener's free REST API v4 (with optional PACER/RECAP for federal…
Gets secure, one-time-use payment credentials (cards, tokens) from a Link wallet so agents can complete purchases on behalf of users.
Cryptographic implementation analysis and validation for encryption algorithms, key sizes, and certificate management
Performs comprehensive due diligence on a cryptocurrency using CoinMarketCap MCP data. Use when users ask about a specific coin beyond just its price.
Medical device cybersecurity risk assessment skill per FDA premarket and postmarket guidance
Validates permission inheritance between parent and child agents. Ensures child permissions are equal to or more restrictive than parent.
Runtime enforcement of file system boundaries and tool access restrictions. Blocks unauthorized operations and logs violations.
Defense-in-depth security validation — multi-layered checks for OWASP Top 10, secrets, auth, crypto, and data protection.
Evaluates whether a programming language dependency should be used by analyzing maintenance activity, security posture, community health, documentation quality, dependency…
Scan a source tree for command-injection vulnerable patterns: shell=True calls in Python subprocess, os.system / os.popen with interpolated strings, Node child_process.exec with…
Probe a target for directories that return auto-generated index listings instead of denying or serving a specific file — exposes the full file tree under any reachable directory,…
Scan a source tree for dynamic-code-execution APIs that an attacker can hijack: Python eval / exec / compile, JavaScript eval / Function() / setTimeout(string), Ruby eval /…
Probe a target for accidentally-served secret-bearing files in the web root — `.git/`, `.env`, `.DS_Store`, backup files, database dumps, key files, CI configs, IDE configs.
Scan a source tree for SQL-injection vulnerable patterns: string concatenation into queries, f-string interpolation in SQL, string-format substitution into raw queries, deprecated…
Audit a target's TLS certificate beyond protocol/expiry — chain ordering, OCSP stapling, revocation status, Certificate Transparency presence, key-usage flags, and over-broad…
Scan a source tree for weak cryptographic primitives: MD5 / SHA-1 used for security purposes, DES / 3DES / RC4 ciphers, ECB block mode, custom-built crypto (XOR loops, hand-rolled…
Performs security-focused differential review of code changes (PRs, commits, diffs). Adapts analysis depth to codebase size, uses git history for context, calculates blast radius,…
Helpt bij het implementeren van Digikoppeling voor beveiligde system-to-system communicatie tussen overheidsorganisaties.
TOS-compliant Discord notification monitor. Watches YOUR Discord server for security content forwarded by researchers, matches keywords, and pushes to paper-writer/dogpile via…
EATP SDK implementation reference — TrustPlane, BudgetTracker, PostureStore, security patterns, store backends, enterprise features.
Analyzes smart contract codebases to identify state-changing entry points for security auditing. Detects externally callable functions that modify state, categorizes them by…
GLAW FinCEN Cell — Crypto / Blockchain Intelligence Agent. A blockchain-analyst persona that tracks on-chain activity from PUBLIC blockchain data and explorers: wallet…
Identify the server software, framework, and component versions a target is running from its HTTP response signatures — Server header, X-Powered-By, Via, X-AspNet-Version,…
Deploy payloads and shell commands fleet-wide using reliable tasking. Execute scripts, collect data, or run commands across all endpoints with automatic handling of offline…
Systematically verifies suspected security bugs to eliminate false positives. Produces TRUE POSITIVE or FALSE POSITIVE verdicts with documented evidence for each bug.
GCP security configuration scanning and hardening using Security Command Center, Forseti, and ScoutSuite
Genera ejercicio R-exams tipo SCHOICE (seleccion unica) METACOGNITIVO. TODO ejercicio debe aplicar Progressive Disclosure y analisis de errores conceptuales.
GLAW Private Client + Asset Protection strategist — designs and papers LEGITIMATE asset-protection structures around a new corp/founder (self-settled DAPT, third-party irrevocable…
GLAW Chief Counsel & autonomous managing orchestrator — the firm's decision authority. Reads the firm roster (skills management), ingests Drive comments/suggestions, runs a…
GLAW Litigation seat — federal trial counsel. Federal civil/criminal trial strategy, pleadings, motions, and trial posture.
Design and launch SEC-compliant tokenized securities offerings. Covers the DTC No-Action Letter (Dec 2025), SEC five-category taxonomy (Mar 2026), OTCM/RWA Tokens Category 1…
Retroactively verify threat mitigations for a completed phase — from Gustavosareto/gerenciador-de-quadras
Chief Security Officer mode. Infrastructure-first security audit: secrets archaeology, dependency supply chain, CI/CD pipeline security, LLM/AI security, skill supply cha — from…
Automated PR Review, Windows Compatibility & Security Audit. Wraps maintainer_auditor.py to scan active files for Unix Bashisms, hardcoded Unix paths, and hardcoded secrets,…
Containerized security auditing and ethical hacking tools. All operations run in isolated Docker containers for safety.
Fills gaps in existing healthcare practitioner lists — adds missing phone numbers, credentials, specialties, contact info, education, reviews, and regulatory data.
Extracts structured practitioner data from healthcare practice websites. Returns names, credentials, specialties, contact info, and education for every provider on a practice's…
Validates practitioner credentials and license status against the NPI registry. Cross-references specialties, credentials, and practice addresses against official records.
HIPAA security and privacy compliance automation for ePHI protection, safeguards assessment, and audit preparation
Infrastructure as Code security scanning and policy enforcement for Terraform, CloudFormation, Kubernetes, and Pulumi
Creates repository following Clean Architecture with Protocol in domain layer and Implementation in infrastructure layer.
Internet.nl batch API voor het geautomatiseerd testen van meerdere domeinen op internetstandaarden. Authenticatie, batch requests, polling, resultaten JSON, dashboard-integratie.
Mailstandaarden getest door internet.nl: SPF (Sender Policy Framework), DKIM (DomainKeys Identified Mail), DMARC (Domain-based Message Authentication), STARTTLS, DANE (DNS-based…
Stap-voor-stap implementatiegidsen uit de internet.nl toolbox-wiki. Configuratie van DNSSEC, HTTPS/TLS, DMARC, DKIM, SPF, DANE en IPv6 op veelgebruikte platformen (BIND, NSD,…
Webstandaarden getest door internet.nl: HTTPS, TLS 1.2/1.3, HSTS, DNSSEC voor websites, IPv6 dual-stack, RPKI route origin validation, security headers (CSP, X-Frame-Options,…
Detects fail-open insecure defaults (hardcoded secrets, weak auth, permissive security) that allow apps to run insecurely in production.
GLAW Strategic Intelligence Cell — the Analyst. The analytic brain that turns raw collection into a calibrated intelligence estimate using structured analytic techniques (ACH,…
GLAW Strategic Intelligence Cell — Counterintelligence (corporate CI). Detects hostile activity aimed at the client: insider-threat and insider-fraud indicators,…
Create investigations from security events, detections, or LCQL queries. Performs HOLISTIC investigations - not just process trees, but initial access hunting, org-wide scope…
GLAW Investigations & White-Collar Crime Division lead — the firm's FBI/forensic case-building bench.
Expert-level Istio service mesh management, traffic control, security, and observability for Kubernetes
Use when working with SQLite databases in Bun. Covers Bun's built-in SQLite driver, database operations, prepared statements, and transactions with high performance.
Cryptographic key lifecycle management orchestration including generation, rotation, and destruction across key management systems
Run Checkmarx KICS for Infrastructure as Code security scanning. Use when analyzing Terraform, CloudFormation, Kubernetes, Ansible, Dockerfile, or other IaC for misconfigurations…
Helpt bij het implementeren van LLM-specifieke beveiligingscontrols voor overheidstoepassingen, gebaseerd op de OWASP LLM Top 10, BIO2, NIS2 en AVG.
ASCENT engineering framework. Use to scaffold new projects, enhance existing ASCENT projects, migrate non-ASCENT projects to ASCENT standards, or answer questions about ASCENT's…
Scan project dependencies for CVEs, outdated packages, and license compliance across npm, pip, cargo, go, maven, and other ecosystems.