Analyze a web app's source code, execute real exploit attempts against the running target, and return proof-backed findings before release.
Detect API security vulnerabilities including injection, broken auth, and data exposure. Use when scanning APIs for security vulnerabilities.
Scan container images for known vulnerabilities using Anchore Grype with SBOM-based matching and configurable
Detect exposed secrets, API keys, and credentials in code. Use when auditing for secret leaks. Trigger with 'scan for secrets', 'find exposed keys', or 'check credentials'.
Tenable Nessus is the industry-leading vulnerability scanner used to identify security weaknesses across network
Scan for input validation vulnerabilities and injection risks. Use when reviewing user input handling.
Detect significant price movements and unusual volume across crypto markets. Calculates significance scores combining price change, volume ratio, and market cap.
Rédige et met à jour les spécifications SDD par cas d'utilisation (UC) : spec racine (projet principal) ou spec d'extension (fonction ajoutée à une racine existante).
中文优先:用于安全bountyhunter相关任务,帮助识别、设计、实现或验证对应工作流。English keywords: Hunt for exploitable, bounty-worthy security issues in repositories.
Performs advanced SAST (Static Application Security Testing) and compliance analysis on Pull Request diffs.
Plans security penetration tests for web applications. Analyzes codebase, API routes, auth implementation, and infrastructure config to generate comprehensive pentest plans.
Generate security assessment reports in docx format with findings, risk ratings, and remediation recommendations.
AgentShield security audit with 5 scanning categories, 102 static analysis rules, and optional red-team simulation.
You are a security expert specializing in dependency vulnerability analysis, SBOM generation, and supply chain security.
Coordinate multi-layer security scanning and hardening across application, infrastructure, and compliance controls.
Static security analysis agent. Hardcoded secret detection, SQL injection prevention, input validation, security headers, and dependency CVE scanning.
Skeptic Engine v2.1 — falsification-first анализ в 4 режимах. Триггеры: 'skeptic:', 'сломай идею', 'стоит ли делать', 'проверь идею', 'аудит архитектуры', 'проверь решение',…
Audit Solana programs (Anchor or native Rust) for security vulnerabilities. Use when reviewing smart contract security, finding exploits, analyzing attack vectors, performing…
SpiderFoot is an open-source OSINT automation tool that queries over 200 data sources to gather intelligence about IP addresses, domain names, email addresses, and other targets.
Provide systematic methodologies for automated SQL injection detection and exploitation using SQLMap.
Subfinder is a passive subdomain discovery tool by ProjectDiscovery that finds valid subdomains for websites using curated online sources.
使用 subfinder 进行被动子域名枚举。当需要发现目标域名的子域名、扩展攻击面时使用。subfinder 是 ProjectDiscovery 出品的被动子域名发现工具,聚合 Shodan、Censys、SecurityTrails、VirusTotal 等多数据源,快速且隐蔽。任何涉及子域名枚举、攻击面发现、被动信息收集的场景都应使用此技能
Domain knowledge for quantitative risk scoring — four-dimensional scoring model (CVSS 3.1, exploitability, scalability, reachability), CVSS base vector mappings, composite score…
Reverse engineer and security-test Telegram bots — API analysis, callback interception, exploit discovery, and vulnerability documentation
Use telnet to interact with IoT device shells for pentesting operations including device enumeration, vulnerability discovery, credential testing, and post-exploitation.
Expert in tenant creditworthiness assessment and financial statement analysis. Use when evaluating tenant credit quality, analyzing financial ratios, assessing default risk, or…
Deliberately attack your own plans, systems, and assumptions to find weaknesses before adversaries or reality does.
Find, verify, and analyze leaked credentials across Git repositories, Slack, Jira, Docker images, and more using TruffleHog.
Vocabulary learning strategies and retention science for any language -- frequency-based word selection, spaced repetition systems (Ebbinghaus forgetting curve, Leitner system,…
Composes multi-step exploit chains by correlating vulnerabilities across domains, calculates real impact of chained findings, generates end-to-end PoC scripts, and produces bug…
The Warmup. A daily intelligence brief for the first coffee. CISO mode delivers a structured cybersecurity digest — active threat actors mapped to MITRE ATT&CK, emerging CVEs with…
Authorized web application penetration testing — reconnaissance, vulnerability analysis, proof-based exploitation, and professional reporting.
Web2 recon pipeline — subdomain enumeration (subfinder, Chaos API, assetfinder), live host discovery (dnsx, httpx), URL crawling (katana, waybackurls, gau), directory fuzzing…
Web security assessment. USE WHEN web assessment, pentest, security testing, vulnerability scan. SkillSearch('webassessment') for docs.
Provide systematic methodologies for discovering and exploiting privilege escalation vulnerabilities on Windows systems during penetration testing engagements.
Structured web scraping for AI coders: explore, then exploit with shipped templates, runner, and hooks.
· Hunt novel vulnerabilities: reversing, patch diffing, fuzzing, attack surface, PoCs. Triggers: 'zero-day', '0-day', 'vulnerability research', 'variant analysis', 'fuzz',…
Android Accessibility Service security analysis and pentesting. Use this skill whenever the user mentions Android security testing, accessibility service abuse, RAT detection,…
This skill enables Claude to automatically scan code and configuration files for potential data privacy vulnerabilities using the data-privacy-scanner plugin.
This skill enables Claude to perform comprehensive database security scans using the database-security-scanner plugin.
Elite manual security code review skill for deep, adversarial vulnerability hunting and exploit-chain discovery.
This skill should be used when the user asks to "learn ethical hacking", "understand penetration testing lifecycle", "perform reconnaissance", "conduct security scanning",…
Apply organizational ambidexterity theory to balance exploration and exploitation activities. Use this skill when the user needs to diagnose whether an organization is…
Apply the Efficient Market Hypothesis (Fama, 1970) to evaluate information incorporation in asset prices across weak, semi-strong, and strong forms.
Apply panel data analysis with fixed effects, random effects, and dynamic GMM to exploit longitudinal variation and control for unobserved heterogeneity.
Apply Smith and Lewis's paradox theory to identify and manage organizational tensions across performing, organizing, belonging, and learning dimensions.
Apply social capital theory (Putnam, Coleman, Bourdieu, Burt) to analyze how network structures and trust generate value or impose constraints.
This skill covers implementing Gitleaks for detecting and preventing hardcoded secrets in git repositories.
Use this skill to convert a security incident or public vulnerability pattern into reusable audit prompts, checklists, tests, and AGENTS.md rules.
This skill enables Claude to automatically scan source code for potential input validation vulnerabilities.
CISA Known Exploited Vulnerabilities (KEV) catalog. List actively exploited vulnerabilities prioritized by CISA. **Dependency**: This is an x-cmd module.
This skill should be used when the user asks to "use Metasploit for penetration testing", "exploit vulnerabilities with msfconsole", "create payloads with msfvenom", "perform…
This skill covers implementing Software Composition Analysis (SCA) using Snyk to detect vulnerable open-source
Use this skill as the designated specialist reviewer for Zeta.Core's query planner / optimiser — join ordering, predicate pushdown, index selection, SIMD/tensor-intrinsic kernel…
Use this skill to audit RAG and AI application security, including retrieval boundaries, prompt injection, citations, memory, and data exposure.
Generates tailored giskard.checks evaluation suites for RAG (Retrieval-Augmented Generation) systems.
This skill should be used when the user asks to "follow red team methodology", "perform bug bounty hunting", "automate reconnaissance", "hunt for XSS vulnerabilities", "enumerate…
This skill covers integrating Aqua Security''s Trivy scanner into CI/CD pipelines for comprehensive container
This skill should be used when the user asks to "perform vulnerability scanning", "scan networks for open ports", "assess web application security", "scan wireless networks",…
Authorized exploitation, proof-of-concept chain, kill-chain mapping.