Security & Testing Agent Skills

API Security & Fuzzing Specialist

Guides comprehensive security assessments for REST, GraphQL, and SOAP APIs to identify vulnerabilities like IDOR, injection attacks, and authentication bypasses.

Shodan Reconnaissance & Pentesting

Automates network reconnaissance and vulnerability discovery using the Shodan search engine to identify exposed internet-connected devices and services.

AWS Penetration Testing

Conducts comprehensive security audits and penetration testing on Amazon Web Services environments to identify vulnerabilities and privilege escalation paths.

Node.js TDD Workflow

Implements a structured Test-Driven Development (TDD) methodology for Node.js and TypeScript projects to ensure code quality and reliability.

Red Team Security & Bug Bounty

Automates security reconnaissance and bug bounty hunting workflows using proven red team methodologies and expert tool configurations.

Component Quality Analyzer

Audits Claude Code components for effectiveness, security, and usability through systematic quality scoring and optimization suggestions.

Clerk Authentication Integration

Simplifies the implementation of secure user authentication and session management using Clerk for modern web applications.

Active Directory Attack & Pentesting

Provides comprehensive workflows and tool commands for identifying vulnerabilities and executing advanced penetration testing techniques in Microsoft Active Directory environments.

Metasploit Framework Security Expert

Streamlines penetration testing workflows by providing comprehensive guidance for the Metasploit Framework and its suite of exploitation tools.

Security & Privacy Engineering

Manages security policies, privacy compliance, and risk assessments to ensure organizational data integrity and regulatory adherence.

Metasploit Framework Security Suite

Provides comprehensive guidance for performing penetration testing, vulnerability exploitation, and post-exploitation tasks using the Metasploit Framework.

TDD Requirements Clarifier

Facilitates the pre-testing phase of TDD by uncovering ambiguities, defining acceptance criteria, and identifying edge cases before code is written.

Verification Guard

Enforces a mandatory verification protocol requiring empirical evidence before claiming any task completion or code success.

TDD Workflow

Guides the development process through the Red-Green-Refactor cycle to ensure robust, test-backed code implementation.

Pentest Checklist

Standardizes the planning, execution, and remediation phases of security penetration testing with structured methodologies and best practices.

Shodan Reconnaissance & Security Auditing

Conducts comprehensive reconnaissance on internet-connected devices and services using the Shodan search engine, CLI, and API.

Vulnerability Scanner

Performs advanced security audits and vulnerability analysis using OWASP 2025 standards and supply chain security principles.

Smart Test Fixing

Systematically identifies, groups, and resolves failing test suites using an optimized infrastructure-first debugging strategy.

Test-Driven Development (TDD)

Enforces a rigorous Red-Green-Refactor cycle to ensure all production code is preceded by a failing test.

Violet Plugin Tester

Validates, tests, and ensures the quality of Violet AI plugins before deployment to maintain structural consistency and reliability.

Test Coverage Architect

Builds comprehensive, executable test coverage for mission-critical paths while eliminating empty stubs and vanity metrics.

Oracle Reasoning Engine

Invokes high-reasoning models to perform deep analysis, complex debugging, and architectural reviews for your codebase.

Kubernetes Security & Compliance

Hardens Kubernetes clusters using zero-trust models, RBAC design, and automated policy enforcement for production-grade security.

AI-Powered E2E Testing with Browser-Use

Generates and executes end-to-end browser tests using AI-driven automation for complex user journeys and authenticated flows.

ERC-4337 Privacy Wallet Dev

Develops privacy-preserving Account Abstraction wallets for vehicle identity and sensitive data management using ERC-4337 standards.

Claude Skill Reviewer

Validates and audits Claude Code skills and agents against architectural, implementation, and storage standards.

Security Auditor

Reviews source code for vulnerabilities and provides actionable remediation steps to harden applications against cyber threats.

Skill Validator

Validates Claude Code skills, commands, agents, hooks, and plugins against specifications and best practices to ensure structural integrity and quality standards.

Secure Secrets Management

Implements robust secrets management and rotation strategies across CI/CD pipelines and cloud environments to protect sensitive credentials.

Cloud Secrets Management

Implements secure handling of credentials and sensitive data within CI/CD pipelines and cloud environments.