Security & Testing Agent Skills

Privilege Escalation Methods

Provides comprehensive techniques and automated workflows for escalating privileges on compromised Linux and Windows systems during security assessments.

Advanced Vulnerability Scanner

Identifies and prioritizes code vulnerabilities using OWASP 2025 standards, supply chain auditing, and attack surface mapping.

Active Directory Security Testing

Facilitates comprehensive penetration testing and security audits of Microsoft Active Directory environments.

Pentest Checklist

Guides users through a structured methodology for planning, executing, and managing professional penetration testing engagements.

Better Auth Integration

Implements comprehensive authentication and authorization flows in TypeScript applications using the framework-agnostic Better Auth library.

Pentest Checklist & Security Planner

Provides a comprehensive, phased methodology for planning, executing, and remediating professional security penetration tests.

Technical Architecture & Testing Spec

Enforces production-grade architecture patterns, secure environment variable management, and rigorous testing workflows for TypeScript applications.

Ethical Hacking Methodology

Guides users through the complete penetration testing lifecycle using standardized security assessment techniques and professional reporting practices.

Better Auth Integration

Implements secure, framework-agnostic authentication and authorization systems using the Better Auth TypeScript framework.

Production Code Audit

Transforms codebases into enterprise-grade software by performing autonomous deep-scans for security, performance, and architectural vulnerabilities.

Broken Authentication Security Testing

Identifies and evaluates authentication and session management vulnerabilities in web applications to prevent unauthorized access and account takeovers.

Production Code Audit & Hardening

Transforms entire codebases into production-grade, enterprise-level systems through autonomous deep-scanning and systematic optimization.

API Security & Fuzzing Specialist

Conducts comprehensive security assessments and fuzzing across REST, SOAP, and GraphQL APIs to identify vulnerabilities like IDOR and injection.

Privilege Escalation Methods

Provides comprehensive methodologies and technical commands for escalating system privileges on Linux and Windows environments.

Broken Authentication Security Testing

Identifies and evaluates authentication and session management vulnerabilities in web applications to prevent unauthorized access and identity theft.

API Fuzzing & Bug Bounty Toolkit

Guides comprehensive API security testing and vulnerability discovery across REST, GraphQL, and SOAP architectures.

Smart Test Fixer

Systematically identifies and resolves failing tests using intelligent error grouping and prioritized fixing strategies.

Network 101 Lab Setup

Configures and tests common network services including HTTP, HTTPS, SNMP, and SMB for penetration testing environments.

Active Directory Attack & Audit

Facilitates comprehensive security assessments and penetration testing of Microsoft Active Directory environments through guided reconnaissance and exploitation workflows.

Verified Completion Guardrail

Enforces a strict verification protocol requiring fresh command output and evidence before any work is claimed as complete.

Shodan Reconnaissance & Security Auditing

Conducts comprehensive reconnaissance on internet-connected devices and services using the Shodan search engine, CLI, and API.

Verification Before Completion

Enforces rigorous evidence-based verification before any task is marked as finished, committed, or merged.

IDOR Vulnerability Testing

Provides systematic methodologies and workflows for identifying, exploiting, and remediating Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.

Shodan Reconnaissance & Pentesting

Automates network reconnaissance and vulnerability discovery using Shodan to identify exposed internet-connected devices and services.

Active Directory Security Assessment

Provides comprehensive workflows and technical guidance for professional Active Directory penetration testing and security auditing.

Web Application Testing

Automates frontend testing and browser interactions for local web applications using Playwright scripts.

Raven Test

Automates deep QA processes including edge case verification, code quality audits, and comprehensive test reporting.

TDD Workflow

Implements a rigorous Test-Driven Development cycle to ensure high-quality, bug-free code through Red-Green-Refactor principles.

TDD Workflow Pro

Implements a rigorous Test-Driven Development cycle to ensure high-quality, bug-free code through iterative Red-Green-Refactor patterns.

Web App Testing & Playwright Toolkit

Provides a comprehensive toolkit for automating and testing local web applications using Playwright and automated server management.