AI Skills for Security Engineer

Ensures code adheres to security best practices, providing a comprehensive checklist for authentication, input validation, and sensitive data handling.

Provides comprehensive guidelines for securing Django applications against common vulnerabilities and ensuring safe deployment.

Scans Claude Code settings for security vulnerabilities using AgentShield, ensuring safe configurations and mitigating risks.

Implements best practices for security in Java Spring Boot applications, covering authentication, authorization, and data protection.

Implements Kubernetes security policies for production-grade security, including RBAC and network isolation for clusters.

Configures SAST tools for automated vulnerability detection, enhancing security in application code through effective DevSecOps practices.

Enables secure service-to-service communication using mutual TLS in zero-trust networking environments.

Utilizes the STRIDE methodology for systematic threat identification in security analysis and documentation.

Master authentication and authorization patterns to build secure, scalable access control systems for APIs and applications.

Equips users with advanced memory forensics techniques for incident response and malware analysis using tools like Volatility.

Equips users with advanced techniques for network protocol reverse engineering, including packet analysis and protocol documentation.

Equips analysts with techniques to bypass software protections for authorized analysis, enhancing malware research and security assessments.

Transforms threat analysis into actionable security requirements for effective compliance and risk management.

Maps threats to security controls for effective risk management and prioritization of security investments.

Visualizes threat paths through comprehensive attack trees, aiding in identifying defense gaps and communicating security risks.

Ensures code adheres to security best practices, identifying vulnerabilities in authentication, API endpoints, and sensitive data handling.

Audits Laravel applications for security vulnerabilities, ensuring compliance with OWASP standards and best practices.

Provides techniques for attacking Microsoft Active Directory, covering reconnaissance, credential harvesting, and privilege escalation.

Provides techniques for testing API security, identifying vulnerabilities, and conducting penetration testing for REST, SOAP, and GraphQL APIs.

Provides techniques for penetration testing AWS environments, covering IAM enumeration, privilege escalation, and security audits.