SKILL.md packages that extend Claude Code, Cursor, Copilot, and other AI agents.
Tags

aboutsecurity
Practical reverse-engineering techniques for CTFs: static & dynamic analysis, anti-debug bypasses, custom VM handling, and multi-platform tooling.

antigravity-awesome-skills
A step-by-step workflow for testing REST and GraphQL APIs, covering authentication, authorization, input validation, rate limiting, GraphQL checks, and error-ha

opencode-skills-collection
Guided methodology and best practices for binary reverse engineering, covering static and dynamic analysis workflows and common tooling.

lingxling
Guides and checklists for binary reverse-engineering workflows (IDA, Ghidra, radare2, angr) including static/dynamic analysis phases and best practices.

Auth0 Agent Skills
Guides an agent to add Auth0 authentication to native Android apps (Kotlin/Java), including Web Auth, secure credential storage, biometric protection, and MFA,

api-relay-audit
An 11-step automated security audit for AI API relay/proxy services — detects prompt injection, context truncation, tool-call substitution, stream integrity iss

pi_agent_rust
Policy-as-code and linting guardrails for Perplexity integrations: ESLint rules, pre-commit hooks, CI checks, and runtime safeguards to prevent secrets and unsa

openclaw-security-watchdog
Run a one-click system security inspection that produces a human-friendly report; supports local (offline) scans and an optional --push mode for threat-intel en

antigravity-awesome-skills
Guided workflow for testing REST and GraphQL APIs: authentication, authorization, input validation, rate limiting, error handling, and common API vulnerabilitie

application-skills
Integrate and automate Acunetix vulnerability scans, targets, reports and scheduled scans via the Membrane CLI.

skills
A pay-per-use Security OS for autonomous agents on Base offering 31 tools for security, safety, research, data, and earning features.

antigravity-awesome-skills
Provides step-by-step guidance and best practices for binary reverse engineering: static analysis, dynamic tracing, disassembly, and documentation workflows for

lingxling
A structured workflow for testing REST and GraphQL APIs covering discovery, authentication, authorization, input validation, rate limiting, and error handling.

application-skills
Integrate with KnowBe4 via the Membrane CLI to manage users, phishing and training campaigns, groups, reports, and account settings.

skill-vetter
Pre-install security gate that scans a skill for prompt-injection, secrets, and other vulnerabilities before installation.

marketplace
Structured 4-hour SOP for comprehensive code review: automated checks, specialized parallel reviews (quality, security, perf, architecture, docs), integration a

aboutsecurity
Comprehensive methodology for detecting, exploiting, and bypassing OS command injection, including blind extraction and output-filtering workarounds.

asi
Technical cookbook describing capability-safe interactions between Goblins actors and verified WASM runtimes, with runtime selection guidance, syscall mappings,

awesome-omni-skills
Decision-focused Node.js guidance for framework choice, async patterns, security, testing, and architecture — teaches how to think about Node.js projects rather

agent-world-network
CLI and daemon for world-scoped P2P messaging between AI agents with Ed25519-signed messages and world membership management.

awesome-omni-skills
Production-grade blockchain developer skill: smart contracts, DeFi, NFTs, cross-chain and security best practices for building Web3 applications.

skillsemgrep
Run Semgrep-based security scans to detect vulnerabilities, secrets, and OWASP Top 10 issues, and produce a categorized report with remediation suggestions.

dgk-claude
Run an automated, background code review using a Z.AI (GLM) model to surface security issues, style problems, and PR diffs for staged or uncommitted changes.

antigravity-awesome-skills
Apply the STRIDE threat-modeling methodology to systematically identify and document security threats during design, reviews, or audits.

awesome-omni-skills
A comprehensive penetration testing checklist and operational workflow to plan, scope, monitor, and remediate security tests while preserving provenance of upst

cloak
Protects real .env secrets by replacing on-disk values with safe sandbox values and providing a secure vault and CLI for running processes with real secrets.

igmarin
Performs a focused security audit of Ruby on Rails applications: auth/authz checks, parameter handling, query safety, output encoding, file handling, and secret

clawapi
macOS utility to switch AI models and securely manage API keys for OpenClaw, with Touch ID protection and support for many providers.

qaskills
Guides agents to detect, prevent, and integrate secret-detection (API keys, passwords) into repos and CI using tools like gitleaks and trufflehog.

skillshub
Auto-activating skill that generates and validates security HTTP headers and provides guidance for implementing secure header configurations.