SKILL.md packages that extend Claude Code, Cursor, Copilot, and other AI agents.
Tags

code-audit
Perform professional code security audits across 9 languages with configurable quick/standard/deep modes and Docker-backed verification.

skills
Generate a styled, client-ready PDF penetration test report from findings.json using a defined dark theme and structured sections (exec summary, risk dashboard,

skills
Generate CVE request packages and disclosure artifacts (MITRE form data, GitHub advisory draft, full vulnerability report, and vendor notification templates) fr

security-skill
Send concurrent request bursts to detect TOCTOU, coupon reuse, double-spend and other web endpoint race conditions.

aboutsecurity
High-speed, stateless subdomain brute-force and verification using ksubdomain; optimized for large-scale discovery and validation where raw-socket performance a

aboutsecurity
Comprehensive methodology for detecting, exploiting, and bypassing OS command injection, including blind extraction and output-filtering workarounds.

awesome-omni-skills
A comprehensive penetration testing checklist and operational workflow to plan, scope, monitor, and remediate security tests while preserving provenance of upst

OStack SaaS
Comprehensive security audit agent that performs OWASP Top 10 analysis, STRIDE threat modeling, and attack surface mapping.

shiroattack2
Command-line toolkit to detect, brute-force keys, and exploit Apache Shiro rememberMe deserialization vulnerabilities (CVE-2016-4437) for authorized security te

vigolium
Prove OS command injection by generating OAST callbacks and a single safe follow-on data retrieval (file read or env dump) — non-destructive RCE proofing for se

decepticon
Directory, vhost and API enumeration hub with CMS scanning, WAF detection, auth mapping and cookie auditing — a reconnaissance orchestration skillset.