Agent Skills·Use case ·Security audit

Use case · 5,059 skills

Agent skills for security audit

Skills that scan for vulnerabilities, leaked secrets, and insecure patterns, and explain the fix. Portable across every SKILL.md-compatible agent.

Browse all 5,059 Security audit skills →

Anthropic-Cybersecurity-Skills

753+ structured cybersecurity skills mapped to MITRE ATT&CK. 4k+ stars.

hermesawesome-hermes-skillsproductioncybersecurity

defi-onchain-analytics

Use when profiling wallets, analyzing protocols or pools, inspecting token metrics, evaluating DEX liquidity or LP/vault performance, reading smart contract state, resolving proxy …

opencodeai-agent-skillblockchain-analyticsclaude-code-skill

Safe command execution for OpenClaw Agents with automatic danger pattern detection, risk assessment, user approval workflow, and audit logging. Use when agents need to execute shel…

claude-codecodexcursorgemini-clicommand-executionrisk-assessmentaudit-logging

Always-active web search safety skill. Classifies every website into SAFE, CAUTION, RISKY, or BLOCKED before reading or citing it. Reads and evaluates real user reviews and feedbac…

claude-codecodexcursorgemini-clitype:reviewweb-searchsafety

cyber-risk-modeling

Quantify cyber risk using FAIR methodology with Monte Carlo simulation, assess control effectiveness against NIST CSF/CIS/ISO 27001 frameworks, evaluate risk appetite alignment, an…

claude-codecodexcursorgemini-clifairriskmonte-carlo

cyber-incident-response-72h

Structured immediate response for active cyber incidents — hacker attacks, ransomware, data exfiltration, insider threats. Phase 1: immediate containment, network isolation, forens…

claude-codecodexcursorgemini-cliincident-responsegdprforensics

ovhcloud-live-kms-key-destruction-guard

Gate and audit OVHcloud KMS key version destruction requests by enforcing five mandatory checks: confirmed key ID and KMS service URN, named approving identity, usage audit confirm…

claude-codecodexcursorgemini-clitype:auditovhcloudkms

Performs a scoped, coverage-led review of a working tree, staged diff, commit range, branch diff, PR, or suspicious implementation to identify hack-like risks such as impossible-st…

claude-codecodexcursorgemini-clitype:audittype:reviewcode-review

gcp-live-kms-key-destruction-guard

Gate Cloud KMS key version destruction and key ring deletion against a complete CMEK dependency audit. All Cloud SQL, GCS, BigQuery, Compute Engine disk, and Secret Manager resourc…

claude-codecodexcursorgemini-clicloud:gcptype:auditgcp

cilium-network-policy-review

Use this skill for Cilium network policy review across Kubernetes NetworkPolicy, CiliumNetworkPolicy, and CiliumClusterwideNetworkPolicy formats, including L7 policy via Envoy, Clu…

claude-codecodexcursorgemini-clitool:k8stype:reviewcilium

ki-verordnung-compliance

Performs EU AI Act compliance checks covering scope, risk classification, prohibited practices, high-risk systems, transparency duties, GPAI models, conformity declarations, CE mar…

claude-codecodexcursorgemini-clieu-ai-actcompliancerisk-classification

project-agentification

Assess repository agent-readiness, harden against failure modes, scaffold AGENTS.md / SKILL.md / MCP servers / hooks / specs from observed failures, and diagnose why coding agents …

claude-codecodexcursorgemini-cliai:agenttype:debugtype:generator

gcp-live-bigquery-dataset-deletion-guard

Gate BigQuery dataset deletion, table truncation, and authorized view changes against a full downstream dependency audit and export confirmation. Dataset deletion is immediate and …

claude-codecodexcursorgemini-clicloud:gcptype:auditgcp

gcp-live-cost-budget-action-guard

Gate Cloud Billing budget threshold changes, committed-use discount (CUD) purchases, and quota increase requests with explicit financial-authority approval. CUD contracts are 1-3 y…

claude-codecodexcursorgemini-clicloud:gcptype:reviewgcp

defi-risk-analysis

Analyze a DeFi protocol's risk profile across smart contract, off-chain, and track-record dimensions. Use when the user wants a risk analysis of a DeFi project, to check protocol s…

claude-codecodexcursorgemini-clidefirisk-analysissmart-contracts

route-optimizer

Audit routing and delivery optimization software for algorithm quality, constraint handling, real-time traffic adaptation, multi-modal transport support, and cost modeling accuracy…

claude-codecodexcursorgemini-clitype:audittype:reviewrouting

permission-set-groups-and-muting

Use when designing or reviewing permission-set-group architecture, including profile minimization, group composition, muting strategy, and migration from profile-heavy models. Trig…

claude-codecodexcursorgemini-clitype:reviewsalesforcepermission sets

Use this skill when a user wants a trust decision before installing from a skill URL, marketplace, or GitHub repo. It checks a compact allowlist of trusted distribution channels an…

claude-codecodexcursorgemini-clitrustallowlistpolicy

cosmos-vulnerability-scanner

Scans Cosmos SDK blockchain modules and CosmWasm contracts for consensus-critical vulnerabilities including chain halts, fund loss, and state divergence. Covers 25 core, 16 IBC, 10…

claude-codecodexcursorgemini-clitype:audittype:integrationtype:review

hotplex-arch-analyzer

Deep audit of HotPlex project architecture and code health. Performs architecture analysis, code quality review, SOLID/DRY compliance, concurrency/performance checks, security scan…

claude-codecodexcursorgemini-cliarchitecturecode-qualitysolid

CISA + EU KEV (Known Exploited Vulnerabilities) catalog watch — pull recent KEV additions, intersect with installed dependencies, surface entries with imminent due dates. Use when …

claude-codecodexcursorgemini-clicisakevvulnerabilities

script-ecosystem-audit

Comprehensive diagnostic of the script infrastructure across 18 categories in 5 domains with composite health scoring, trend tracking, patch suggestions, and interactive walkthroug…

claude-codecodexcursorgemini-clitype:audittype:debugjavascript

cyber-essentials-plus-expert

UK NCSC Cyber Essentials Plus (CE+) v3.3 expert. Reference-depth framework plugin with assessment, scope determination, and evidence checklist — backed by the SCF crosswalk. Five c…

claude-codecodexcursorgemini-clicyber-essentialsncsccompliance

fraud-detection

Analyze fraud detection systems including rule engines, ML scoring models, real-time transaction monitoring, alert triage workflows, false positive management, SAR/CTR regulatory r…

claude-codecodexcursorgemini-clifraudmlpayments

aws-serverless-production-readiness

Assess AWS Lambda serverless workloads for production readiness covering roles, event sources, retries, DLQs, concurrency, idempotency, observability, deployment safety, performanc…

claude-codecodexcursorgemini-clicloud:awstype:reviewaws

Composite skill — full project health check across testing, config, hooks, performance, security, MCP, and plugins. Runs audit skills in parallel and reconciles into one severity-r…

claude-codecodexcursorgemini-clitype:audittype:reviewaudit

offensive-bluetooth-ble

Bluetooth Low Energy attack methodology covering GATT enumeration, unauthenticated characteristic access, pairing downgrade, LE Secure Connections bypass, active MITM relay, traffi…

claude-codecodexcursorgemini-clibluetoothblegatt

gcp-live-iam-policy-change-guard

Gate IAM binding mutations, org policy changes, and Service Account key creation against the GCP resource hierarchy. IAM bindings at org level propagate to all folders and projects…

claude-codecodexcursorgemini-clicloud:gcptype:auditgcp

agentprivacy-perimeter-hardening

Device security, OS hardening, network configuration, and physical security for privacy infrastructure. Activates when securing the execution environment beneath the cryptographic …

claude-codecodexcursorgemini-clihardeningossupply-chain

detecting-ssl-cert-issues

Audits TLS certificate posture beyond handshake success: chain ordering, OCSP stapling, revocation status, Certificate Transparency logs, key-usage flags, and wildcard scope. Flags…

claude-codecodexcursorgemini-clitype:audittlsssl

bedrock-automated-reasoning

Amazon Bedrock Automated Reasoning performs mathematical verification of AI outputs against formal policy rules, reaching up to 99% accuracy. Ideal for validating healthcare protoc…

claude-codecodexcursorgemini-cliaws-bedrockreasoningcompliance

avv-eu-us-data-privacy-framework-bezug

Handles EU-US Data Privacy Framework (DPF) provisions in data processing agreements. Covers EU Commission adequacy decision of 10.07.2023, self-certification requirements, listing …

claude-codecodexcursorgemini-cligdprprivacydata-transfer

Reviews code security, architecture, incidents, and third-party dependencies to identify real vulnerabilities, exploitable weaknesses, supply-chain risk, and safe mitigations. Use …

claude-codecodexcursorgemini-clitype:audittype:reviewsecurity

risk-management

Handles project risk identification, analysis, and response planning for software and systems projects. Covers probability-impact matrices, qualitative/quantitative analysis, Monte…

claude-codecodexcursorgemini-clitype:integrationriskfmea

ki-rote-linien-art-5-pruefen

Screens for prohibited AI practices under Article 5 of the EU AI Act: subliminal influence, vulnerability exploitation, social scoring, real-time biometric identification in public…

claude-codecodexcursorgemini-cliai-actprohibitedcompliance

sanktions-compliance-pruefung

Screening checklist for EU, OFAC, UK-HMT, and UN sanctions covering Russia, Belarus, Iran, North Korea, Syria, Venezuela, Cuba, listed persons and entities, asset freezes, embargoe…

claude-codecodexcursorgemini-clisanctionscomplianceofac

agentprivacy-metadata-resistance

Traffic analysis resistance, timing obfuscation, and metadata stripping for privacy-focused operations. Activates when designing defences against metadata correlation, implementing…

claude-codecodexcursorgemini-climetadatamixnettraffic-analysis

ki-haftung-und-versicherung

Analyzes liability for AI deployment covering provider and operator obligations under the EU AI Act, updated product liability rules, draft AI liability directive, and contractual …

claude-codecodexcursorgemini-cliai-actliabilityinsurance

Advises on EU NIS2 Directive (2022/2555) compliance for essential and important entities, including entity classification, Article 21 risk management, Article 23 incident reporting…

claude-codecodexcursorgemini-clinis2eucompliance

agentprivacy-nullifier-design

Nullifier construction, deployment, and verification for privacy-preserving invalidation. Activates when designing double-spend prevention, privacy-preserving revocation, unlinkabl…

claude-codecodexcursorgemini-clinullifierrevocationdouble-spend

underwriting-analysis

Evaluates insurance underwriting systems for risk accuracy, pricing adequacy, and portfolio exposure. Reviews predictive models (GLM, GBM), rating algorithms, loss ratios, guidelin…

claude-codecodexcursorgemini-clitype:integrationinsuranceunderwriting

Static code analysis to detect code smells, cyclomatic complexity, duplication, pattern violations, excessive coupling, and quality metrics. Use for evaluating code quality, identi…

claude-codecodexcursorgemini-clistatic-analysiscomplexityquality-metrics

l5-red-team-auditor

Performs an uncompromising L5 Enterprise Red Team Audit on a given plugin against the 39-point architectural maturity matrix. Trigger when the user requests a security audit, red t…

claude-codecodexcursorgemini-clitype:audittype:reviewred-team

owasp-mobile-security-checker

Perform security audits, vulnerability assessments, or compliance checks on Flutter or mobile applications. Covers OWASP Mobile Top 10 (2024) — hardcoded secrets, insecure storage,…

claude-codecodexcursorgemini-clifw:fluttertype:audittype:scanner

avv-grenzpruefung-datenschutz

Defines the interface between data protection law and professional rules. Checks whether an Art. 28 GDPR processing agreement exists and clarifies that AVV review does not replace …

claude-codecodexcursorgemini-cligdprprivacylegal

memory-load-check

Reviews PRs and diffs for unbounded memory loading, concurrency issues, oversized payloads, and missing pagination or byte caps. Apply during cleanup jobs, data imports, file parsi…

claude-codecodexcursorgemini-clitype:reviewmemorypr-review

ki-hochrisiko-anhang-iii-pruefen

Evaluates high-risk AI systems under Annex III of the EU AI Act including biometrics, critical infrastructure, education, employment, service access, law enforcement, migration, ju…

claude-codecodexcursorgemini-cliai-acthigh-riskcompliance

rad-code-review

Performs blame-aware code reviews with 3-role adversarial analysis, AI slop detection across 14 patterns, framework IDOR checks, WCAG 2.2 compliance, performance heuristics, and se…

claude-codecodexcursorgemini-clitype:audittype:reviewcode-review

repo-first-defense

Defensive security audit for AI-native repositories. Activate before launching, merging, updating dependencies, migrating package managers, configuring AI agents, or when supply ch…

claude-codecodexcursorgemini-clilang:javascripttype:auditsecurity

Review data processing agreements, DPAs, or supplier/customer addenda containing personal data transfers for compliance with Turkish KVKK, checking controller/processor roles, secu…

claude-codecodexcursorgemini-clitype:reviewkvkkdpa

cloud-act-und-drittstaat-pruefen

Checks foreign nexus of AI providers per relevant service provider regulations (BRAO, StBerG, WPO, PAO, BNotO). EU/EEA treated as equivalent; third countries require comparable pro…

claude-codecodexcursorgemini-clicompliancedata-protectioneu-law

lean-ai-formalization

Formal verification of AI systems including agentic safety, alignment, high-stakes AI, evolving agents, and governance constraints. Apply for safety envelopes, trust dynamics, mult…

claude-codecodexcursorgemini-cliai:agentlean4formal-verification

agentprivacy-personhood-sybil

Personhood verification and Sybil resistance for privacy systems. Activates when discussing ∃! (unique existence) binding, proof-of-personhood without identity disclosure, Sybil at…

claude-codecodexcursorgemini-clisybilpersonhoodbiometric

Prevent Terraform/OpenTofu hallucinations by diagnosing and fixing failure modes: identity churn, secret exposure, blast-radius mistakes, CI drift, and compliance gate gaps. Use wh…

claude-codecodexawsazureclaude

AI security scanner for infrastructure, AI tools/skills, agents, and LLM jailbreak evaluation using Tencent Zhuque Lab AI-Infra-Guard. Requires AIG_BASE_URL. Triggers on: scan AI s…

claude-codecodexcursorgemini-clilang:pythontype:audittype:scanner

dsa-dark-patterns-anti-design

Review and eliminate dark patterns prohibited under DSA Article 25 including misleading cookie banners, confirmshaming, roach motels, and bait-and-switch tactics. Deliver code and …

claude-codecodexcursorgemini-clitype:reviewdsadark-patterns

threat-modeling

Produce structured threat models for software systems using STRIDE on data flow diagrams. Generate DFDs with trust boundaries, identify threats per element, score risks, and define…

claude-codecodexcursorgemini-clistridedfdthreat-model

owasp-security-scanner

Automated OWASP Top 10 vulnerability detection and assessment. Run OWASP ZAP automated scans, detect injection vulnerabilities, identify broken authentication patterns, check for s…

claude-codecodexcursorgemini-clitype:scannerzapautomated-scan

permission-sets-vs-profiles

Use when designing or auditing access control—deciding between Profiles, Permission Sets, and Permission Set Groups. Triggers: 'user can't see field', 'too many profiles', 'permiss…

claude-codecodexcursorgemini-clitool:salesforcetype:auditsalesforce

aussenwirtschaft-ofac-sdn-non-sdn

Guides intake, legal framework review, documentation assessment, risk flagging, record-keeping, approval, and follow-up steps for US sanctions lists including SDN, Non-SDN, and Fif…

claude-codecodexcursorgemini-cliofacsanctionssdn

Showing the top 60 of 5,059. See the full list →