ReddRadar
Agent skill
Burp Suite/Web Security Skill
Web application security testing with Burp Suite integration
Install this agent skill to your Project
npx add-skill https://github.com/a5c-ai/babysitter/tree/main/library/specializations/security-research/skills/burp-websec
SKILL.md
Burp Suite/Web Security Skill
Overview
This skill provides web application security testing capabilities with Burp Suite and OWASP ZAP integration.
Capabilities
- Configure Burp Suite proxy and scanner
- Execute Burp extensions and macros
- Parse and analyze HTTP traffic
- Generate and send crafted requests
- Extract and analyze responses
- Support authentication handling
- Create and run active scan policies
- Generate web vulnerability reports
Target Processes
- web-app-vuln-research.js
- api-security-research.js
- bug-bounty-workflow.js
- red-team-operations.js
Dependencies
- Burp Suite (Professional for full features)
- OWASP ZAP (alternative)
- Burp REST API
- Python requests library
- mitmproxy (optional)
Usage Context
This skill is essential for:
- Web application penetration testing
- API security assessment
- Bug bounty hunting
- Authentication testing
- Session management analysis
Integration Notes
- Supports headless operation via REST API
- Can replay and modify captured requests
- Integrates with CI/CD for automated scanning
- Custom scan policies for targeted testing
- Report generation in multiple formats
Recommended Agent Skills
Expand your agent's capabilities with these related and highly-rated skills.
a5c-ai/babysitter
gsd-tools
Central utility skill for GSD operations. Provides config parsing, slug generation, timestamps, path operations, and orchestrates calls to other specialized skills. Acts as the unified entry point that the original gsd-tools.cjs provided via its lib/ modules (commands, config, core, init).
a5c-ai/babysitter
model-profile-resolution
Resolve model profile (quality/balanced/budget) at orchestration start and map agents to specific models. Enables cost/quality tradeoffs by selecting appropriate AI models for each agent role.
a5c-ai/babysitter
verification-suite
Plan structure validation, phase completeness checks, reference integrity verification, and artifact existence confirmation. Provides the structured verification layer ensuring GSD artifacts are well-formed and complete.
a5c-ai/babysitter
state-management
STATE.md reading, writing, and field-level updates. Provides cross-session state persistence via .planning/STATE.md with structured fields for current task, completed phases, blockers, decisions, and quick tasks.
a5c-ai/babysitter
git-integration
Git commit patterns, formats, and conventions for GSD methodology. Provides atomic commits per task, structured commit messages, planning file commits, branch management, and milestone tag operations.
a5c-ai/babysitter
frontmatter-parsing
YAML frontmatter parsing and manipulation for .planning/ documents. Provides read, write, update, query, and validation operations on frontmatter blocks in GSD markdown artifacts.
Didn't find tool you were looking for?