Agent skills
Skills you can use with AI coding agents, indexed from public GitHub repositories.
-
Security Scanner
OWASP compliance
majiayu000/claude-skill-registry 163
-
pop-assessment-security
Validates PopKit security posture using concrete vulnerability patterns, automated secret scanning, and OWASP-aligned checklists
majiayu000/claude-skill-registry 163
-
redis-security
Master Redis security - authentication, ACL, TLS encryption, network hardening, and production security best practices
majiayu000/claude-skill-registry 163
-
session-end
Mandatory session close-out with IG audit, AAR, and optional HISTORIAN. Enforces clean session handoff.
majiayu000/claude-skill-registry 163
-
crack-7z-hash
This skill provides guidance for cracking 7z archive password hashes. It should be used when tasks involve extracting hashes from password-protected 7z archives, selecting appropriate cracking tools, and recovering passwords through dictionary or brute-force attacks. Applicable to password recovery, security testing, and CTF challenges involving encrypted 7z files.
majiayu000/claude-skill-registry 163
-
analyzing-protocols
Analyzes network protocol implementations to identify parsing vulnerabilities, state machine issues, and protocol-level security problems. Use when analyzing network servers, protocol handlers, or investigating protocol implementation bugs.
majiayu000/claude-skill-registry 163
-
Drizzle Schema Generation
Generates Drizzle ORM schema files for users, sessions, tokens, OAuth accounts, and audit logs. Syncs schema to Neon Postgres.
majiayu000/claude-skill-registry 163
-
wp-security-review
WordPress security audit and vulnerability analysis. Use when reviewing WordPress code for security issues, auditing themes/plugins for vulnerabilities, checking authentication/authorization, analyzing input validation, or detecting security anti-patterns, or when user mentions "security review", "security audit", "vulnerability", "XSS", "SQL injection", "CSRF", "nonce", "sanitize", "escape", "validate", "authentication", "authorization", "permissions", "capabilities", "hacked", or "malware".
majiayu000/claude-skill-registry 163
-
scanning-for-vulnerabilities
Execute this skill enables comprehensive vulnerability scanning using the vulnerability-scanner plugin. it identifies security vulnerabilities in code, dependencies, and configurations, including cve detection. use this skill when the user asks to scan fo... Use when appropriate context detected. Trigger with relevant phrases based on skill purpose.
majiayu000/claude-skill-registry 163
-
white-label
Complete WordPress white-labeling using FREE plugins only - ASE, Branda, White Label CMS, Admin Menu Editor. Covers login page branding, admin cleanup, security hardening, and client handoff preparation.
majiayu000/claude-skill-registry 163
-
vigil-security-patterns
Security best practices and patterns for Vigil Guard v2.0.0 development. Use when implementing authentication, handling secrets, validating input, preventing injection attacks, managing CORS, ensuring secure coding practices, 3-branch detection security, or implementing security audit fixes.
majiayu000/claude-skill-registry 163
-
android-owasp-security-reviewer
AndroidアプリのセキュリティレビューをOWASP Mobile Top 10 2024およびMASVS (Mobile Application Security Verification Standard) の観点で実施し、Markdownレポートを生成する。
Use when: (1) Androidアプリのセキュリティ監査/レビュー依頼時 (2) 「セキュリティチェック」「脆弱性診断」「OWASP」「MASVS」キーワード時 (3) Androidプロジェクトのコードレビューでセキュリティ観点が必要な時 (4) 金融・医療アプリのセキュリティ評価時
majiayu000/claude-skill-registry 163
-
security-assessment
Vulnerability review, OWASP patterns, secure coding practices, and threat modeling approaches. Use when reviewing code security, designing secure systems, performing threat analysis, or validating security implementations.
majiayu000/claude-skill-registry 163
-
authentication-authorization-clerk
Implement secure authentication and authorization using Clerk. Use this skill when you need to authenticate users, protect routes, check permissions, implement subscription-based access control, or integrate Clerk with your application. Triggers include "authentication", "auth", "authorization", "Clerk", "protect route", "check user", "sign in", "session", "permissions", "subscription access".
majiayu000/claude-skill-registry 163
-
image_generation
AI图像生成与编辑能力,基于 Nano Banana (Gemini Image) 实现文生图、图生图、图像编辑。适用于创意设计、营销素材、社交媒体内容、演示文稿配图等场景。支持多种风格、高分辨率输出(最高4K)、文字渲染、角色一致性保持。
majiayu000/claude-skill-registry 163
-
using-security-architect
Routes to security architecture skills - threat modeling, controls, compliance, authorization
majiayu000/claude-skill-registry 163
-
security-headers
Validate and implement HTTP security headers to protect web applications.
majiayu000/claude-skill-registry 163
-
testing-apis
Test REST and GraphQL APIs for authentication bypasses, authorization flaws, IDOR, mass assignment, injection attacks, and rate limiting issues. Use when pentesting APIs or testing microservices security.
majiayu000/claude-skill-registry 163
-
nostr-wallet-connect
Use when implementing Nostr Wallet Connect (NIP-47) wallet service - provides complete patterns for generating NWC connection strings, publishing info events, listening for requests, processing wallet commands, and sending encrypted responses. Client-side patterns included for reference.
majiayu000/claude-skill-registry 163
-
security-header-generator
Generates security HTTP headers (CSP, HSTS, CORS, etc.) for web applications to prevent common attacks. Use when user asks to "add security headers", "setup CSP", "configure CORS", "secure headers", or "HSTS setup".
majiayu000/claude-skill-registry 163
-
secure-nextjs-api-routes
A comprehensive security middleware system for Next.js 13+ App Router API routes that provides authentication, rate limiting, CSRF protection, audit logging, and security headers in a composable, production-ready pattern. Use when building secure Next.js APIs that need protection against common web vulnerabilities.
majiayu000/claude-skill-registry 163
-
agent-security-auditor
Expert security auditor specializing in comprehensive security assessments, compliance validation, and risk management. Masters security frameworks, audit methodologies, and compliance standards with focus on identifying vulnerabilities and ensuring regulatory adherence.
majiayu000/claude-skill-registry 163
-
checkpoints
majiayu000/claude-skill-registry 163
-
waf-rule-creator
Waf Rule Creator - Auto-activating skill for Security Advanced.
Triggers on: waf rule creator, waf rule creator
Part of the Security Advanced skill category.
majiayu000/claude-skill-registry 163