4. Security & Compliance

Enables secure secret management, authentication, and secret injection using 1Password CLI for development and operational workflows.

Provides best practices and integration guidance for Better Auth, a TypeScript-based authentication framework, ensuring secure user authentication and authorization flows.

Applies STRIDE methodology for systematic threat identification in security analysis and threat modeling sessions.

Derives security requirements from threat models and business context to create actionable security user stories and test cases.

Conducts automated and manual WCAG 2.2 accessibility audits with remediation guidance for website compliance.

Enforces production-grade Kubernetes security via NetworkPolicy, PodSecurityPolicy, and RBAC for network isolation and pod security standards.

Analyzes memory dumps for incident response and malware analysis using Volatility tools.

Enables secure handling of payment card data by implementing PCI DSS compliance requirements for payment systems.

Maps security threats to appropriate controls for prioritizing investments, creating remediation plans, and validating control effectiveness.

Implements secure authentication and authorization patterns including JWT, OAuth2, and RBAC for scalable access control systems and API security.

Configures mutual TLS (mTLS) for secure, zero-trust service-to-service communication with certificate-based authentication.

Provides GDPR compliance tools for consent management, data subject rights, and privacy by design in data processing systems.

Enables secure smart contract development by implementing best practices to prevent common vulnerabilities in Solidity.

Analyzes and bypasses anti-reversing techniques in protected binaries for authorized security analysis and debugging.

Analyzes executable binaries via disassembly, decompilation, and control flow to identify security patterns and vulnerabilities.

Constructs visual attack trees to map threat scenarios, identify security gaps, and communicate risks to stakeholders.

Configures Static Application Security Testing (SAST) tools to automate vulnerability detection in application code, supporting DevSecOps implementation.

Analyzes network traffic to reverse engineer proprietary protocols, enabling understanding and debugging of communication systems.

Validates web application accessibility by testing with screen readers (VoiceOver, NVDA, JAWS) to ensure compliance with accessibility standards.

Guides AWS security assessments including penetration testing, IAM enumeration, S3 bucket checks, and exploit scenarios.

Generates structured penetration testing checklists for planning, scoping, and executing security assessments according to industry best practices.

Provides comprehensive guidance for discovering and exploiting Windows privilege escalation vulnerabilities in security assessments.

Provides secure API design patterns including authentication, authorization, input validation, rate limiting, and protection against common vulnerabilities.

Performs API security assessments through fuzzing, IDOR detection, and penetration testing for bug bounty programs.