4. Security & Compliance

Enforces ADR-compliant changes: executes only within approved scope, produces bounded diffs, rejects unauthorized actions.

Enforces change execution within ADR-defined boundaries, producing bounded diffs and rejecting unauthorized actions.

Permanently removes sensitive content from PDFs using Apryse SDK with search term or regex pattern matching for compliance and data sanitization.

Scans source code and git history for hardcoded secrets, API keys, and tokens to prevent security breaches in repositories.

Automates HIPAA compliance audits for HealthTech applications, verifying encryption and audit logging to protect PHI per legal standards.

Detects and redacts PII (emails, phone numbers, credit cards) in logs and datasets to ensure GDPR/CCPA compliance.

Audits agent skill instructions and system prompts for prompt injection vulnerabilities to prevent hijacking and ensure secure deployment.

Performs comprehensive code reviews to identify security vulnerabilities, quality issues, and adherence to best practices in pull requests.

Audits web applications to verify alignment between declared privacy policies and actual data collection practices, including cookies and tracking scripts.

Scans Python code for common security vulnerabilities including SQL injection, unsafe deserialization, and hardcoded secrets to strengthen secure SDLC implementation.

Scans project dependencies for open-source license compliance against a predefined whitelist, ensuring legal adherence and preventing restricted license usage.

Ensures AI protocol layer integrity and compliance through protocol checks, naming convention validation, and token analysis.

Audits codebases for security vulnerabilities, SOLID adherence, and compliance with OWASP Top 10 and modern SDLC standards.

Provides comprehensive methodologies for testing file path traversal vulnerabilities (LFI) in web applications.

Provides techniques to test for broken authentication, session management flaws, and credential stuffing in web applications.

Provides structured methodology for planning penetration tests, including scope definition and security assessment checklists.

Guides detection, exploitation, and remediation of Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.

Provides comprehensive guidance for using Burp Suite to intercept HTTP traffic, modify requests, and perform vulnerability scanning in web application security testing.

Guides AWS security assessments and penetration testing, covering IAM enumeration, S3 buckets, and Lambda exploitation vulnerabilities.

Provides Wireshark-based techniques for network traffic analysis, including packet capture, filtering, and anomaly detection to investigate security incidents.

Tests for HTML injection vulnerabilities in web applications using ethical hacking techniques to identify and mitigate content injection risks.

Guides ethical penetration testing of Active Directory environments, covering techniques like Kerberoasting, DCSync, and BloodHound enumeration.

Conducts comprehensive WordPress security assessments including vulnerability scanning, user/theme/plugin enumeration, and exploitation testing using WPScan.

Provides API security testing capabilities including fuzzing, IDOR detection, and vulnerability assessment for bug bounty programs.