4. Security & Compliance

Automates identification of known vulnerabilities in project dependencies to enhance security posture.

Configures sandbox security with file system and network isolation boundaries, access controls, and resource limits for safe code execution.

Provides guidance for reviewing code, features, and content to ensure cultural sensitivity and compliance with Indigenous data sovereignty standards.

Quickly analyzes unknown binaries (ELF, executables, firmware) for architecture, ABI, dependencies, and strings using rabin2.

Analyzes binaries, executables, and bytecode through reverse engineering, disassembly, and decompilation to assess security and functionality.

Constructs visual attack trees to map threat scenarios, identify security vulnerabilities, and communicate risks to stakeholders.

Provides OWASP Top 10 mitigations, authentication patterns, input validation strategies, and compliance guidelines to secure applications against common vulnerabilities.

Enforces two-person approval for destructive commands in multi-agent workflows with risk-tiered classification and command hash binding via Go CLI.

Interactive HTTPS proxy for API security testing, enabling traffic interception, modification, and replay for vulnerability assessment.

Network utility for TCP/UDP data transfer, port scanning, and authorized penetration testing including reverse shells.

Analyzes authentication and authorization patterns to identify security vulnerabilities in application design.

Enables independent verification of task completion, eliminating self-attestation to enhance reliability and trust in process outcomes.

Scans code repositories to identify and alert on accidentally committed secrets, credentials, and sensitive data.

Scans web servers for vulnerabilities, misconfigurations, and outdated software to ensure security compliance and hardening.

Enables endpoint forensic investigations, threat hunting, and incident response using Velociraptor Query Language (VQL) for scalable security analysis.

Enables UART console interaction with IoT devices using picocom for penetration testing, including device enumeration and vulnerability discovery.

Performs security audits on command execution, tool permissions, and API key handling to identify vulnerabilities before production deployment.

Enforces file system and network isolation boundaries for Claude Code sandboxes to enhance security and prevent unauthorized access.

Runs a local SharePoint audit by verifying dependencies, executing PowerShell with certificate auth, parsing results, and generating Markdown/HTML reports.

Performs security audits on code, architecture, and infrastructure, including threat modeling and security reviews of pull requests.

Provides structured methodologies for network reconnaissance, port scanning, service fingerprinting, and vulnerability identification with best practices for data collection.

Scans IaC files for security misconfigurations and compliance violations against standards like CIS and PCI-DSS.

Performs rapid vulnerability scanning using Nuclei templates for web applications, APIs, and infrastructure, covering CVEs and OWASP Top 10.

Enforces security and compliance policies across infrastructure and applications using Open Policy Agent (OPA) for frameworks like GDPR, HIPAA, and SOC2.