4. Security & Compliance

Provides security best practices and hardening standards for Laravel web applications to prevent common vulnerabilities.

Reports AI system issues when non-adherence, conflicts, or mistakes are detected, ensuring compliance with defined policies.

Provides PHP security standards for secure database access, password handling, and input validation to prevent common vulnerabilities.

Guides developers in implementing secure coding practices to prevent vulnerabilities in TypeScript applications.

Enables navigation, modification, and extension of the capemon malware monitoring codebase using Windows API hooking and CAPEv2 sandbox architecture expertise.

Automates detection of bugs, security vulnerabilities, and code quality issues in current branch changes for security audits and code reviews.

Provides AI-assisted security guidance for SaaS applications, covering OWASP Top 10, authentication, and data protection for non-technical founders.

Configures host-based firewalls (iptables, UFW) and cloud security groups (AWS, GCP, Azure) for secure network segmentation and service exposure in common server scenarios.

Configures SIEM systems for centralized log aggregation, threat detection, and compliance with audit requirements across cloud and on-premise infrastructure.

Hardens infrastructure across OS, container, cloud, network, and database layers using CIS Benchmarks and zero-trust principles for compliance and reduced attack surface.

Configures TLS certificates and encryption for secure HTTPS, service-to-service connections, and mutual TLS (mTLS) implementations, including certificate issue debugging.

Automates multi-layer security scanning, SBOM generation, and risk-based vulnerability prioritization in CI/CD pipelines for compliance enforcement.

Designs security architectures using defense-in-depth, zero trust, and frameworks like NIST CSF and ISO 27001 for new systems and audits.

Provides secure implementation guidance for authentication, authorization, and API security using industry standards and tools.

Automates regulatory compliance implementation and evidence collection for SOC 2, HIPAA, PCI-DSS, and GDPR using policy-as-code enforcement.

AI-assisted security guidance for SaaS applications covering authentication, data protection, API security, and OWASP Top 10 vulnerabilities.

Tests security vulnerabilities using OWASP principles for security audits and authentication testing.

Validates n8n workflow security through credential exposure detection, OAuth flow validation, and API key management testing.

Validates WCAG 2.2 compliance, screen reader compatibility, and inclusive design to meet ADA and Section 508 legal standards.

Manages test data generation and ensures privacy compliance with GDPR/CCPA, handling PII for realistic and legal testing scenarios.

Conducts regulatory compliance testing for GDPR, CCPA, HIPAA, SOC2, and PCI-DSS to ensure legal adherence and audit readiness.

Performs security audits, vulnerability scans, and validates compliance with standards including OWASP, SOC2, and GDPR.

Security-first visual testing tool validating URLs, detecting PII, and performing visual regression with parallel viewport support for sensitive data applications requiring WCAG compliance.

Triggers security guidelines for system-level commands (e.g., iptables, sysctl) and server operations to prevent unsafe configurations.