4. Security & Compliance

Solves CTF Misc challenges involving steganography, file analysis, and memory forensics for flag extraction.

Audits Solana smart contracts (Anchor or Rust) for security vulnerabilities, exploits, and attack vectors.

Enforces 100% command compliance through boolean decision trees to ensure strict adherence in high-pressure security and regulatory scenarios.

Curated lists of common usernames and default credentials for security enumeration in authorized penetration testing scenarios.

Curated fuzzing payloads for testing SQL injection, command injection, and vulnerability assessment in security testing.

Provides web shell samples (PHP, ASP, ASPX, JSP, Python, Perl) for security research and detection system testing.

Provides sensitive data patterns for security testing, including API keys, credit cards, SSNs, and more, for data discovery and validation.

Curated password lists for security testing, including common, leaked, and weak passwords, optimized for efficiency (<10MB).

Curated security testing payloads including anti-virus test files, file name exploits, and malicious files for penetration testing.

Provides comprehensive security risk analysis for Claude skills, including vulnerability auditing and safety evaluation before deployment.

Provides domain knowledge on secrets management, including Agenix structure, access groups, and secure patterns for handling sensitive information.

Manages encrypted secrets with agenix, enabling secure addition, editing, rotation, and handling of sensitive credentials.

Security audit tool for reviewing changes in secrets, services, Terraform, and host configurations to detect security risks.

Conducts security audits on Agent Skills to identify vulnerabilities and ensure compliance with security standards.

Audits Terraform plans for security vulnerabilities and compliance policies using tfsec/checkov, providing approval or rejection decisions.

Performs comprehensive security audits, vulnerability assessments, and compliance checks to ensure secure and compliant software systems.

Automates Philippine BIR tax form generation and filing for 1601-C, 2550Q, 1702-RT/EX, and ATP, ensuring full regulatory compliance.

Answers policy-related questions with verified sources, ensuring compliance and accuracy by requiring strict citations for every response.

Scans applications for security vulnerabilities and validates compliance with OWASP standards.

Validates tenant isolation in multi-tenant applications to prevent data leakage and ensure security compliance.

Manages security hooks in Claude Code to block destructive commands and protect sensitive files like .env and credentials.

Enforces security best practices including API key management, input validation, and secret handling for secure code development.

Provides comprehensive security analysis for honeypot servers, including attack patterns, threat intelligence correlation, and vulnerability assessment.

Provides forensic analysis of Entra ID authentication chains to detect credential theft and anomalies such as token reuse and impossible travel.