Security

Pentest Commands

by zebbern

The assistant provides essential penetration testing commands for Nmap, Metasploit, SQLMap, Hydra, John the Ripper, Nikto, and other tools. Activate when users ask about "pentest commands," "nmap scanning," "metasploit exploits," "password cracking," "web vulnerability scanning," or "network enumeration."

Security Scanning Tools

by zebbern

This skill should be used when the user asks to "perform vulnerability scanning", "scan networks for open ports", "assess web application security", "scan wireless networks", "detect malware", "check cloud security", or "evaluate system compliance". It provides comprehensive guidance on security scanning tools and methodologies.

PowerShell Scripting for Security

by zebbern

This skill should be used when the user asks to "write PowerShell scripts", "automate security tasks with PowerShell", "create PowerShell functions", "work with PowerShell modules", "parse data with PowerShell", or "build security automation scripts". It provides comprehensive PowerShell scripting fundamentals for security professionals.

Quick Pentest Reference

by zebbern

This skill should be used when the user asks to "perform quick enumeration", "run directory busting", "enumerate DNS", "discover live hosts", "brute force passwords", or "needs a pentest cheat sheet". It provides rapid reference commands for penetration testing.

Pentesting from Beginner to Advanced

by zebbern

The assistant provides a structured web application penetration testing learning path from fundamentals to advanced techniques. Activate when users ask about "learning pentesting," "web security training," "OWASP vulnerabilities," "BurpSuite tutorial," "penetration testing roadmap," or "web app security course."

🔐 Security Audit and Vulnerability Scanning

by ShunsukeHayashi

Miyabi Plugins for Claude Code - 25+ Agents, 22 Skills, 50+ Commands

🏷️ Issue Analysis with Label Inference

by ShunsukeHayashi

Miyabi Plugins for Claude Code - 25+ Agents, 22 Skills, 50+ Commands

OSCP Notes

by zebbern

The assistant provides detailed OSCP preparation notes covering service enumeration, exploitation techniques, and protocol-specific attacks. Activate when users ask about "OSCP enumeration," "service pentesting," "SMB attacks," "FTP exploitation," "SSH pentesting," or "protocol-specific exploits."

Phishing Attacks

by zebbern

The assistant guides users through phishing attack simulation tools and techniques for penetration testing and security awareness. Activate when users ask about "phishing simulation," "social engineering testing," "Shellphish," "WiFi phishing," "credential harvesting," or "security awareness training."

Wi-Fi Penetration Testing

by zebbern

This skill should be used when the user asks to "perform wireless network penetration testing", "crack WEP or WPA passwords", "capture Wi-Fi handshakes", "conduct deauthentication attacks", "test wireless security", "perform MITM attacks on Wi-Fi", or "assess wireless network vulnerabilities". It provides comprehensive techniques for auditing wireless network security.

quality-gates

by duyet

Systematic quality verification procedures for code review and delivery. Use when validating completed work, conducting code reviews, or ensuring production readiness.

code-review

by PaulRBerg

This skill should be used when the user asks to "review code", "review PR", "code review", "audit code", "check for bugs", "security review", "review my changes", "find issues in this code", "review the diff", or asks for pull request review or code audit.

audit-plugin-l5

by richfrem

Triggers the L5 Red Team Sub-Agent to rigorously audit a plugin against the 39-point L4 pattern matrix.

red-team-review

by richfrem

"(Industry standard: Review and Critique Pattern) Primary Use Case: Iterative generation paired with adversarial review, continuing until an 'Approved' verdict is reached. Orchestrated adversarial review loop. Use when: research, designs, architectures, or decisions need to be reviewed by red team agents (human, browser, or CLI). Iterates in rounds of research → bundle → review → feedback until approved."

solidity-audit

by 0xlayerghost

"Security audit and code review checklist. Covers 30+ vulnerability types with real-world exploit cases (2021-2026) and EVMbench Code4rena patterns. Use when conducting security audits, code reviews, or pre-deployment security assessments."

faion-testing-developer

by faionfaion

"Testing: unit, integration, E2E, TDD, mocking, security testing."

solidity-security

by 0xlayerghost

"[AUTO-INVOKE] MUST be invoked BEFORE writing or modifying any Solidity contract (.sol files). Covers private key handling, access control, reentrancy prevention, gas safety, and pre-audit checklists. Trigger: any task involving creating, editing, or reviewing .sol source files."

copilot-cli-agent

by richfrem

Copilot CLI sub-agent system for persona-based analysis. Use when piping large contexts to GitHub Copilot models for security audits, architecture reviews, QA analysis, or any specialized analysis requiring a fresh model context.

claude-cli-agent

by richfrem

Claude CLI sub-agent system for persona-based analysis. Use when piping large contexts to Anthropic models for security audits, architecture reviews, QA analysis, or any specialized analysis requiring a fresh model context.

Issue Analysis with Label Inference

by ShunsukeHayashi

Analyze GitHub Issues and automatically infer appropriate labels from Miyabi's 57-label system across 11 categories. Use when creating or triaging Issues, or when label inference is needed.

kube-audit-kit

by crazygit

Performs read-only Kubernetes security audits by exporting resources, sanitizing metadata, grouping applications by topology, and generating PSS/NSA-compliant audit reports. Use when the user requests auditing Kubernetes clusters, Namespaces, security reviews, or configuration analysis.

Security Audit and Vulnerability Scanning

by ShunsukeHayashi

Comprehensive security audit workflow including dependency scanning, unsafe code detection, and secret management. Use when scanning for vulnerabilities or before production deployment.

Issue Analysis with Label Inference

by ShunsukeHayashi

Analyze GitHub Issues and automatically infer appropriate labels from Miyabi's 57-label system across 11 categories. Use when creating or triaging Issues, or when label inference is needed.

Project Scanner Workflow

by KhaiHuynhVN