Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows

Professional slash commands for Claude Code that provide structured workflows for software development tasks including code review, feature creation, security auditing, and architectural analysis.

Sandboxed devcontainer for running Claude Code in bypass mode safely. Built for security audits and untrusted code review.

Security-audited skills for Claude, Codex & Claude Code. One-click install, quality verified.

The Inescapable Auditor -- iterative deep-logic security audit agent for Claude Code

Autonomous Web3 security audit agent for Claude Code

Turn Claude Code into your offensive security research assistant. Specialized AI subagents for authorized penetration testing plan engagements, analyze recon, research exploits, build detections, audit STIGs, and write reports.

Professional WordPress engineering skills for Claude Code - performance optimization, security auditing, Gutenberg block development, and theme/plugin best practices.

Claude Code plugin for Java JAR security audit — 基于 jar-analyzer 的 Claude Code 安全审计插件，构建数据库，AI 深入分析

Security audit tool for Claude Desktop and Claude Code on macOS — single-command visibility into MCP servers, extensions, plugins, connectors, scheduled tasks, and permissions.

Skill Claude Code pour audit de sécurité complet (OWASP Top 10, CWE/CVE, headers, auth, paywall, infra)

Curated, security-first OpenClaw skills (Markdown-based). Security audit skills - detect prompt injection, supply chain attacks, credential leaks. Works with Codex CLI, Claude Code, any LLM.

Audit agent skill definitions for security, completeness, and compatibility across Codex, Claude Code, OpenClaw, and more

Open-source security gateway for LLM APIs — prompt injection detection, PII redaction, dangerous response sanitization, and audit logging. OpenAI/Claude compatible, MCP & Agent SKILL support. Drop-in proxy for AI coding agents (Cursor, Claude Code, Codex).

24 AI Agent Skills for professional security auditing of Supabase applications. Detection, key extraction, RLS testing, storage audit, IDOR detection, and comprehensive reporting. Works with Claude Code, Cursor, Windsurf, and 30+ AI agents.

A Claude Code Skill for non-intrusive security audits of Kubernetes clusters.

FAT Agent (Fix, Audit, Test) — a Claude Skill that automates post-launch website QA. Audits SEO, security, accessibility, performance, and more.

90-point full-stack audit skill for websites and web apps. Catches security holes, UX gaps, and compliance issues that AI-generated code gets wrong. Works with Claude Code, Cursor, Codex, Gemini CLI.

No description available

Claude Code slash command for white-box security auditing with OWASP Top 10:2025 and NIST CSF 2.0 mapping

Production-grade development pipeline for Claude Code: 10 skills + 6 reference guides. TDD, security audits, quality gates, clean code.

46 automated checks across 6 layers. Project health audit skill for Claude Code. Security first. Zero dependencies.

Claude Code skill for running structured security audits with actionable remediation plans

Security hooks for AI coding assistants (Claude Code, Cursor, Gemini CLI) - block dangerous commands, protect files, audit logsSecurity hooks for AI coding assistants (Claude Code, Cursor, Gemini CLI) - block dangerous commands, protect files, audit logs

Agent Skill for PHP security audits - OWASP patterns, vulnerability detection | Claude Code compatible

Composable Agent Skills for Polymarket prediction market trading. Paper-trading-first, security-audited. Works with Claude Code, OpenClaw, NanoClaw, Codex, Cursor.

60+ Claude Code skills for full-stack SaaS development. Covers PHP/MySQL backend, Android (Kotlin/Compose), iOS (Swift/SwiftUI), 21 UI/UX design skills, security auditing, SDLC documentation, and AI-assisted workflows. Plug into any project.

A 100% local memory layer for chatbots and agents with an MCP server for Claude, GPT, Gemini, and local models. It auto-saves conversations, ingests documents and markdown vaults, and provides hybrid retrieval (vector + keyword + graph) plus enterprise security (OAuth2, API keys, rate limiting, audit logs) and integrations (Slack import, Notion/GDr

Scan, harden, and audit OpenClaw deployments. Includes Claude Code Security integration, MCP-aligned configs, and a static skill scanner backed by Anthropic's security research.

Discover and audit MCP servers for security vulnerabilities across Claude Code, Cursor, VS Code, and more