Skip to main content
ClaudeWave
Skill228 estrellas del repoactualizado yesterday

securing-systems

Security engineering router for authorized assessments and defensive engineering. Covers penetration testing, code auditing, red/blue/purple team operations, threat intelligence, and vulnerability research. For specialized application security, cloud security, detection engineering, or security architecture, route to dedicated skills (defending-applications, securing-cloud-and-supply-chain, detecting-and-responding, architecting-security).

Ver fuenteRepositorio: code-abyss
Instalar en Claude Code
Copiar
git clone --depth 1 https://github.com/telagod/code-abyss /tmp/securing-systems && cp -r /tmp/securing-systems/skills/securing-systems ~/.claude/skills/securing-systems
Después abre una sesión nueva de Claude Code; el skill carga automáticamente.
Definición

SKILL.md

# 攻防秘典

> **安全工程总路由**:通用攻防视角与红队 / 蓝队 / 紫队基础知识。
> 专域工作(应用安全防御、云原生加固、检测工程、安全架构)走专门 skill。
> 信级:项目文件 > 标准库 > 训练记忆(标 `[unverified]`)

## 路由

### 攻防基础(本 skill 内)

| 意图 | 秘典 | 核心 |
|------|------|------|
| 渗透测试 | [pentest](references/pentest.md) | Web/API/内网、OWASP、BOLA、JWT、GraphQL |
| 代码审计 | [code-audit](references/code-audit.md) | 危险函数、污点追踪、Source→Sink |
| 红队攻击 | [red-team](references/red-team.md) | PoC、C2、横移、免杀、供应链 |
| 蓝队防御 | [blue-team](references/blue-team.md) | 检测、SOC、IR、取证、密钥轮换 |
| 威胁情报 | [threat-intel](references/threat-intel.md) | OSINT、威胁狩猎、ATT&CK 建模 |
| 漏洞研究 | [vuln-research](references/vuln-research.md) | 逆向、Exploit、Fuzzing、PWN |

### 专域路由(其他 skill)

| 意图 | 走 skill | 适用 |
|------|---------|------|
| 应用层防御(XSS / SQLi / OAuth / LLM AppSec) | [defending-applications](../defending-applications/SKILL.md) | 写代码 / 修 CVE / 鉴权设计 |
| 云原生 + 供应链加固 | [securing-cloud-and-supply-chain](../securing-cloud-and-supply-chain/SKILL.md) | K8s / CI/CD / SLSA / 云 IAM |
| 检测工程 + 蓝紫队 | [detecting-and-responding](../detecting-and-responding/SKILL.md) | Sigma / EDR / IR / 威胁狩猎 |
| 安全架构 + 合规 + 身份 | [architecting-security](../architecting-security/SKILL.md) | 威胁建模 / 零信任 / SOC2/PCI |

## 执行链

```
攻:侦察 → 武器化 → 投递 → 利用 → 安装 → C2 → 行动
守:预防 → 检测 → 响应 → 恢复
紫队:ATT&CK → 红攻 → 蓝检 → 缺口 → 闭环
```

## 输出约束

- 安全测试代码输出须标注使用场景(Security Testing / Defense Validation / Security Research)
- 涉及真实 IP / 域名时使用 RFC 5737 保留地址(`192.0.2.0/24`、`198.51.100.0/24`)或 `example.com`
- 凭证、密钥、Token 一律使用占位符(`<REDACTED>`、`<TARGET-TOKEN>`)
- 不生成针对特定未授权目标的定制攻击代码
- 优先输出防御视角:每个攻击技术附带检测 / 缓解建议
- 涉及云端写入、生产环境、凭据、远程 push/PR、CI/CD 权限或基础设施变更前,必须先确认范围和授权

## 优先级

| 场景 | 排序 |
|------|------|
| 攻击模拟 | 效果 > 精准 > 控制 |
| 防御响应 | 正确 > 覆盖 > 速度 |
| 紧急事件 | 速度 > 正确 > 简洁 |
Del mismo repositorio
analyzing-changesSkill

Analyzes code changes, detects documentation drift, and evaluates change impact scope. Use when reviewing diffs, checking doc sync, or running pre-commit analysis. Automatically triggered after design-level changes or refactoring.

analyzing-securitySkill

Scans code for security vulnerabilities, detects dangerous patterns, and ensures security decisions are documented. Use when running security scans, auditing code, or checking for OWASP issues, injection risks, or sensitive data leaks. Automatically triggered on new modules, security-related changes, or post-refactor.

analyzing-spreadsheetsSkill

Processes Excel spreadsheet files (.xlsx, .xlsm, .csv). Creates workbooks, builds formulas, preserves formatting, analyzes tabular data, and validates financial models with zero-formula-error delivery. Use when working with spreadsheet files or tabular data analysis. Do NOT use for Word documents, PDFs, presentations, or database pipelines.

applying-ui-design-systemSkill

Frontend UI design system selector and implementation guide covering Glassmorphism, Liquid Glass (Apple-style), Neubrutalism, and Claymorphism. Use when building UI components, choosing a visual aesthetic, implementing design tokens, or auditing accessibility/contrast on themed surfaces. Provides per-style tokens, component patterns, dark mode, and a11y constraints.

architecting-securitySkill

安全架构与治理:威胁建模 (STRIDE/PASTA/LINDDUN)、零信任身份架构、IAM/SSO/MFA/PAM、合规框架 (SOC2/PCI/HIPAA/GDPR)、DLP、隐私工程、安全控制设计。Use when designing security architecture, threat modeling new systems, implementing zero-trust identity, designing IAM/SSO/PAM, building compliance evidence chains, or planning privacy-by-design.

automating-devopsSkill

DevOps knowledge reference covering Git workflows, testing strategies, DevSecOps, release pipeline orchestration (release.yml, multi-arch images, cosign integration), CI/CD pipelines, database management, observability, and performance optimization. Use when working with Git, CI/CD, release pipelines, ghcr image publishing, testing, monitoring, or infrastructure automation.

building-agent-systemsSkill

AI agent and LLM system engineering reference covering single-agent dev (ReAct, tool calling, plan-execute), multi-agent coordination (swarm, role decomposition, file locking), LLM security (prompt injection, jailbreak defense, output filtering), RAG architecture (chunking, hybrid retrieval, rerank), and prompt engineering / evaluation (RAGAS, LLM-as-Judge). Use when building AI agents, designing RAG pipelines, orchestrating multi-agent workflows, hardening LLM apps, or writing prompts.

checking-code-qualitySkill

Checks code quality metrics including complexity, duplication, naming conventions, and function length. Use when running quality gates, reviewing code smells, or checking lint rules. Automatically triggered on complex modules or post-refactor.