بنقرة واحدة
using-perseus
Use when starting a security conversation to understand the Perseus methodology
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
القائمة
Use when starting a security conversation to understand the Perseus methodology
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
Use when you want to run a full, automated penetration test from start to finish (Scan -> Audit -> Exploit -> Report)
Use when analyzing components for vulnerabilities (Phase 2 - Parallel Analysis)
Use when verifying vulnerabilities with Dynamic Exploit Generation (Phase 3)
Use when generating the final executive security report (Phase 4)
Run all specialist deep-dive skills in parallel for comprehensive analysis
Deep-dive API security analysis (REST, GraphQL, WebSocket, gRPC, OAuth, Cache)
استنادا إلى تصنيف SOC المهني
| name | using-perseus |
| description | Use when starting a security conversation to understand the Perseus methodology |
Perseus is a rigorous, automated security assessment framework for Claude Code. It transforms the AI into a structured penetration tester.
Core Principle: Methodological rigor over ad-hoc guessing. We do not "look around"; we execute specific phases.
The assessment MUST follow this linear sequence. Do not skip phases.
/scan)Goal: Map the attack surface.
Skill: perseus:scan (or /scan).deliverables/code_analysis_deliverable.md (Target Knowledge Graph).Goal: Prove potential vulnerability.
Skill: perseus:audit.deliverables/.Goal: Verify impact (False Positive Filtering).
Skill: perseus:exploit.whoami, alert(1), sleep).deliverables/exploitation_report.md./report)Goal: Communicate risk.
Skill: perseus:report (or /report).SECURITY_REPORT.md with executive summary and risk scoring./specialist)Goal: Run all deep-dive specialists in parallel.
Skill: perseus-specialist (or /specialist).Always select engagement mode before Phase 1. If user does not specify, default to PRODUCTION_SAFE.
| Mode | Intended Environment | Verification Style |
|---|---|---|
PRODUCTION_SAFE | Live production | Passive analysis + minimal non-disruptive verification |
STAGING_ACTIVE | Staging/pre-prod | Targeted active verification with throttling |
LAB_FULL | Isolated lab | Full dynamic verification for hard-to-reproduce findings |
LAB_RED_TEAM | Dedicated security lab | Adversarial chain simulation with strict legal scope |
Mode selection rule:
PRODUCTION_SAFE.rm, DROP TABLE).LAB_RED_TEAM only on isolated test environment with non-production data.If the user asks for a security review, pentest, or audit, ALWAYS start with:
I will use the Perseus methodology to assess this codebase.
Starting Phase 1: Reconnaissance...
[Invoking /scan]