Skip to main content
Jeden Skill in Manus ausführen
mit einem Klick
GitHub-Repository

security-check

security-check enthält 49 gesammelte Skills von ersinkoc, mit Repository-Berufsabdeckung und Skill-Detailseiten auf SkillsMP.

gesammelte Skills
49
Stars
47
aktualisiert
2026-07-07
Forks
5
Berufsabdeckung
2 Berufskategorien · 100% klassifiziert
Repository-Explorer

Skills in diesem Repository

security-check
Informationssicherheitsanalysten

Comprehensive AI-powered security scanning suite with 48 skills covering OWASP Top 10, 7 language-specific deep scanners (Go, TypeScript, Python, PHP, Rust, Java, C#), supply chain analysis, infrastructure-as-code scanning, and 3000+ checklist items. Use when you need to run a security audit, find vulnerabilities, scan a PR for security issues, or perform a penetration test on a codebase.

2026-07-07
sc-lang-csharp
Informationssicherheitsanalysten

C#/.NET-specific security deep scan

2026-04-08
sc-lang-go
Informationssicherheitsanalysten

Go-specific security deep scan

2026-04-08
sc-lang-java
Informationssicherheitsanalysten

Java/Kotlin-specific security deep scan

2026-04-08
sc-lang-php
Informationssicherheitsanalysten

PHP-specific security deep scan

2026-04-08
sc-lang-python
Informationssicherheitsanalysten

Python-specific security deep scan

2026-04-08
sc-lang-rust
Informationssicherheitsanalysten

Rust-specific security deep scan

2026-04-08
sc-lang-typescript
Informationssicherheitsanalysten

TypeScript/JavaScript-specific security deep scan

2026-04-08
sc-api-security
Informationssicherheitsanalysten

REST, GraphQL, and gRPC API security audit — authentication, authorization, data exposure, and configuration

2026-04-08
sc-auth
Informationssicherheitsanalysten

Authentication flaw detection — weak passwords, broken auth, credential stuffing, and bypass vectors

2026-04-08
sc-authz
Informationssicherheitsanalysten

Authorization flaw detection — IDOR, broken access control, horizontal and vertical privilege issues

2026-04-08
sc-business-logic
Informationssicherheitsanalysten

Business logic flaw detection — price manipulation, workflow bypass, race conditions, and abuse vectors

2026-04-08
sc-ci-cd
Informationssicherheitsanalysten

CI/CD pipeline security — GitHub Actions injection, secret exposure, untrusted actions, and artifact poisoning

2026-04-08
sc-clickjacking
Informationssicherheitsanalysten

Clickjacking and UI redressing detection — missing frame protection headers and CSP frame-ancestors

2026-04-08
sc-cmdi
Informationssicherheitsanalysten

OS Command Injection detection in shell execution, subprocess calls, and process spawning

2026-04-08
sc-cors
Informationssicherheitsanalysten

CORS misconfiguration detection — wildcard origin, reflected origin, null origin, and credential leaks

2026-04-08
sc-crypto
Informationssicherheitsanalysten

Cryptography misuse detection — weak algorithms, ECB mode, static IVs, weak PRNG, and key management flaws

2026-04-08
sc-csrf
Informationssicherheitsanalysten

Cross-Site Request Forgery detection — missing tokens, SameSite misconfiguration, and CORS-CSRF interaction

2026-04-08
sc-data-exposure
Informationssicherheitsanalysten

Sensitive data exposure detection — PII leaks, verbose errors, debug mode, and information disclosure

2026-04-08
sc-dependency-audit
Informationssicherheitsanalysten

Supply chain and dependency security analysis across all package ecosystems

2026-04-08
sc-deserialization
Informationssicherheitsanalysten

Insecure deserialization detection across all serialization formats and languages

2026-04-08
sc-diff-report
Informationssicherheitsanalysten

Incremental security scan for changed files only — optimized for PR and commit-level reviews

2026-04-08
sc-docker
Informationssicherheitsanalysten

Docker-specific security checks — image hardening, secrets in layers, compose security, and runtime configuration

2026-04-08
sc-file-upload
Informationssicherheitsanalysten

Insecure file upload detection — unrestricted types, MIME mismatch, polyglot files, and webshell upload

2026-04-08
sc-graphql
Informationssicherheitsanalysten

GraphQL injection, introspection abuse, query complexity attacks, and authorization bypass detection

2026-04-08
sc-header-injection
Informationssicherheitsanalysten

HTTP Header Injection and Response Splitting detection via CRLF injection in headers

2026-04-08
sc-iac
Informationssicherheitsanalysten

Infrastructure-as-Code security scanning — Dockerfile, Kubernetes, Terraform, and GitHub Actions misconfigurations

2026-04-08
sc-jwt
Informationssicherheitsanalysten

JWT implementation flaw detection — algorithm confusion, weak secrets, missing validation, and storage issues

2026-04-08
sc-ldap
Informationssicherheitsanalysten

LDAP Injection detection in search filters, DN construction, and bind operations

2026-04-08
sc-mass-assignment
Informationssicherheitsanalysten

Mass assignment and over-posting detection — unfiltered request body binding to data models

2026-04-08
sc-nosqli
Informationssicherheitsanalysten

NoSQL Injection detection for MongoDB, Redis, CouchDB, and Elasticsearch

2026-04-08
sc-open-redirect
Informationssicherheitsanalysten

Open redirect detection — unvalidated redirect URLs, protocol-relative bypasses, and URI scheme abuse

2026-04-08
sc-orchestrator
Softwareentwickler

Master orchestration skill that coordinates the entire 4-phase security scanning pipeline

2026-04-08
sc-path-traversal
Softwareentwickler

Path traversal and directory traversal detection — LFI, RFI, zip slip, and symlink attacks

2026-04-08
sc-privilege-escalation
Softwareentwickler

Privilege escalation vector detection — role manipulation, admin bypass, and RBAC circumvention

2026-04-08
sc-race-condition
Softwareentwickler

Race condition and TOCTOU detection — database races, file system races, double-spend, and atomicity failures

2026-04-08
sc-rate-limiting
Softwareentwickler

Missing rate limiting and application-level DoS vector detection — ReDoS, query complexity, resource exhaustion

2026-04-08
sc-rce
Softwareentwickler

Remote Code Execution detection via eval, exec, dynamic code loading, and code injection vectors

2026-04-08
sc-recon
Softwareentwickler

Codebase discovery and architecture mapping for security analysis

2026-04-08
sc-report
Softwareentwickler

Final consolidated security assessment report generator with CVSS severity and remediation roadmap

2026-04-08
Zeigt die Top 40 von 49 gesammelten Skills in diesem Repository.