Skip to main content
Ejecuta cualquier Skill en Manus
con un clic
Repositorio de GitHub

security-check

security-check contiene 49 skills recopiladas de ersinkoc, con cobertura ocupacional por repositorio y páginas de detalle dentro del sitio.

skills recopiladas
49
Stars
47
actualizado
2026-07-07
Forks
5
Cobertura ocupacional
2 categorías ocupacionales · 100% clasificado
explorador de repositorios

Skills en este repositorio

security-check
Analistas de seguridad de la información

Comprehensive AI-powered security scanning suite with 48 skills covering OWASP Top 10, 7 language-specific deep scanners (Go, TypeScript, Python, PHP, Rust, Java, C#), supply chain analysis, infrastructure-as-code scanning, and 3000+ checklist items. Use when you need to run a security audit, find vulnerabilities, scan a PR for security issues, or perform a penetration test on a codebase.

2026-07-07
sc-lang-csharp
Analistas de seguridad de la información

C#/.NET-specific security deep scan

2026-04-08
sc-lang-go
Analistas de seguridad de la información

Go-specific security deep scan

2026-04-08
sc-lang-java
Analistas de seguridad de la información

Java/Kotlin-specific security deep scan

2026-04-08
sc-lang-php
Analistas de seguridad de la información

PHP-specific security deep scan

2026-04-08
sc-lang-python
Analistas de seguridad de la información

Python-specific security deep scan

2026-04-08
sc-lang-rust
Analistas de seguridad de la información

Rust-specific security deep scan

2026-04-08
sc-lang-typescript
Analistas de seguridad de la información

TypeScript/JavaScript-specific security deep scan

2026-04-08
sc-api-security
Analistas de seguridad de la información

REST, GraphQL, and gRPC API security audit — authentication, authorization, data exposure, and configuration

2026-04-08
sc-auth
Analistas de seguridad de la información

Authentication flaw detection — weak passwords, broken auth, credential stuffing, and bypass vectors

2026-04-08
sc-authz
Analistas de seguridad de la información

Authorization flaw detection — IDOR, broken access control, horizontal and vertical privilege issues

2026-04-08
sc-business-logic
Analistas de seguridad de la información

Business logic flaw detection — price manipulation, workflow bypass, race conditions, and abuse vectors

2026-04-08
sc-ci-cd
Analistas de seguridad de la información

CI/CD pipeline security — GitHub Actions injection, secret exposure, untrusted actions, and artifact poisoning

2026-04-08
sc-clickjacking
Analistas de seguridad de la información

Clickjacking and UI redressing detection — missing frame protection headers and CSP frame-ancestors

2026-04-08
sc-cmdi
Analistas de seguridad de la información

OS Command Injection detection in shell execution, subprocess calls, and process spawning

2026-04-08
sc-cors
Analistas de seguridad de la información

CORS misconfiguration detection — wildcard origin, reflected origin, null origin, and credential leaks

2026-04-08
sc-crypto
Analistas de seguridad de la información

Cryptography misuse detection — weak algorithms, ECB mode, static IVs, weak PRNG, and key management flaws

2026-04-08
sc-csrf
Analistas de seguridad de la información

Cross-Site Request Forgery detection — missing tokens, SameSite misconfiguration, and CORS-CSRF interaction

2026-04-08
sc-data-exposure
Analistas de seguridad de la información

Sensitive data exposure detection — PII leaks, verbose errors, debug mode, and information disclosure

2026-04-08
sc-dependency-audit
Analistas de seguridad de la información

Supply chain and dependency security analysis across all package ecosystems

2026-04-08
sc-deserialization
Analistas de seguridad de la información

Insecure deserialization detection across all serialization formats and languages

2026-04-08
sc-diff-report
Analistas de seguridad de la información

Incremental security scan for changed files only — optimized for PR and commit-level reviews

2026-04-08
sc-docker
Analistas de seguridad de la información

Docker-specific security checks — image hardening, secrets in layers, compose security, and runtime configuration

2026-04-08
sc-file-upload
Analistas de seguridad de la información

Insecure file upload detection — unrestricted types, MIME mismatch, polyglot files, and webshell upload

2026-04-08
sc-graphql
Analistas de seguridad de la información

GraphQL injection, introspection abuse, query complexity attacks, and authorization bypass detection

2026-04-08
sc-header-injection
Analistas de seguridad de la información

HTTP Header Injection and Response Splitting detection via CRLF injection in headers

2026-04-08
sc-iac
Analistas de seguridad de la información

Infrastructure-as-Code security scanning — Dockerfile, Kubernetes, Terraform, and GitHub Actions misconfigurations

2026-04-08
sc-jwt
Analistas de seguridad de la información

JWT implementation flaw detection — algorithm confusion, weak secrets, missing validation, and storage issues

2026-04-08
sc-ldap
Analistas de seguridad de la información

LDAP Injection detection in search filters, DN construction, and bind operations

2026-04-08
sc-mass-assignment
Analistas de seguridad de la información

Mass assignment and over-posting detection — unfiltered request body binding to data models

2026-04-08
sc-nosqli
Analistas de seguridad de la información

NoSQL Injection detection for MongoDB, Redis, CouchDB, and Elasticsearch

2026-04-08
sc-open-redirect
Analistas de seguridad de la información

Open redirect detection — unvalidated redirect URLs, protocol-relative bypasses, and URI scheme abuse

2026-04-08
sc-orchestrator
Desarrolladores de software

Master orchestration skill that coordinates the entire 4-phase security scanning pipeline

2026-04-08
sc-path-traversal
Desarrolladores de software

Path traversal and directory traversal detection — LFI, RFI, zip slip, and symlink attacks

2026-04-08
sc-privilege-escalation
Desarrolladores de software

Privilege escalation vector detection — role manipulation, admin bypass, and RBAC circumvention

2026-04-08
sc-race-condition
Desarrolladores de software

Race condition and TOCTOU detection — database races, file system races, double-spend, and atomicity failures

2026-04-08
sc-rate-limiting
Desarrolladores de software

Missing rate limiting and application-level DoS vector detection — ReDoS, query complexity, resource exhaustion

2026-04-08
sc-rce
Desarrolladores de software

Remote Code Execution detection via eval, exec, dynamic code loading, and code injection vectors

2026-04-08
sc-recon
Desarrolladores de software

Codebase discovery and architecture mapping for security analysis

2026-04-08
sc-report
Desarrolladores de software

Final consolidated security assessment report generator with CVSS severity and remediation roadmap

2026-04-08
Mostrando las 40 principales de 49 skills recopiladas en este repositorio.