원클릭으로
cloudflare-security-audit
Audit Cloudflare security posture — WAF rules, security events, IP access rules, DDoS status
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
메뉴
Audit Cloudflare security posture — WAF rules, security events, IP access rules, DDoS status
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
SOC 직업 분류 기준
| name | cloudflare-security-audit |
| description | Audit Cloudflare security posture — WAF rules, security events, IP access rules, DDoS status |
Workflow skill for auditing the security posture of Cloudflare zones. Reviews active threats, WAF configuration, security events, IP access rules, and DDoS analytics. Produces a structured audit report with findings and recommendations.
For each zone, fire all of these tool calls simultaneously:
cloudflare_under_attack_status — current security level and Under Attack Mode statecloudflare_security_events — security events from the last 24 hourscloudflare_ddos_analytics — DDoS analytics from the last 24 hourscloudflare_waf_list_rulesets — configured WAF rulesets (managed + custom)cloudflare_waf_list_custom_rules — all custom WAF rules (expressions, actions)cloudflare_ip_access_list — IP access rules (blocked IPs, challenged ranges, allowed ranges)Process the collected data and produce an analysis per zone:
Active Attack Status:
Security Events Summary (Last 24h):
DDoS Analytics Summary (Last 24h):
WAF Configuration Audit:
IP Access Rules Audit:
Produce a structured report:
Security Audit Report — [Zone Name] — [Timestamp]
Overall Severity: 🟢/🟡/🔴
Attack Status:
Security Events (Last 24h):
DDoS Analytics (Last 24h):
WAF Coverage:
IP Access Rules:
Findings:
Recommendations:
🟢 HEALTHY — All of the following are true:
🟡 WARNING — Any of the following:
🔴 CRITICAL — Any of the following:
cloudflare-incident-response skill.cloudflare_under_attack_status — current security level and Under Attack Modecloudflare_security_events — security event log (last 24h)cloudflare_ddos_analytics — DDoS analytics data (last 24h)cloudflare_waf_list_rulesets — list all WAF rulesets per zonecloudflare_waf_list_custom_rules — list custom WAF rules with expressionscloudflare_ip_access_list — list IP access rules (blocks, challenges, allows)Deploy and manage Cloudflare Workers — upload scripts, configure routes, manage secrets, view analytics
Cloudflare zone health dashboard — DNS, security, tunnels, WAF, DDoS status
Manage Cloudflare R2 storage buckets and objects — create, list, inspect, delete buckets and objects
Manage Cloudflare Workers KV namespaces and key-value pairs — create, list, read, write, delete
Live integration test for all Cloudflare MCP tools — read + safe writes with cleanup
Manage Cloudflare DNS records — add, list, update, delete records with verification across multiple zones