一键导入
cloudflare-security-audit
Audit Cloudflare security posture — WAF rules, security events, IP access rules, DDoS status
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Audit Cloudflare security posture — WAF rules, security events, IP access rules, DDoS status
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
Deploy and manage Cloudflare Workers — upload scripts, configure routes, manage secrets, view analytics
Cloudflare zone health dashboard — DNS, security, tunnels, WAF, DDoS status
Manage Cloudflare R2 storage buckets and objects — create, list, inspect, delete buckets and objects
Manage Cloudflare Workers KV namespaces and key-value pairs — create, list, read, write, delete
Live integration test for all Cloudflare MCP tools — read + safe writes with cleanup
Manage Cloudflare DNS records — add, list, update, delete records with verification across multiple zones
| name | cloudflare-security-audit |
| description | Audit Cloudflare security posture — WAF rules, security events, IP access rules, DDoS status |
Workflow skill for auditing the security posture of Cloudflare zones. Reviews active threats, WAF configuration, security events, IP access rules, and DDoS analytics. Produces a structured audit report with findings and recommendations.
For each zone, fire all of these tool calls simultaneously:
cloudflare_under_attack_status — current security level and Under Attack Mode statecloudflare_security_events — security events from the last 24 hourscloudflare_ddos_analytics — DDoS analytics from the last 24 hourscloudflare_waf_list_rulesets — configured WAF rulesets (managed + custom)cloudflare_waf_list_custom_rules — all custom WAF rules (expressions, actions)cloudflare_ip_access_list — IP access rules (blocked IPs, challenged ranges, allowed ranges)Process the collected data and produce an analysis per zone:
Active Attack Status:
Security Events Summary (Last 24h):
DDoS Analytics Summary (Last 24h):
WAF Configuration Audit:
IP Access Rules Audit:
Produce a structured report:
Security Audit Report — [Zone Name] — [Timestamp]
Overall Severity: 🟢/🟡/🔴
Attack Status:
Security Events (Last 24h):
DDoS Analytics (Last 24h):
WAF Coverage:
IP Access Rules:
Findings:
Recommendations:
🟢 HEALTHY — All of the following are true:
🟡 WARNING — Any of the following:
🔴 CRITICAL — Any of the following:
cloudflare-incident-response skill.cloudflare_under_attack_status — current security level and Under Attack Modecloudflare_security_events — security event log (last 24h)cloudflare_ddos_analytics — DDoS analytics data (last 24h)cloudflare_waf_list_rulesets — list all WAF rulesets per zonecloudflare_waf_list_custom_rules — list custom WAF rules with expressionscloudflare_ip_access_list — list IP access rules (blocks, challenges, allows)