Summary
This is a comprehensive security auditing framework that walks you through systematic vulnerability analysis using taint tracking (marking untrusted data at entry points and following it to dangerous operations). It covers the big categories: injection flaws, memory safety bugs, auth bypasses, crypto mistakes, race conditions, and supply chain issues. The methodology is sound,start with sink-backward analysis for quick wins on high-risk operations like eval and SQL execution, then do source-forward sweeps for completeness. What's genuinely useful here is the false positive reduction checklist and the variant analysis section that teaches you to generalize each finding into a pattern and hunt for similar bugs. The source-sink mappings and taint propagation rules give you concrete patterns to look for rather than vague guidance.
Install to Claude Code
npx -y skills add hypnguyen1209/offensive-claude --skill vulnerability-analysis --agent claude-codeInstalls into .claude/skills of the current project.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Files
SKILL.md
Select a file.
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
