Eyadkelleh Awesome Claude Skills Security
eyadkelleh-awesome-claude-skills-security is a Claude Code plugin for the Ship phase that bundles SecLists wordlists, injection payloads, and expert security agents for authorized testing.
by Eyadkelleh · github.com/Eyadkelleh/awesome-claude-skills-security
Install a Claude Code security bundle when you need authorized injection testing, wordlists, and red-team style checks without hunting payloads across repos.
Add it to Claude Code
Install the plugin in Claude Code. One command, paste-ready.
/plugin install eyadkelleh-awesome-claude-skills-security@Eyadkelleh/awesome-claude-skills-securityBuilt to be called by your agent
Skillselion is itself an MCP server. Your agent can pull this entry and a paste-ready install config straight from the API - no copy-paste.
Retrieve this entry with skillselion.get_details("plugin:Eyadkelleh/awesome-claude-skills-security") and the paste-ready config with skillselion.get_install_config("plugin:Eyadkelleh/awesome-claude-skills-security").
What it does
eyadkelleh-awesome-claude-skills-security is a Claude Code plugin bundle aimed at builders and security-minded developers who need structured offensive and defensive testing inside the agent loop. It packages curated SecLists wordlists, injection and fuzzing payloads, webshell and upload-testing patterns, and expert-oriented agents for work you are explicitly allowed to perform—internal QA, CTFs, bug bounties, and hardened pre-release reviews. Rather than treating security as a one-off script, the toolkit gives repeatable vocabulary for enumeration, password and username lists, shell commands, and policy-aware red-team prompts so Claude can reason about attack surfaces while you stay inside scope. It fits indie SaaS and API authors who ship fast with AI assistance but still owe users a serious pass over auth, input handling, and LLM guardrails before launch.
Highlights
- Seven curated Claude Code security plugins in one marketplace entry
- SecLists-style wordlists plus SQLi, XSS, XXE, and shell-oriented injection samples
- Specialized agents for authorized pentesting, CTF practice, and bug-bounty workflows
- LLM-focused coverage: prompt injection, data leakage, bias, and adversarial testing patterns
- Defensive hooks: credential, API-key, and sensitive-data detection regex and validation templates
Why builders use it
Solo builders using Claude Code lack a single, scope-safe place to pull pentest wordlists, injection cases, and LLM attack patterns when hardening an app before release.
After you add the bundle, Claude can reference curated security lists and testing playbooks during authorized reviews so you catch injection, leakage, and misconfiguration issues earlier.
At a glance
- Type - Plugin in Security.
- Adoption - 0 installs, 134 stars, 0 votes.
FAQ
Who is eyadkelleh-awesome-claude-skills-security for?
It is for Claude Code users doing authorized security work—app hardening, bug bounties, CTFs, and red-team style LLM checks—who want wordlists and payloads in one catalog install.
When should I use eyadkelleh-awesome-claude-skills-security?
Use it in the Ship security phase before production launch, after major auth or API changes, or when validating prompt-injection resistance for agent features.
How do I add eyadkelleh-awesome-claude-skills-security to my agent?
Register or install the plugin from the Eyadkelleh/awesome-claude-skills-security marketplace entry in Claude Code, then invoke its security skills only against systems you are permitted to test.
Comments
Share how you use eyadkelleh-awesome-claude-skills-security, gotchas, or tips for other indie builders.
No comments yet - be the first to share how you use it.