Skills
.Work. You
Rest

scan-fase-7

Community

Comprehensive HTTP security headers analysis.

Software Engineering#csp#hsts#security-headers#x-frame-options#x-content-type-options#referrer-policy
Authorricardoo022
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Web applications often ship with insecure or misconfigured HTTP security headers, exposing users to XSS, clickjacking, data leakage, and protocol downgrades. This skill automates detection across endpoints and methods, identifies gaps in CSP, HSTS, X-Frame-Options, and related headers, and suggests fixes tailored to the target infrastructure. It enables security engineers to rapidly quantify header configurations and prioritize remediation.

Core Features & Use Cases

  • CSP analysis and validation across endpoints (including report-only and mixed-content risks).
  • HSTS enforcement checks with subdomain coverage and preload readiness.
  • X-Frame-Options, X-Content-Type-Options, Referrer-Policy, and Permissions-Policy assessments with actionable mitigations.
  • Use Case: Integrate into a CI/CD or manual audit to ensure consistent header hardening before release.

Quick Start

Invoke with /scan-fase-7 {url} to begin the security headers assessment.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: scan-fase-7
Download link: https://github.com/ricardoo022/PentestAI-with-claude-code/archive/main.zip#scan-fase-7

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.