security-test-generator
CommunityGenerate security tests from NFRs.
Authortikazyq
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill automates the creation of comprehensive security test cases based on Non-Functional Requirements (NFRs), ensuring robust application security.
Core Features & Use Cases
- STRIDE Threat Modeling: Generates threat models based on the STRIDE framework (Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, Elevation of Privilege).
- OWASP Top 10 Mapping: Maps security NFRs to relevant OWASP Top 10 vulnerabilities and generates corresponding test scenarios.
- Use Case: For a web application with NFRs specifying secure authentication and data encryption, this Skill will produce STRIDE threats related to Spoofing and Information Disclosure, and map them to OWASP's "Identification and Authentication Failures" and "Cryptographic Failures," generating specific test cases like "Given a user attempts to bypass the login form with invalid credentials, When the system validates the input, Then the login attempt should be denied."
Quick Start
Generate security test scenarios for a web application based on its NFRs and architecture design.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: security-test-generator Download link: https://github.com/tikazyq/agentic-spec-forge/archive/main.zip#security-test-generator Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.