security-scannerAutomated security scanning and vulnerability detection for web applications, APIs, and infrastructure. Use when you need to scan targets for vulnerabilities, check SSL certificates, find open ports, detect misconfigurations, or perform security audits. Integrates with nmap, nuclei, and other security tools.
Install via ClawdBot CLI:
clawdbot install dmx64/security-scannerGrade Fair — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.
Calls external URL not in known-safe list
https://TARGETAudited Apr 17, 2026 · audit v1.0
Generated Mar 1, 2026
Security teams use this skill to conduct authorized penetration tests on e-commerce websites, scanning for vulnerabilities like SQL injection or cross-site scripting in web applications and APIs. It helps identify weaknesses before attackers exploit them, ensuring customer data protection and compliance with PCI DSS standards.
IT security professionals in banks and financial firms employ this skill to audit internal infrastructure, checking for open ports, misconfigurations, and SSL/TLS weaknesses in servers and networks. This proactive scanning helps prevent data breaches and meets regulatory requirements such as GDPR or SOX.
Developers and DevOps engineers at tech startups use this skill to scan APIs for vulnerabilities like insecure endpoints or authentication flaws during development cycles. It integrates with tools like nuclei to automate detection, reducing risks in cloud-based applications and microservices.
Healthcare organizations leverage this skill to perform security scans on web applications and infrastructure handling patient data, ensuring compliance with HIPAA regulations. It detects vulnerabilities and generates reports for audits, helping maintain data integrity and avoid penalties.
Cybersecurity teams in government agencies use this skill to regularly scan public-facing websites and internal networks for vulnerabilities, using nmap and nuclei for comprehensive assessments. This supports national security initiatives by identifying and patching weaknesses in critical infrastructure.
Offer this skill as part of a monthly or annual subscription service, providing continuous security scanning and vulnerability reports to clients. Revenue is generated through recurring fees, with tiered pricing based on scan frequency and target scope, appealing to SMEs needing affordable security solutions.
Deploy this skill in a consulting model where security experts conduct one-time or periodic penetration tests and audits for clients. Revenue comes from project-based fees, with additional income from follow-up remediation services and training, targeting enterprises with complex security needs.
Integrate this skill into existing DevSecOps platforms or CI/CD pipelines, selling it as an add-on for automated security scanning during development. Revenue is generated through licensing fees or per-scan charges, catering to tech companies looking to embed security into their agile workflows.
💬 Integration Tip
Integrate this skill into CI/CD pipelines using automation scripts to run scans on staging environments before deployment, ensuring vulnerabilities are caught early without disrupting production.
Scored Apr 18, 2026
Tool discovery and shell one-liner reference for sysadmin, DevOps, and security tasks. AUTO-CONSULT this skill when the user is: troubleshooting network issues, debugging processes, analyzing logs, working with SSL/TLS, managing DNS, testing HTTP endpoints, auditing security, working with containers, writing shell scripts, or asks 'what tool should I use for X'. Source: github.com/trimstray/the-book-of-secret-knowledge
Manage Tailscale tailnet via CLI and API. Use when the user asks to "check tailscale status", "list tailscale devices", "ping a device", "send file via tailscale", "tailscale funnel", "create auth key", "check who's online", or mentions Tailscale network management.
Control Pi-hole v6 DNS ad blocker: check status, view stats, enable/disable block, and analyze blocked domains via API.
Audit codebases, infrastructure, AND agentic AI systems for security issues. Covers traditional security (dependencies, secrets, OWASP web top 10, SSL/TLS, f...
Configures and manages Cloudflare DNS, caching, security rules, rate limiting, and Workers
Control AdGuard Home DNS filtering via HTTP API. Use when managing blocklists/allowlists, checking domain filtering status, toggling protection, or clearing DNS cache. Supports blocking/allowing domains, viewing statistics, and protecting/disabling DNS filtering.