Back to Details

performing-security-testing

Compare original and translation side by side

🇺🇸

Original

English
🇨🇳

Translation

Chinese

Security Test Scanner

安全测试扫描器

This skill provides automated assistance for security test scanner tasks.
本技能为安全测试扫描任务提供自动化辅助。

Prerequisites

前置条件

Before using this skill, ensure you have:
  • Target application or API endpoint URLs accessible for testing
  • Authentication credentials if testing protected resources
  • Appropriate authorization to perform security testing on the target system
  • Test environment configured (avoid production without explicit approval)
  • Security testing tools installed (OWASP ZAP, sqlmap, or equivalent)
使用本技能前,请确保您已具备:
  • 可用于测试的目标应用或API端点URL
  • 若测试受保护资源,需准备身份验证凭据
  • 拥有对目标系统执行安全测试的适当授权
  • 已配置测试环境(未经明确批准,请勿在生产环境测试)
  • 已安装安全测试工具(OWASP ZAP、sqlmap或同类工具)

Instructions

操作步骤

Step 1: Define Test Scope

步骤1:定义测试范围

Identify the security testing parameters:
  • Target URLs and endpoints to scan
  • Authentication requirements and test credentials
  • Specific vulnerability types to focus on (OWASP Top 10, injection, XSS, etc.)
  • Testing depth level (passive scan vs. active exploitation)
确定安全测试参数:
  • 待扫描的目标URL和端点
  • 身份验证要求及测试凭据
  • 需重点关注的特定漏洞类型(OWASP Top 10、注入攻击、XSS等)
  • 测试深度级别(被动扫描 vs 主动利用)

Step 2: Execute Security Scan

步骤2:执行安全扫描

Run automated vulnerability detection:
  1. Use Read tool to analyze application structure and identify entry points
  2. Execute security testing tools via Bash(test:security-*) with proper scope
  3. Monitor scan progress and capture all findings
  4. Document identified vulnerabilities with severity ratings
运行自动化漏洞检测:
  1. 使用读取工具分析应用结构,识别入口点
  2. 通过Bash(test:security-*)工具,按照指定范围执行安全测试
  3. 监控扫描进度并捕获所有检测结果
  4. 记录已识别的漏洞并标注严重等级

Step 3: Analyze Vulnerabilities

步骤3:分析漏洞

Process scan results to identify:
  • SQL injection vulnerabilities in database queries
  • Cross-Site Scripting (XSS) in user input fields
  • Cross-Site Request Forgery (CSRF) token weaknesses
  • Authentication and authorization bypass opportunities
  • Security misconfigurations and exposed sensitive data
处理扫描结果,识别以下内容:
  • 数据库查询中的SQL注入漏洞
  • 用户输入字段中的跨站脚本(XSS)漏洞
  • 跨站请求伪造(CSRF)令牌缺陷
  • 身份验证与授权绕过风险
  • 安全配置错误及敏感数据暴露问题

Step 4: Generate Security Report

步骤4:生成安全报告

Create comprehensive documentation in {baseDir}/security-reports/:
  • Executive summary with risk overview
  • Detailed vulnerability findings with CVSS scores
  • Proof-of-concept exploit examples where applicable
  • Prioritized remediation recommendations
  • Compliance assessment against security standards
在{baseDir}/security-reports/目录下创建综合文档:
  • 包含风险概述的执行摘要
  • 附带CVSS评分的详细漏洞检测结果
  • 适用情况下的概念验证(PoC) exploit示例
  • 按优先级排序的修复建议
  • 针对安全标准的合规性评估

Output

输出内容

The skill generates structured security assessment reports:
本技能生成结构化的安全评估报告:

Vulnerability Summary

漏洞摘要

  • Total vulnerabilities discovered by severity (Critical, High, Medium, Low)
  • OWASP Top 10 category mapping for each finding
  • Attack surface analysis showing exposed endpoints
  • 按严重等级(Critical、High、Medium、Low)统计的已发现漏洞总数
  • 每个检测结果对应的OWASP Top 10类别映射
  • 显示暴露端点的攻击面分析

Detailed Findings

详细检测结果

Each vulnerability includes:
  • Unique identifier and CVSS score
  • Affected URLs, parameters, and HTTP methods
  • Technical description of the security weakness
  • Proof-of-concept demonstration or reproduction steps
  • Potential impact on confidentiality, integrity, and availability
每个漏洞包含:
  • 唯一标识符和CVSS评分
  • 受影响的URL、参数及HTTP方法
  • 安全缺陷的技术描述
  • 概念验证演示或复现步骤
  • 对保密性、完整性和可用性的潜在影响

Remediation Guidance

修复指导

  • Specific code fixes or configuration changes required
  • Secure coding best practices to prevent recurrence
  • Priority recommendations based on risk and effort
  • Verification testing procedures after remediation
  • 所需的特定代码修复或配置变更
  • 防止漏洞重现的安全编码最佳实践
  • 基于风险和实施成本的优先级建议
  • 修复后的验证测试流程

Compliance Assessment

合规性评估

  • Alignment with OWASP Application Security Verification Standard (ASVS)
  • PCI DSS requirements if applicable to payment processing
  • General Data Protection Regulation (GDPR) security considerations
  • 与OWASP应用安全验证标准(ASVS)的对齐情况
  • 若涉及支付处理,需符合PCI DSS要求
  • 通用数据保护条例(GDPR)相关安全考量

Error Handling

错误处理

Common issues and solutions:
Access Denied
  • Error: HTTP 403 or authentication failures during scan
  • Solution: Verify credentials are valid and have sufficient permissions; use provided test accounts
Rate Limiting
  • Error: Too many requests blocked by WAF or rate limiter
  • Solution: Configure scan throttling to reduce request rate; use authenticated sessions to increase limits
False Positives
  • Error: Reported vulnerabilities that cannot be exploited
  • Solution: Manually verify each finding; adjust scanner sensitivity; whitelist known safe patterns
Tool Installation Missing
  • Error: Security testing tools not found on system
  • Solution: Install required tools using Bash(test:security-install) with package manager
常见问题及解决方案:
访问被拒绝
  • 错误:扫描过程中出现HTTP 403或身份验证失败
  • 解决方案:验证凭据是否有效且具备足够权限;使用提供的测试账户
速率限制
  • 错误:WAF或速率限制器阻止了过多请求
  • 解决方案:配置扫描节流以降低请求速率;使用已认证会话提高限制
误报
  • 错误:报告了无法被利用的漏洞
  • 解决方案:手动验证每个检测结果;调整扫描器敏感度;将已知安全模式加入白名单
工具未安装
  • 错误:系统中未找到安全测试工具
  • 解决方案:使用Bash(test:security-install)通过包管理器安装所需工具

Resources

相关资源

Security Testing Tools

安全测试工具

  • OWASP ZAP for automated vulnerability scanning
  • Burp Suite for manual penetration testing
  • sqlmap for SQL injection detection and exploitation
  • Nikto for web server vulnerability scanning
  • OWASP ZAP:用于自动化漏洞扫描
  • Burp Suite:用于手动渗透测试
  • sqlmap:用于SQL注入检测与利用
  • Nikto:用于Web服务器漏洞扫描

Vulnerability Databases

漏洞数据库

  • Common Vulnerabilities and Exposures (CVE) database
  • National Vulnerability Database (NVD) for CVSS scoring
  • OWASP Top 10 documentation and remediation guides
  • 通用漏洞披露(CVE)数据库
  • 国家漏洞数据库(NVD):用于CVSS评分
  • OWASP Top 10文档及修复指南

Secure Coding Guidelines

安全编码指南

  • OWASP Secure Coding Practices checklist
  • CWE (Common Weakness Enumeration) catalog
  • SANS Top 25 Most Dangerous Software Errors
  • OWASP安全编码实践清单
  • CWE(通用弱点枚举)目录
  • SANS Top 25最危险软件错误

Best Practices

最佳实践

  • Always test in non-production environments first
  • Obtain written authorization before security testing
  • Document all testing activities for audit trails
  • Validate remediation effectiveness with regression testing
  • 始终先在非生产环境测试
  • 执行安全测试前获取书面授权
  • 记录所有测试活动以满足审计追踪要求
  • 通过回归测试验证修复效果

Overview

概述

This skill provides automated assistance for security test scanner tasks. This skill provides automated assistance for the described functionality.
本技能为安全测试扫描任务提供自动化辅助。 本技能为上述功能提供自动化辅助。

Examples

示例

Example usage patterns will be demonstrated in context.
将在上下文中演示示例使用模式。