Covers the essential security testing bases with OWASP ZAP for dynamic scanning, SQL injection and XSS testing, dependency vulnerability checks, and secrets detection. You get practical examples for each OWASP Top 10 category plus authentication, CSRF, and security headers validation. The approach mixes automated scanning with manual penetration testing patterns. Best for integrating security checks into CI/CD pipelines or running periodic vulnerability assessments. The reference guides are comprehensive, though you'll need to set up ZAP and other tools yourself. One honest take: this gives you the playbook, but security testing still requires understanding what you're looking for, not just running the scripts.
npx skills add https://github.com/aj-geddes/useful-ai-prompts --skill security-testing