This is a structured checklist for running penetration tests, covering everything from initial scoping and authorization to post-test remediation. It's useful if you need to make sure you're not skipping steps in the pentest process, especially around legal agreements, stakeholder communication, and proper documentation. The skill guides you through inputs like business objectives and target environment details, then helps track deliverables throughout the engagement. Originally from zebbern's claude-code-guide and now maintained by davila7, it's more of a procedural framework than a technical tool. If you're doing pentests solo or trying to formalize your process, it keeps the administrative and planning side organized so you can focus on the actual security work.
npx skills add https://github.com/davila7/claude-code-templates --skill pentest-checklist