penetration-test-planner

Penetration Test Planner - Auto-activating skill for Security Advanced. Triggers on: penetration test planner, penetration test planner Part of the Security Advanced skill category.

1.00x

Quality

Does it follow best practices?

Impact

94%

1.00x

Average score across 3 eval scenarios

Securityby

Passed

No known issues

Optimize this skill with Tessl

npx tessl skill review --optimize ./planned-skills/generated/04-security-advanced/penetration-test-planner/SKILL.md

Evaluation results

88%

Web Application Security Assessment Planning

Pentest planning methodology

Criteria

Without context

With context

Sequential phases

100%

Recognised methodology reference

100%

Scope definition

100%

AWS cloud coverage

100%

API and auth testing

100%

Third-party integration risk

100%

Threat model or risk prioritisation

50%

Findings documentation structure

100%

Compliance standard mapping

16%

41%

Pre-engagement checklist

100%

Without context: $0.4600 · 3m 8s · 18 turns · 19 in / 9,079 out tokens

With context: $0.5242 · 3m 13s · 23 turns · 284 in / 8,936 out tokens

99%

-1%

Enterprise Security Compliance Readiness Assessment

Compliance framework assessment

Criteria

Without context

With context

GDPR coverage

100%

SOC2 coverage

100%

Additional relevant standard

100%

Control domain structure

100%

87%

Gap identification

100%

Remediation guidance

100%

GCP-specific controls

100%

Cross-standard matrix

100%

Production-ready completeness

100%

Validation against standards

100%

Without context: $0.5192 · 4m 23s · 11 turns · 12 in / 13,950 out tokens

With context: $0.8027 · 4m 45s · 27 turns · 26 in / 15,689 out tokens

97%

-1%

Threat Modeling for Payment Processing Service

Threat modeling methodology

Criteria

Without context

With context

Recognised threat framework

100%

Asset inventory

100%

Trust boundaries

100%

Data flow description

100%

Threat enumeration

100%

Mitigations per threat

100%

Kubernetes/AKS specific threats

100%

Step-by-step structure

100%

Risk or severity rating

100%

Executive summary file

75%

62%

Compliance or standard alignment

100%

Without context: $0.5482 · 3m 36s · 18 turns · 19 in / 10,714 out tokens

With context: $0.6527 · 3m 58s · 26 turns · 319 in / 11,972 out tokens

Repository: jeremylongshore/claude-code-plugins-plus-skills
Commit: 994edc4

Evaluated: 18 days ago
Agent: Claude Code
Model: Claude Sonnet 4.6

Table of Contents

Web Application Security Assessment Planning Enterprise Security Compliance Readiness Assessment Threat Modeling for Payment Processing Service

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.