Skip to content
/ skills Public

Agent skills for working with NightVision Security tools for API discovery and DAST scanning

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

nvsecurity/skills

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
.claude-plugin
.claude-plugin
 
 
assets
assets
 
 
plugins/nightvision
plugins/nightvision
 
 
.gitignore
.gitignore
 
 
CLAUDE.md
CLAUDE.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

NightVision

NightVision Skills for Claude Code

Your best defense is a good offense: Give Claude NightVision skills.


License Claude Code NightVision

NightVision is a white-box-assisted DAST platform that combines API Discovery (static analysis to extract OpenAPI specs from source code), dynamic scanning (ZAP + Nuclei engines), and Code Traceback (tracing vulnerabilities back to exact source locations) to find exploitable vulnerabilities in web applications and REST APIs.

This plugin marketplace gives Claude Code the skills to run NightVision scans, triage results, and integrate security testing into your CI/CD pipelines — all from natural language.

Quick Start

From the terminal:

claude plugin marketplace add nvsecurity/skills
claude plugin install nightvision@nvsecurity
claude

From inside Claude Code:

/plugin marketplace add nvsecurity/skills
/plugin install nightvision@nvsecurity

You may need to restart Claude Code for the plugin to load.

Skills

Skill What it does
scan-configuration Set up DAST scans — create targets, configure authentication (Playwright, headers, cookies), manage projects, define scope exclusions, and prepare private network scans
scan-triage Interpret scan results — read SARIF/CSV findings, understand vulnerabilities, locate the vulnerable code, validate with curl, prioritize by severity, suggest fixes, and mark false positives
api-discovery Extract OpenAPI specs from source code via static analysis, troubleshoot extraction issues, compare specs across versions, and leverage Code Traceback
ci-cd-integration Wire NightVision into your pipeline — GitHub Actions, GitLab CI, Azure DevOps, Jenkins, BitBucket, and JFrog with SARIF/CSV export and breaking-change detection

Example Usage

Just ask Claude what you need:

> Set up a NightVision scan for my API running on localhost:8080

> Triage the results from my last scan and suggest fixes

> Add NightVision to my GitHub Actions workflow

> Extract an OpenAPI spec from this Django project

Or invoke skills directly with slash commands:

/scan-configuration
/scan-triage
/api-discovery
/ci-cd-integration

Contributing

Contributions are welcome! Please open an issue or submit a pull request.

License

Apache License 2.0 — see LICENSE for details.

About

Agent skills for working with NightVision Security tools for API discovery and DAST scanning

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors