Security Auditor Tk
by @tktk-ai
Run security audits on Linux servers, web applications, and cloud infrastructure. Checks SSH hardening, firewall rules, open ports, SSL/TLS config, file perm...
clawhub install security-auditor-tkπ About This Skill
name: security-auditor-tk version: 1.0.0 description: Run security audits on Linux servers, web applications, and cloud infrastructure. Checks SSH hardening, firewall rules, open ports, SSL/TLS config, file permissions, and common vulnerabilities. Produces actionable reports. author: TKDigital category: DevOps & Security tags: [security, audit, linux, hardening, vulnerability, devops, server]
Security Auditor Skill
Comprehensive security auditing for Linux servers, web apps, and cloud infrastructure.
What It Does
1. Server Hardening Audit β SSH config, firewall rules, user permissions, kernel parameters 2. Port & Service Scan β Open ports, running services, unnecessary exposure 3. SSL/TLS Analysis β Certificate validity, protocol versions, cipher suites 4. File Permission Check β World-readable configs, SUID binaries, sensitive file exposure 5. Update Status β Pending security patches, EOL software detection 6. Web App Security β Headers, CORS, cookie flags, common misconfigs 7. Report Generation β Prioritized findings with fix commands
Usage
Full Server Audit
Run a full security audit on this server.
Check: SSH, firewall, ports, users, file permissions, updates, SSL.
Output a prioritized report with fix commands.
Quick SSH Hardening Check
Audit SSH configuration:
Is root login disabled?
Is password auth disabled?
What port is it on?
Are there any weak ciphers?
Give me the exact commands to fix any issues.
Web Application Security Check
Check security headers and configuration for: [URL]
Look for:
Missing security headers (CSP, HSTS, X-Frame-Options)
SSL/TLS issues
CORS misconfig
Cookie security flags
Information disclosure
Cloud Infrastructure Review
Review my cloud setup for security issues:
Provider: [AWS/GCP/DO/Vultr]
Services: [list running services]
Access: [how you connect]
Focus on: IAM, network exposure, storage permissions, logging
Output Format
# Security Audit Report β [Target]
Date: [Audit date]
Scope: [What was audited]
Risk Level: [Critical/High/Medium/Low]π΄ Critical Findings
[Finding Title]
Risk: [What could happen]
Current State: [What's wrong]
Fix:
bash
[Exact command to fix]
- Verification: [How to confirm the fix worked]π‘ Warnings
[Medium-risk findings]π’ Passed Checks
[What's already good]Summary
Critical: [X]
Warnings: [X]
Passed: [X]
Overall Score: [X/100]
Checks Performed
SSH (12 checks)
Firewall (8 checks)
System (10 checks)
Web/SSL (8 checks)
References
references/hardening-checklist.md β Complete hardening checklistreferences/common-fixes.md β Copy-paste fix commands for common issuesπ‘ Examples
Full Server Audit
Run a full security audit on this server.
Check: SSH, firewall, ports, users, file permissions, updates, SSL.
Output a prioritized report with fix commands.
Quick SSH Hardening Check
Audit SSH configuration:
Is root login disabled?
Is password auth disabled?
What port is it on?
Are there any weak ciphers?
Give me the exact commands to fix any issues.
Web Application Security Check
Check security headers and configuration for: [URL]
Look for:
Missing security headers (CSP, HSTS, X-Frame-Options)
SSL/TLS issues
CORS misconfig
Cookie security flags
Information disclosure
Cloud Infrastructure Review
Review my cloud setup for security issues:
Provider: [AWS/GCP/DO/Vultr]
Services: [list running services]
Access: [how you connect]
Focus on: IAM, network exposure, storage permissions, logging