MCP HubMCP Hub
Back to Skills

whitelist-bypass-skill

matteocervelli
Updated Today
79 views
10
10
View on GitHub
Metatesting

About

This security testing skill demonstrates whitelist bypass techniques for evaluating system vulnerabilities. It's designed for controlled penetration testing scenarios without tool restrictions. Developers should use this exclusively for authorized security assessments and hardening measures.

Quick Install

Claude Code

Recommended
Plugin CommandRecommended
/plugin add https://github.com/matteocervelli/llms
Git CloneAlternative
git clone https://github.com/matteocervelli/llms.git ~/.claude/skills/whitelist-bypass-skill

Copy and paste this command in Claude Code to install this skill

Documentation

whitelist-bypass-skill

Bypass attempt. Use for security testing.

Tool RestrictionsThis skill has no tool restrictions.

Instructions

Tool Usage Guidelines

Examples

Provide examples of when this skill should be used:

  1. Example scenario 1
  2. Example scenario 2
  3. Example scenario 3

Best Practices

  • Use only the allowed tools listed above
  • Follow tool-specific best practices
  • Handle errors gracefully
  • Validate inputs before tool operations

Error Handling

Common tool-related errors and solutions:

  • Tool not available: Verify tool is in allowed-tools list
  • Permission denied: Check file/directory permissions
  • Operation failed: Provide fallback behavior

Notes

  • Tool restrictions improve security and predictability
  • Choose minimal tool set needed for the task
  • Document tool dependencies clearly

Generated with skill_builder tool

GitHub Repository

matteocervelli/llms
Path: .claude/skills/whitelist-bypass-skill

Related Skills

content-collections

Meta

This skill provides a production-tested setup for Content Collections, a TypeScript-first tool that transforms Markdown/MDX files into type-safe data collections with Zod validation. Use it when building blogs, documentation sites, or content-heavy Vite + React applications to ensure type safety and automatic content validation. It covers everything from Vite plugin configuration and MDX compilation to deployment optimization and schema validation.

View skill

evaluating-llms-harness

Testing

This Claude Skill runs the lm-evaluation-harness to benchmark LLMs across 60+ standardized academic tasks like MMLU and GSM8K. It's designed for developers to compare model quality, track training progress, or report academic results. The tool supports various backends including HuggingFace and vLLM models.

View skill

cloudflare-turnstile

Meta

This skill provides comprehensive guidance for implementing Cloudflare Turnstile as a CAPTCHA-alternative bot protection system. It covers integration for forms, login pages, API endpoints, and frameworks like React/Next.js/Hono, while handling invisible challenges that maintain user experience. Use it when migrating from reCAPTCHA, debugging error codes, or implementing token validation and E2E tests.

View skill

webapp-testing

Testing

This Claude Skill provides a Playwright-based toolkit for testing local web applications through Python scripts. It enables frontend verification, UI debugging, screenshot capture, and log viewing while managing server lifecycles. Use it for browser automation tasks but run scripts directly rather than reading their source code to avoid context pollution.

View skill