
brandonwise skills on Remote OpenClaw
7 skills published by brandonwise. Each listing includes a one-command install for Claude Code, OpenClaw, Codex, and Hermes, plus a link to the upstream source.
ai-humanizer
Detects AI-writing patterns in text and rewrites them to sound human. Checks 24 pattern types, 500+ flagged vocabulary terms, and statistical signals like burstiness and sentence length variation. Works on any prose, from blog posts to cover letters.
sql-injection-testing
A reference for SQL injection vulnerability assessment in authorized penetration tests. Covers detection methods, exploitation techniques across MySQL, MSSQL, PostgreSQL, and Oracle, and filter bypass strategies. Also includes code review patterns for identifying vulnerable versus safe query implementations.
vulnerability-scanner
Static source-code scanner covering OWASP Top 10:2025, supply chain risks, hardcoded secrets, and dangerous code patterns. Findings are ranked by exploitability and business impact using CVSS and EPSS scoring. Does not perform runtime or binary analysis.
api-security
Covers secure API design patterns for REST, GraphQL, and WebSocket APIs. Addresses authentication (JWT, OAuth 2.0, API keys), input validation, rate limiting, and the OWASP API Security Top 10. Includes working code examples for middleware, schema validation, and authorization checks.
secrets-management
Covers how to store, retrieve, and rotate secrets in CI/CD pipelines using HashiCorp Vault, AWS Secrets Manager, and native platform secret stores. Includes patterns for GitHub Actions, GitLab CI, Kubernetes, and Terraform. Also covers secret scanning to catch leaked credentials before they reach git.
threat-modeling
Structured threat modeling using STRIDE, PASTA, attack trees, and DREAD/CVSS scoring to identify and prioritize security risks in system designs. Covers application, network, infrastructure, and human attack layers. Produces documented threat models with mitigations and a record of accepted residual risks.
secure-auth-patterns
Covers JWT with refresh tokens, session-based auth, OAuth2/social login, and role-based access control for TypeScript/Node.js backends. Includes working middleware for authentication, RBAC enforcement, resource ownership checks, and password hashing. Targets REST and GraphQL API implementations.