Cryptography

The configuring-hsm-for-key-storage skill explains HSM-backed key storage with PKCS#11, SoftHSM2, and production HSM options. Use this guide for install, usage, key attributes, token setup, signing, encryption, and Security Audit evidence.

analyzing-ransomware-encryption-mechanisms skill for malware analysis, focused on identifying ransomware encryption, key handling, and decryption feasibility. Use it to inspect AES, RSA, ChaCha20, hybrid schemes, and implementation flaws that may support recovery.

constant-time-testing is a practical skill for auditing cryptographic code for timing side channels. Use the constant-time-testing skill to inspect secret-dependent branches, memory access patterns, and microarchitectural behavior, then apply a focused constant-time-testing guide for Security Audit workflows.

constant-time-analysis is a security-audit skill for finding timing side-channel risks in cryptographic code before they become exploitable bugs. Use it to review secret-dependent math, branches, comparisons, and compiled output when checking C, C++, Go, Rust, Swift, Java, Kotlin, PHP, JavaScript, TypeScript, Python, or Ruby.

azure-keyvault-keys-ts helps you manage Azure Key Vault keys from TypeScript with @azure/keyvault-keys and @azure/identity. Use it to install the skill, set up auth and vault variables, and handle key creation, rotation, encrypt, decrypt, sign, verify, wrap, and unwrap for backend development.

azure-keyvault-keys-rust is the Azure Key Vault Keys skill for Rust backend development. It guides you to the official azure_security_keyvault_keys crate for creating, managing, wrapping, signing, verifying, and using HSM-protected keys with Azure Identity and AZURE_KEYVAULT_URL.

azure-keyvault-certificates-rust helps Rust backend developers create, manage, and use Azure Key Vault X.509 certificates, including self-signed and CA-issued flows. It focuses on the official azure_security_keyvault_certificates crate, installation, authentication, long-running issuance, and correct certificate client usage.

azure-keyvault-py is a Python Azure Key Vault skill for secrets, keys, and certificates. It helps backend development teams choose the right client, install the right packages, configure Azure credentials and environment variables, and follow a practical azure-keyvault-py guide for secure runtime access.

azure-security-keyvault-keys-java skill for Azure Key Vault Keys in Java. Create, manage, rotate, and use RSA or EC keys for encrypt/decrypt and sign/verify flows, with clear guidance for backend development, auth setup, client choice, and example-driven usage.

azure-security-keyvault-keys-dotnet helps .NET developers manage Azure Key Vault keys and Managed HSM with Azure.Security.KeyVault.Keys and CryptographyClient. Use it for key creation, rotation, encryption, decryption, signing, verification, and backend development with clear install and usage guidance.

The wycheproof skill helps validate cryptographic implementations with Wycheproof test vectors, focusing on known attacks, edge cases, and pass/fail decisions for Security Audit workflows. Use it to inspect AES-GCM, ECDSA, ECDH, RSA, and related primitives with less guesswork than a generic crypto prompt.