Login
Download

Skill UI

Browse and discover 5970+ curated skills
All Development Artificial Intelligence Design & Creative Product & Business Data Science Marketing Soft Skills Productivity Engineering Languages
Search ROA , found 42 results
Default Newest Most Downloaded

Leak Site Intelligence

analyzing-ransomware-leak-site-intelligence
mukul975/Anthropic-Cybersecurity-Skills
427
Collects, parses, and charts ransomware leak site postings to track victim disclosures, group tactics, and sector risk so analysts can prioritize proactive defenses using public feeds and osint-safe collection practices.
View Details

TLS Transparency Log Monitoring

analyzing-tls-certificate-transparency-logs
mukul975/Anthropic-Cybersecurity-Skills
146
Queries Certificate Transparency logs via crt.sh and pycrtsh to catch phishing domains, unauthorized certificates, and typosquatting variations, flagging unexpected issuers and wildcard certificates for proactive brand-impersonation defense.
View Details

Threat Actor Profiling OSINT

building-threat-actor-profile-from-osint
mukul975/Anthropic-Cybersecurity-Skills
438
Use OSINT sources, Maltego/SpiderFoot, and STIX data to gather open‑source intelligence, map adversary infrastructure and TTPs, and deliver structured threat actor dossiers for proactive defense.
View Details

Threat Hunt Hypothesis

building-threat-hunt-hypothesis-framework
mukul975/Anthropic-Cybersecurity-Skills
239
Establishes a systematic process that turns threat intelligence, ATT&CK gaps, and telemetry into testable hunting hypotheses, guiding analysts through data selection, query execution, and reporting for proactive detection and response.
View Details

Kerberoasting Detection Guide

detecting-kerberoasting-attacks
mukul975/Anthropic-Cybersecurity-Skills
62
Documented workflow for hunting Kerberoasting activity by correlating SIEM and EDR telemetry, validating findings, and reporting observations so defenders can proactively detect Credential Access abuse.
View Details

Mimikatz Execution Detection

detecting-mimikatz-execution-patterns
mukul975/Anthropic-Cybersecurity-Skills
91
Detect execution patterns of Mimikatz by correlating command-line signatures, LSASS access anomalies, binary indicators, and in-memory modules across EDR and SIEM telemetry, supporting proactive threat hunting and incident response.
View Details

Pass The Hash Detection

detecting-pass-the-hash-attacks
mukul975/Anthropic-Cybersecurity-Skills
221
Detecting Pass-the-Hash attacks by correlating NTLM Type 3 logons, telemetry from EDR/SIEM, and credential-dumping IOCs to proactively hunt and validate incidents across Windows estates.
View Details

Detecting Pass-The-Ticket

detecting-pass-the-ticket-attacks
mukul975/Anthropic-Cybersecurity-Skills
63
Analyze Windows Event IDs 4768, 4769, and 4771 within Splunk or Elastic SIEM to identify anomalous Kerberos ticket usage, RC4 downgrades, and unusual service requests, enabling proactive Pass-the-Ticket threat detection.
View Details

Service Account Abuse Detection

detecting-service-account-abuse
mukul975/Anthropic-Cybersecurity-Skills
376
Provides a detection workflow for service account abuse by leveraging EDR and SIEM telemetry to hunt for anomalous logons, lateral movement, privilege escalation, and unauthorized access, aiding proactive hunting, incident response, and purple team exercises.
View Details

Suspicious PowerShell Detection

detecting-suspicious-powershell-execution
mukul975/Anthropic-Cybersecurity-Skills
347
Hunts suspicious PowerShell executions by spotting encoded commands, macro-triggered download cradles, AMSI bypass attempts, and constrained language evasion across EDR and SIEM telemetry, tying results back to MITRE T1059 in proactive detection or incident-response workflows.
View Details

Impacket Kerberoasting Guide

exploiting-kerberoasting-with-impacket
mukul975/Anthropic-Cybersecurity-Skills
350
Detailed walkthrough for using Impacket's GetUserSPNs.py to enumerate service accounts, request Kerberos TGS tickets, export hashes, and crack them offline as part of a Kerberoasting red-team campaign against Active Directory.
View Details

Living Off-the-Land Hunt

hunting-for-living-off-the-land-binaries
mukul975/Anthropic-Cybersecurity-Skills
92
Proactively hunt for adversary abuse of legitimate system binaries (LOLBins) by analyzing EDR/SIEM telemetry, correlating network activity, and documenting findings to inform detections for defense-evasion scenarios.
View Details
Prev1234Next
Language
简体中文
English