Skill UI

This skill provides comprehensive guidance on implementing robust network security controls in Kubernetes using Calico's CNI capabilities. Learn to define and audit NetworkPolicy and GlobalNetworkPolicy resources to achieve zero-trust microsegmentation, restrict egress traffic, and control all pod-to-pod communications, ensuring compliance and enhanced security posture.

Breach and Attack Simulation (BAS) provides an automated, continuous method for validating the effectiveness of security controls (EDR, SIEM, NGFW, etc.). By safely emulating real-world attack techniques mapped to the MITRE ATT&CK framework, BAS helps organizations proactively identify security gaps and measure control maturity across the entire kill chain. It moves beyond point-in-time testing to provide an ongoing security posture assessment.

This skill utilizes the Thinkst Canary REST API to programmatically deploy various decoy tokens, including web bugs, DNS records, MS Word documents, and AWS API keys. By monitoring these fake resources, the system detects unauthorized internal or external access attempts, providing early warnings and generating detailed deception coverage reports to strengthen security architecture.

This skill guides the implementation of digital signatures using Ed25519, a high-performance cryptographic algorithm based on the Edwards curve. It provides 128-bit security with small keys and signatures, offering significant advantages over RSA and ECDSA, including deterministic signing and side-channel resistance. Learn to generate key pairs, sign documents and code, and verify signatures for robust security controls.

This tool guides the deployment and configuration of the Dragos Platform for critical Operational Technology (OT) and Industrial Control System (ICS) network monitoring. It leverages over 600 industrial protocol parsers and advanced threat intelligence to detect sophisticated attacks (e.g., VOLTZITE, GRAPHITE). Use it for building an OT Security Operations Center (SOC), asset discovery, and vulnerability management in industrial settings, integrating alerts with enterprise SIEMs.

Audits a domain’s email authentication by querying SPF, DKIM, and DMARC DNS records using dnspython, validating syntax/counts, flagging common spoofing risks, and producing remediation guidance.

This skill provides a deep dive into implementing robust End-to-End Encryption (E2EE) for messaging applications. It simulates key components of the Signal Protocol, including X3DH for initial key exchange and the Double Ratchet algorithm for ongoing key management. It ensures forward secrecy, meaning even if a key is compromised, past messages remain secure. Use this when building highly secure, compliant communication systems.

This skill guides the implementation of envelope encryption using AWS Key Management Service (KMS). Envelope encryption is a robust security pattern where data is encrypted locally using a Data Encryption Key (DEK), and the DEK itself is protected by a master Key Encryption Key (KEK) managed by AWS KMS. This approach overcomes the limitations of direct KMS encryption, enabling unlimited data size encryption, reducing latency, and allowing offline encryption capabilities by keeping the master key secure in an HSM.

Learn how to integrate AFL++ (American Fuzzy Lop Plus Plus) into Continuous Integration/Continuous Deployment (CI/CD) pipelines. This guide details the process of using coverage-guided fuzzing to discover critical vulnerabilities, such as memory corruption, input handling flaws, and logic bugs, in compiled C/C++ applications that process untrusted input.

This comprehensive guide details how to implement Single Sign-On (SSO) for Google Workspace using the SAML 2.0 protocol. It guides administrators through connecting a third-party Identity Provider (IdP) like Okta or Azure AD to centralize authentication, enforce MFA, and manage access policies across the organization.

This guide details implementing robust container image provenance verification using Cosign, a Sigstore tool. It covers key-based and keyless (OIDC) signing methods, enabling secure supply chain practices. Users can sign images, attach critical attestations (such as SBOMs and vulnerability scans), and enforce verification in CI/CD pipelines and Kubernetes environments to ensure high integrity and trust.

This skill guides the implementation of automated security scanning for Infrastructure as Code (IaC) templates using industry-leading tools like Checkov and tfsec. It focuses on integrating security checks into CI/CD pipelines to detect misconfigurations (e.g., public buckets, open ports) in Terraform, CloudFormation, and Kubernetes manifests before they reach production, thereby enforcing policy-based governance and securing the development lifecycle.