Login
Download

Skill UI

Browse and discover 9785+ curated skills
All Development Artificial Intelligence Design & Creative Product & Business Data Science Marketing Soft Skills Productivity Engineering Languages
Search credential-access , found 41 results
Default Newest Most Downloaded

Extracting Config from Agent Tesla RAT

extracting-config-from-agent-tesla-rat
mukul975/Anthropic-Cybersecurity-Skills
253
This script is designed for malware analysis, specifically targeting .NET-based Remote Access Trojans (RATs) like Agent Tesla. It automatically extracts embedded and obfuscated configuration data, including SMTP credentials, FTP endpoints, Telegram tokens, and C2 webhooks. It utilizes advanced techniques such as regex pattern matching, Base64 decoding, and simulating XOR/SHA256 decryption to reveal critical threat intelligence for security research.
View Details

Hunting for NTLM Relay Attacks Detection

hunting-for-ntlm-relay-attacks
mukul975/Anthropic-Cybersecurity-Skills
389
This skill provides advanced threat hunting capabilities to detect NTLM relay attacks within Active Directory environments. It analyzes critical Windows Security Event 4624 logs, specifically focusing on logon type 3 using NTLMSSP authentication. The detection logic identifies suspicious patterns, including IP-to-hostname mismatches, rapid multi-host authentications, and lack of SMB signing enforcement, helping SOC analysts pinpoint unauthorized credential access attempts.
View Details

API Key Security and Credential Management

implementing-api-key-security-controls
mukul975/Anthropic-Cybersecurity-Skills
241
Implements comprehensive security controls for the entire API key lifecycle, including secure generation, hashing, storage, rotation, and revocation. This skill involves designing keys with sufficient entropy, enforcing per-key scoping, setting rate limits, and building automated workflows to prevent leakage and unauthorized access. Essential for robust server-to-server authentication.
View Details

Secure Privileged Access Workstation Implementation

implementing-privileged-access-workstation
mukul975/Anthropic-Cybersecurity-Skills
305
This skill provides a comprehensive guide for designing and deploying Privileged Access Workstations (PAWs). It covers critical security controls such as device hardening, Zero Trust principles, and integrating Just-in-Time (JIT) access management. Learn how to enforce compliance using tools like Intune/GPO and secure credentials using leading PAM platforms like CyberArk or BeyondTrust, ensuring secure administrative operations.
View Details

Bypassing MFA with EvilGinx3 AiTM Phishing

performing-initial-access-with-evilginx3
mukul975/Anthropic-Cybersecurity-Skills
161
EvilGinx3 is an advanced Adversary-in-the-Middle (AiTM) framework designed for red teaming simulations. It goes beyond traditional credential harvesting by acting as a transparent proxy to intercept the entire authentication flow, including session cookies and Multi-Factor Authentication (MFA) tokens. This capability allows security professionals to assess the robustness of an organization's security posture against sophisticated account takeover attacks.
View Details

Grammarly API Security Best Practices

grammarly-security-basics
jeremylongshore/claude-code-plugins-plus-skills
346
This guide provides essential security fundamentals for integrating with the Grammarly API. It covers secure credential management (client secrets, access tokens), OAuth token handling, webhook signature verification, and data redaction techniques to protect sensitive user content and maintain compliance.
View Details

Configure AppFolio API Authentication

appfolio-install-auth
jeremylongshore/claude-code-plugins-plus-skills
362
This guide details how to configure and authenticate access to the AppFolio Stack API. It utilizes OAuth 2.0 and Basic Authentication credentials (Client ID/Secret) provided through the partner program. It is essential for developers building property management integrations, allowing secure, programmatic access to core data like properties, units, tenants, and leases.
View Details

Adobe API Data Handling and Compliance

adobe-data-handling
jeremylongshore/claude-code-plugins-plus-skills
402
Implement robust data handling practices when integrating with Adobe APIs. This comprehensive guide covers critical compliance areas, including Personally Identifiable Information (PII) redaction from extracted PDFs, enforcing Firefly content policies, secure credential redaction in logs, and managing data subject access/deletion requests for GDPR/CCPA compliance using the Adobe Privacy Service API. Essential for building privacy-compliant enterprise applications.
View Details

Configure Adobe OAuth Credentials and SDKs

adobe-install-auth
jeremylongshore/claude-code-plugins-plus-skills
70
This comprehensive guide walks through setting up Adobe Developer Console OAuth Server-to-Server credentials. It is critical for establishing any new programmatic integration with Adobe services, including Firefly AI, PDF processing, and Creative Cloud access. The process covers project setup, installing various SDKs (Node.js/Python), and securely generating access tokens.
View Details

Secure Anima and Figma Tokens

anima-security-basics
jeremylongshore/claude-code-plugins-plus-skills
329
This guide outlines critical security best practices for design-to-code pipelines using Anima and Figma. It covers securing API credentials by restricting token scopes (e.g., read-only access for Figma), enforcing server-side execution for SDKs, and implementing robust secret management using cloud services like GCP Secret Manager. This minimizes the risk of credential leakage in CI/CD environments.
View Details

AppFolio API Debug Collection Bundle

appfolio-debug-bundle
jeremylongshore/claude-code-plugins-plus-skills
232
A comprehensive debug bundle designed to collect diagnostic evidence from AppFolio property management API integrations. It captures essential data points including API connectivity status for properties, tenants, and work orders; authentication status using client credentials; recent integration error logs; and environment metadata. This allows support engineers to perform root cause analysis and diagnose issues like connectivity failures or authentication rejections without needing live environment access.
View Details

Securing ClickUp API Credentials and Access

clickup-security-basics
jeremylongshore/claude-code-plugins-plus-skills
170
A comprehensive guide to securing ClickUp API usage. Learn best practices for managing API tokens, implementing least-privilege access, and auditing usage patterns. This includes secure token rotation procedures, using environment variables, setting up pre-commit hooks to prevent leaks, and structuring calls for robust audit logging.
View Details
Prev1234Next
Language
简体中文
English