building-adversary-infrastructure-tracking-system
mukul975/Anthropic-Cybersecurity-Skills
This system automates the tracking and mapping of threat actor Command-and-Control (C2) networks. By leveraging passive DNS records, WHOIS data, certificate transparency logs, and IP enrichment, it helps security analysts perform infrastructure pivoting. It identifies shared hosting patterns, monitors domain reuse, and continuously maps adversary relationships for proactive threat intelligence.
