Login
Download

Skill UI

Browse and discover 6556+ curated skills
All Development Artificial Intelligence Design & Creative Product & Business Data Science Marketing Soft Skills Productivity Engineering Languages
Search CI , found 1988 results
Default Newest Most Downloaded

TruffleHog AWS Credential Detection

detecting-aws-credential-exposure-with-trufflehog
mukul975/Anthropic-Cybersecurity-Skills
268
Detect exposed AWS credentials across git histories, CI/CD pipelines, and configs using TruffleHog, git-secrets, and AWS checks before deployments or audits.
View Details

GuardDuty Findings Automation

detecting-aws-guardduty-findings-automation
mukul975/Anthropic-Cybersecurity-Skills
281
Automates AWS GuardDuty findings by linking EventBridge rules to Lambda responders, quarantining EC2 instances, tagging resources, snapshotting volumes, and notifying teams for real-time incident handling.
View Details

Detect Azure Lateral Movement

detecting-azure-lateral-movement
mukul975/Anthropic-Cybersecurity-Skills
52
Detect Azure AD lateral movement by correlating Microsoft Graph audit logs, Sentinel KQL analytics, and sign-in anomalies to spot service principal abuse, stolen tokens, and cross-tenant pivots, then report indicators and containment steps.
View Details

Detect Azure Service Principal Abuse

detecting-azure-service-principal-abuse
mukul975/Anthropic-Cybersecurity-Skills
338
Provides detection workflows, queries, and investigation steps for spotting Azure service principal abuse in Microsoft Entra ID environments, covering credential updates, privileged role assignments, admin consent bypass, enumeration, and OAuth permission escalation via Sentinel or Splunk.
View Details

Business Email Compromise Detection

detecting-business-email-compromise
mukul975/Anthropic-Cybersecurity-Skills
155
Guides SOC analysts through detecting business email compromise by tuning email gateway rules, applying behavioral analytics, and enforcing financial controls to spot fraudulent payment, social-engineering, or account takeover attempts.
View Details

DCSync Attack Detection

detecting-dcsync-attack-in-active-directory
mukul975/Anthropic-Cybersecurity-Skills
119
Detects DCSync attacks by alerting when non-domain-controller accounts request AD replication GUIDs, correlating DsGetNCChanges traffic, and guiding incident response on credential theft.
View Details

Detect Email Account Compromise

detecting-email-account-compromise
mukul975/Anthropic-Cybersecurity-Skills
367
Analyzes Microsoft 365 audit, inbox rule, and sign-in data to spot compromised O365 or Google Workspace accounts, flagging forwarding rules, suspicious Microsoft Graph API usage, and impossible-travel signals for faster incident response.
View Details

Email Forwarding Detection

detecting-email-forwarding-rules-attack
mukul975/Anthropic-Cybersecurity-Skills
213
Detect suspicious email forwarding rules that attackers use to maintain persistence and steal intelligence; guides analysts through hypothesis, data sourcing, multi-tool querying, and validation to hunt BEC and related threats.
View Details

Endpoint Evasion Detection

detecting-evasion-techniques-in-endpoint-logs
mukul975/Anthropic-Cybersecurity-Skills
469
Detects adversary defense-evasion techniques in endpoint logs, covering log tampering, timestomping, process injection, and security tool disabling; useful for threat hunting, detection engineering, and incident response on Windows/EDR telemetry.
View Details

Detect DNS Data Exfiltration

detecting-exfiltration-over-dns-with-zeek
mukul975/Anthropic-Cybersecurity-Skills
282
Analyze Zeek dns.log to find high-entropy subdomains, long labels, and query volume anomalies, score suspicious domains, and report indicators so analysts can catch DNS-based exfiltration tools.
View Details

Detect Golden Ticket Attacks

detecting-golden-ticket-attacks
mukul975/Anthropic-Cybersecurity-Skills
335
Analyzes Windows Security EVTX logs to detect Kerberos golden ticket assaults by correlating event IDs 4768, 4624, and 4672, flagging long-lived TGTs, privilege escalations without group changes, SID inconsistencies, and outputting a timeline-based report.
View Details

Lateral Movement Detection

detecting-lateral-movement-in-network
mukul975/Anthropic-Cybersecurity-Skills
444
Detects lateral movement across enterprise networks by correlating Windows security logs, Zeek flow/SMB traces, and SIEM rules to flag Pass-the-Hash, PsExec, and RDP pivots during incident response and hunting.
View Details
Prev123...123124125126127128129...164165166Next
Language
简体中文
English