Download

Skill UI

Browse and discover 6582+ curated skills

All Development Artificial Intelligence Design & Creative Product & Business Data Science Marketing Soft Skills Productivity Engineering Languages

Search Network Traffic , found 27 results

Default Newest Most Downloaded

Zeek Network Anomaly Detection

detecting-network-anomalies-with-zeek

mukul975/Anthropic-Cybersecurity-Skills

Deploy Zeek to passively observe traffic, emit structured logs, and apply bespoke detection scripts for threat hunting, incident response, and monitoring anomalous network behavior.

IDS Scan Detection

detecting-network-scanning-with-ids-signatures

mukul975/Anthropic-Cybersecurity-Skills

Use Suricata or Snort IDS signatures, threshold rules, and traffic anomaly analysis to spot Nmap, Masscan, and custom port scans early in the kill chain and feed structured alerts for SOC handling.

Network Ransomware Early Detection

detecting-ransomware-precursors-in-network

mukul975/Anthropic-Cybersecurity-Skills

Detects pre-encryption ransomware activity across network traffic using Zeek, Suricata, Arkime, SIEM rules, and threat feeds to flag IAB behavior, Cobalt Strike beacons, credential harvesting, and staging before damage occurs.

Unusual Network Connection Hunting

hunting-for-unusual-network-connections

mukul975/Anthropic-Cybersecurity-Skills

Hunt for unusual network connections by analyzing outbound traffic patterns, rare destinations, non-standard ports, and anomalous frequencies, using SIEM/EDR telemetry to validate hypotheses, eliminate false positives, and align findings with MITRE techniques.

Firewall Zone Network Segmentation

implementing-network-segmentation-with-firewall-zones

mukul975/Anthropic-Cybersecurity-Skills

Design and implement firewall zone-based network segmentation with VLANs, ACLs, and microsegmentation to limit lateral movement, support compliance, and segment east-west traffic for zero-trust environments.

Arkime Network Traffic Analysis

implementing-network-traffic-analysis-with-arkime

mukul975/Anthropic-Cybersecurity-Skills

Deploy Arkime to capture full packets, query sessions via the v3 API, detect beaconing and TLS anomalies, inspect DNS/HTTP flows, and export PCAPs for forensic review.

Network Traffic Baselining

implementing-network-traffic-baselining

mukul975/Anthropic-Cybersecurity-Skills

Analyzes NetFlow/IPFIX exports with Python pandas to model hourly/daily traffic baselines, per-host stats, protocol distributions, and z-score/IQR alerts so SOC teams can spot exfiltration spikes or beaconing patterns.

Nozomi OT Traffic Analysis

implementing-ot-network-traffic-analysis-with-nozomi

mukul975/Anthropic-Cybersecurity-Skills

Deploys Nozomi Networks Guardian sensors to passively monitor OT network traffic, giving asset visibility, anomaly and vulnerability detection, and integrates with SOC tools like Vantage, Fortinet, Splunk, and ServiceNow for ICS security without disrupting operations.

Dynamic Android Analysis

performing-dynamic-analysis-of-android-app

mukul975/Anthropic-Cybersecurity-Skills

Analyzes Android applications at runtime with Frida, Objection, and ADB to hook sensitive methods, observe decrypted data, bypass anti-debug/root checks, and monitor live network traffic during penetration tests or runtime debugging.

Network Forensics with Wireshark

performing-network-forensics-with-wireshark

mukul975/Anthropic-Cybersecurity-Skills

Capture and analyze PCAP traffic with Wireshark/tshark to reconstruct suspicious sessions, extract artifacts, and detect malicious communications during incident response and malware investigations.

Network Packet Forensics

performing-network-packet-capture-analysis

mukul975/Anthropic-Cybersecurity-Skills

Use Wireshark, tshark, tcpdump, and Python tooling to inspect PCAP/PCAPNG data, reconstruct communications, surface malicious traffic, and support incident investigations with evidence of exfiltration or C2 activity.

Network Traffic Analysis Automation

performing-network-traffic-analysis-with-tshark

mukul975/Anthropic-Cybersecurity-Skills

Automates tshark and pyshark to parse PCAPs for protocol stats, suspicious flows, DNS anomalies, and IOC extraction during security assessments or incident response drills.

Language