Download

Skill UI

Browse and discover 6581+ curated skills

All Development Artificial Intelligence Design & Creative Product & Business Data Science Marketing Soft Skills Productivity Engineering Languages

Search lateral-movement , found 39 results

Default Newest Most Downloaded

Azure Lateral Movement Detection

detecting-azure-lateral-movement

mukul975/Anthropic-Cybersecurity-Skills

Detect Azure AD/Entra ID lateral movement by correlating Microsoft Graph audit logs, sign-in anomalies, and Sentinel KQL rules to highlight privilege escalation, token theft, and cross-tenant pivots.

Network Lateral Movement Detection

detecting-lateral-movement-in-network

mukul975/Anthropic-Cybersecurity-Skills

Detects lateral movement techniques in enterprise networks by correlating authentication logs, SMB/RDP flows, and Zeek/Velociraptor telemetry, enabling SIEM alerts and hunting for pass-the-hash or RDP pivot activity.

Splunk Lateral Movement Detection

detecting-lateral-movement-with-splunk

mukul975/Anthropic-Cybersecurity-Skills

Guide to hunting lateral movement using Splunk SPL against Windows auth, SMB, and remote service abuse logs to trace credential theft, anomalous access, and threat paths for incident response.

Sysmon Scheduled Task Detection

detecting-malicious-scheduled-tasks-with-sysmon

mukul975/Anthropic-Cybersecurity-Skills

Detect malicious scheduled task creation and modification using Sysmon (Event IDs 1/11), Windows Security events (4698/4702), and correlation of suspicious parents, public paths, and encoded arguments for persistence and lateral movement analysis.

Service Account Abuse Detection

detecting-service-account-abuse

mukul975/Anthropic-Cybersecurity-Skills

Structured threat-hunting workflow that detects anomalous service-account logons, lateral movement, and privilege escalation by guiding analysts through hypothesis formation, SIEM/EDR querying, correlation and validation for proactive response.

EDR Credential Dumping Detection

detecting-t1003-credential-dumping-with-edr

mukul975/Anthropic-Cybersecurity-Skills

Use EDR telemetry, Sysmon, and Windows auditing to detect T1003 credential dumping via LSASS, SAM, NTDS, and cached credentials, then correlate lateral movement indicators and guide response actions.

Constrained Delegation Exploitation

exploiting-constrained-delegation-abuse

mukul975/Anthropic-Cybersecurity-Skills

Exploit Kerberos constrained delegation misconfigurations in Active Directory to impersonate privileged users via S4U2self/S4U2proxy, enabling lateral movement, privilege escalation, and access to CIFS/HTTP/LDAP services during red-team assessments.

SMB Metasploit Exploitation

exploiting-smb-vulnerabilities-with-metasploit

mukul975/Anthropic-Cybersecurity-Skills

Uses Metasploit Framework to detect and exploit critical SMB flaws (EternalBlue, Relay, PrintNightmare) during authorized penetration tests, validating patching and network segmentation while measuring lateral movement risks in Windows environments.

Windows Event Log Forensics

extracting-windows-event-logs-artifacts

mukul975/Anthropic-Cybersecurity-Skills

Extract, parse, and analyze Windows EVTX files with Chainsaw, Hayabusa, and EvtxECmd to hunt lateral movement, privilege escalation, and persistence artifacts during incident response and compliance reviews.

Detect WMI Lateral Movement

hunting-for-lateral-movement-via-wmi

mukul975/Anthropic-Cybersecurity-Skills

Hunt for WMI-based lateral movement by parsing Windows Event ID 4688 and Sysmon Event ID 1 logs, flagging WmiPrvSE.exe child processes, suspicious command lines, and WMI subscription persistence to produce a structured alert report.

Honeypot Network Deception Deployment

implementing-network-deception-with-honeypots

mukul975/Anthropic-Cybersecurity-Skills

Guide to deploying OpenCanary, Cowrie, or T-Pot honeypots to detect unauthorized access, lateral movement, and reconnaissance while forwarding alerts to a SIEM for faster incident response.

Firewall Zone Network Segmentation

implementing-network-segmentation-with-firewall-zones

mukul975/Anthropic-Cybersecurity-Skills

Design and implement firewall zone-based network segmentation with VLANs, ACLs, and microsegmentation to limit lateral movement, support compliance, and segment east-west traffic for zero-trust environments.

Prev 123 4 Next

Language