Repository bundle

mukul975/Anthropic-Cybersecurity-Skills

762 skills · 0 CLAUDE.md · same GitHub repo on Versuz.

← Marketplace Open on GitHub ↗

SKILL.md in this repo

acquiring-disk-image-with-dd-and-dcflddOther
View skill →
analyzing-active-directory-acl-abuseData
View skill →
analyzing-android-malware-with-apktoolCode
View skill →
analyzing-api-gateway-access-logsDevOps
View skill →
analyzing-apt-group-with-mitre-navigatorOther
View skill →
analyzing-azure-activity-logs-for-threatsDevOps
View skill →
analyzing-bootkit-and-rootkit-samplesOther
View skill →
analyzing-browser-forensics-with-hindsightWeb
View skill →
analyzing-campaign-attribution-evidenceMarketing
View skill →
analyzing-certificate-transparency-for-phishingOther
View skill →
analyzing-cloud-storage-access-patternsDevOps
View skill →
analyzing-cobalt-strike-beacon-configurationOther
View skill →
analyzing-cobaltstrike-malleable-c2-profilesDevOps
View skill →
analyzing-command-and-control-communicationDocument
View skill →
analyzing-cyber-kill-chainTesting
View skill →
analyzing-cyber-kill-chainTesting
View skill →
analyzing-disk-image-with-autopsyOther
View skill →
analyzing-dns-logs-for-exfiltrationShell
View skill →
analyzing-docker-container-forensicsShell
View skill →
analyzing-email-headers-for-phishing-investigationOther
View skill →
analyzing-ethereum-smart-contract-vulnerabilitiesOther
View skill →
analyzing-golang-malware-with-ghidraCode
View skill →
analyzing-heap-spray-exploitationOther
View skill →
analyzing-indicators-of-compromiseSQL
View skill →
analyzing-ios-app-security-with-objectionTesting
View skill →
analyzing-kubernetes-audit-logsDevOps
View skill →
analyzing-linux-audit-logs-for-intrusionShell
View skill →
analyzing-linux-elf-malwareDevOps
View skill →
analyzing-linux-kernel-rootkitsOther
View skill →
analyzing-linux-system-artifactsAutomation
View skill →
analyzing-lnk-file-and-jump-list-artifactsCode
View skill →
analyzing-macro-malware-in-office-documentsMarketing
View skill →
analyzing-malicious-pdf-with-peepdfDocument
View skill →
analyzing-malicious-url-with-urlscanSQL
View skill →
analyzing-malware-behavior-with-cuckoo-sandboxOther
View skill →
analyzing-malware-family-relationships-with-malpediaResearch
View skill →
analyzing-malware-persistence-with-autorunsAutomation
View skill →
analyzing-malware-sandbox-evasion-techniquesOther
View skill →
analyzing-memory-dumps-with-volatilitySQL
View skill →
analyzing-memory-forensics-with-lime-and-volatilitySQL
View skill →
analyzing-mft-for-deleted-file-recoveryOther
View skill →
analyzing-network-covert-channels-in-malwareShell
View skill →
analyzing-network-flow-data-with-netflowCode
View skill →
analyzing-network-packets-with-scapyOther
View skill →
analyzing-network-traffic-for-incidentsOther
View skill →
analyzing-network-traffic-of-malwareDevOps
View skill →
analyzing-network-traffic-with-wiresharkDevOps
View skill →
analyzing-office365-audit-logs-for-compromiseAPI integration
View skill →
analyzing-outlook-pst-for-email-forensicsDevOps
View skill →
analyzing-packed-malware-with-upx-unpackerOther
View skill →
analyzing-pdf-malware-with-pdfidDocument
View skill →
analyzing-persistence-mechanisms-in-linuxDevOps
View skill →
analyzing-powershell-empire-artifactsShell
View skill →
analyzing-powershell-script-block-loggingShell
View skill →
analyzing-prefetch-files-for-execution-historyOther
View skill →
analyzing-ransomware-encryption-mechanismsShell
View skill →
analyzing-ransomware-leak-site-intelligenceOther
View skill →
analyzing-ransomware-network-indicatorsOther
View skill →
analyzing-ransomware-payment-walletsTesting
View skill →
analyzing-sbom-for-supply-chain-vulnerabilitiesTesting
View skill →
analyzing-security-logs-with-splunkDevOps
View skill →
analyzing-slack-space-and-file-system-artifactsOther
View skill →
analyzing-supply-chain-malware-artifactsTesting
View skill →
analyzing-threat-actor-ttps-with-mitre-attackShell
View skill →
analyzing-threat-actor-ttps-with-mitre-navigatorCode
View skill →
analyzing-threat-intelligence-feedsMarketing
View skill →
analyzing-threat-landscape-with-mispCode
View skill →
analyzing-tls-certificate-transparency-logsDevOps
View skill →
analyzing-typosquatting-domains-with-dnstwistOther
View skill →
analyzing-uefi-bootkit-persistenceTesting
View skill →
analyzing-usb-device-connection-historyOther
View skill →
analyzing-web-server-logs-for-intrusionDevOps
View skill →
analyzing-windows-amcache-artifactsOther
View skill →
analyzing-windows-event-logs-in-splunkShell
View skill →
analyzing-windows-lnk-files-for-artifactsCode
View skill →
analyzing-windows-prefetch-with-pythonCode
View skill →
analyzing-windows-registry-for-artifactsOther
View skill →
analyzing-windows-shellbag-artifactsOther
View skill →
auditing-aws-s3-bucket-permissionsDevOps
View skill →
auditing-azure-active-directory-configurationWeb
View skill →
auditing-cloud-with-cis-benchmarksDevOps
View skill →
auditing-gcp-iam-permissionsDevOps
View skill →
auditing-kubernetes-cluster-rbacDevOps
View skill →
auditing-terraform-infrastructure-for-securityDevOps
View skill →
auditing-tls-certificate-transparency-logsDevOps
View skill →
auditing-tls-certificate-transparency-logsDevOps
View skill →
automating-ioc-enrichmentCode
View skill →
building-adversary-infrastructure-tracking-systemOther
View skill →
building-attack-pattern-library-from-cti-reportsShell
View skill →
building-automated-malware-submission-pipelineOther
View skill →
building-c2-infrastructure-with-sliver-frameworkOther
View skill →
building-cloud-siem-with-sentinelData
View skill →
building-detection-rule-with-splunk-splOther
View skill →
building-detection-rules-with-sigmaCode
View skill →
building-devsecops-pipeline-with-gitlab-ciAutomation
View skill →
building-identity-federation-with-saml-azure-adDevOps
View skill →
building-identity-governance-lifecycle-processShell
View skill →
building-incident-response-dashboardDevOps
View skill →
building-incident-response-playbookDevOps
View skill →
building-incident-timeline-with-timesketchTesting
View skill →
building-ioc-defanging-and-sharing-pipelineSQL
View skill →
building-ioc-enrichment-pipeline-with-openctiOther
View skill →
building-malware-incident-communication-templateShell
View skill →
building-patch-tuesday-response-processShell
View skill →
building-phishing-reporting-button-workflowCommunication
View skill →
building-ransomware-playbook-with-cisa-frameworkDevOps
View skill →
building-red-team-c2-infrastructure-with-havocOther
View skill →
building-role-mining-for-rbac-optimizationData
View skill →
building-soc-escalation-matrixCode
View skill →
building-soc-metrics-and-kpi-trackingOther
View skill →
building-soc-playbook-for-ransomwareDevOps
View skill →
building-threat-actor-profile-from-osintOther
View skill →
building-threat-feed-aggregation-with-mispCode
View skill →
building-threat-hunt-hypothesis-frameworkResearch
View skill →
building-threat-intelligence-enrichment-in-splunkOther
View skill →
building-threat-intelligence-feed-integrationDevOps
View skill →
building-threat-intelligence-platformOther
View skill →
building-vulnerability-aging-and-sla-trackingShell
View skill →
building-vulnerability-dashboard-with-defectdojoAPI integration
View skill →
building-vulnerability-exception-tracking-systemOther
View skill →
building-vulnerability-scanning-workflowDevOps
View skill →
bypassing-authentication-with-forced-browsingSQL
View skill →
collecting-indicators-of-compromiseCode
View skill →
collecting-open-source-intelligenceWeb
View skill →
collecting-threat-intelligence-with-mispCode
View skill →
collecting-volatile-evidence-from-compromised-hostShell
View skill →
conducting-api-security-testingWeb
View skill →
conducting-cloud-incident-responseDevOps
View skill →
conducting-cloud-penetration-testingDocument
View skill →
conducting-domain-persistence-with-dcsyncOther
View skill →
conducting-external-reconnaissance-with-osintCode
View skill →
conducting-full-scope-red-team-engagementOther
View skill →
conducting-internal-network-penetration-testCode
View skill →
conducting-internal-reconnaissance-with-bloodhound-ceTesting
View skill →
conducting-malware-incident-responseSQL
View skill →
conducting-man-in-the-middle-attack-simulationSQL
View skill →
conducting-memory-forensics-with-volatilityDevOps
View skill →
conducting-mobile-app-penetration-testOther
View skill →
conducting-network-penetration-testOther
View skill →
conducting-pass-the-ticket-attackOther
View skill →
conducting-phishing-incident-responseSQL
View skill →
conducting-post-incident-lessons-learnedDevOps
View skill →
conducting-social-engineering-penetration-testMarketing
View skill →
conducting-social-engineering-penetration-testMarketing
View skill →
conducting-social-engineering-pretext-callOther
View skill →
conducting-spearphishing-simulation-campaignMarketing
View skill →
conducting-wireless-network-penetration-testOther
View skill →
configuring-active-directory-tiered-modelOther
View skill →
configuring-aws-verified-access-for-ztnaData
View skill →
configuring-certificate-authority-with-opensslCode
View skill →
configuring-host-based-intrusion-detectionShell
View skill →
configuring-hsm-for-key-storageOther
View skill →
configuring-identity-aware-proxy-with-google-iapDevOps
View skill →
configuring-ldap-security-hardeningData
View skill →
configuring-microsegmentation-for-zero-trustCode
View skill →
configuring-multi-factor-authentication-with-duoDevOps
View skill →
configuring-network-segmentation-with-vlansData
View skill →
configuring-oauth2-authorization-flowOther
View skill →
configuring-pfsense-firewall-rulesDevOps
View skill →
configuring-snort-ids-for-intrusion-detectionOther
View skill →
configuring-suricata-for-network-monitoringDevOps
View skill →
configuring-tls-1-3-for-secure-communicationsOther
View skill →
configuring-windows-defender-advanced-settingsOther
View skill →
configuring-windows-event-logging-for-detectionOther
View skill →
configuring-zscaler-private-access-for-ztnaShell
View skill →
containing-active-breachDevOps
View skill →
correlating-security-events-in-qradarOther
View skill →
correlating-threat-campaignsMarketing
View skill →
deobfuscating-javascript-malwareCode
View skill →
deobfuscating-powershell-obfuscated-malwareShell
View skill →
deploying-active-directory-honeytokensShell
View skill →
deploying-cloudflare-access-for-zero-trustCode
View skill →
deploying-decoy-files-for-ransomware-detectionSQL
View skill →
deploying-edr-agent-with-crowdstrikeOther
View skill →
deploying-osquery-for-endpoint-monitoringDevOps
View skill →
deploying-palo-alto-prisma-access-zero-trustSQL
View skill →
deploying-ransomware-canary-filesSQL
View skill →
deploying-software-defined-perimeterData
View skill →
deploying-tailscale-for-zero-trust-vpnCode
View skill →
detecting-ai-model-prompt-injection-attacksShell
View skill →
detecting-anomalies-in-industrial-control-systemsShell
View skill →
detecting-anomalous-authentication-patternsData
View skill →
detecting-api-enumeration-attacksDevOps
View skill →
detecting-arp-poisoning-in-network-trafficSQL
View skill →
detecting-attacks-on-historian-serversOther
View skill →
detecting-attacks-on-scada-systemsSQL
View skill →
detecting-aws-cloudtrail-anomaliesCode
View skill →
detecting-aws-credential-exposure-with-trufflehogCode
View skill →
detecting-aws-guardduty-findings-automationDevOps
View skill →
detecting-aws-iam-privilege-escalationCode
View skill →
detecting-azure-lateral-movementDevOps
View skill →
detecting-azure-service-principal-abuseDevOps
View skill →
detecting-azure-storage-account-misconfigurationsDevOps
View skill →
detecting-beaconing-patterns-with-zeekData
View skill →
detecting-bluetooth-low-energy-attacksSQL
View skill →
detecting-broken-object-property-level-authorizationOther
View skill →
detecting-business-email-compromiseCode
View skill →
detecting-business-email-compromise-with-aiShell
View skill →
detecting-cloud-threats-with-guarddutyDevOps
View skill →
detecting-command-and-control-over-dnsShell
View skill →
detecting-compromised-cloud-credentialsShell
View skill →
detecting-container-drift-at-runtimeDevOps
View skill →
detecting-container-escape-attemptsDevOps
View skill →
detecting-container-escape-with-falco-rulesCode
View skill →
detecting-credential-dumping-techniquesOther
View skill →
detecting-cryptomining-in-cloudDevOps
View skill →
detecting-dcsync-attack-in-active-directoryDevOps
View skill →
detecting-deepfake-audio-in-vishing-attacksShell
View skill →
detecting-dll-sideloading-attacksOther
View skill →
detecting-dnp3-protocol-anomaliesDevOps
View skill →
detecting-dns-exfiltration-with-dns-query-analysisDevOps
View skill →
detecting-email-account-compromiseAPI integration
View skill →
detecting-email-forwarding-rules-attackCommunication
View skill →
detecting-evasion-techniques-in-endpoint-logsShell
View skill →
detecting-exfiltration-over-dns-with-zeekShell
View skill →
detecting-fileless-attacks-on-endpointsShell
View skill →
detecting-fileless-malware-techniquesShell
View skill →
detecting-golden-ticket-attacks-in-kerberos-logsOther
View skill →
detecting-golden-ticket-forgeryOther
View skill →
detecting-insider-data-exfiltration-via-dlpData
View skill →
detecting-insider-threat-behaviorsOther
View skill →
detecting-insider-threat-with-uebaOther
View skill →
detecting-kerberoasting-attacksDevOps
View skill →
detecting-lateral-movement-in-networkOther
View skill →
detecting-lateral-movement-with-splunkOther
View skill →
detecting-lateral-movement-with-zeekOther
View skill →
detecting-living-off-the-land-attacksShell
View skill →
detecting-living-off-the-land-with-lolbasOther
View skill →
detecting-malicious-scheduled-tasks-with-sysmonAutomation
View skill →
detecting-mimikatz-execution-patternsOther
View skill →
detecting-misconfigured-azure-storageDevOps
View skill →
detecting-mobile-malware-behaviorDevOps
View skill →
detecting-modbus-command-injection-attacksDevOps
View skill →
detecting-modbus-protocol-anomaliesSQL
View skill →
detecting-network-anomalies-with-zeekDevOps
View skill →
detecting-network-scanning-with-ids-signaturesShell
View skill →
detecting-ntlm-relay-with-event-correlationData
View skill →
detecting-oauth-token-theftDevOps
View skill →
detecting-pass-the-hash-attacksSQL
View skill →
detecting-pass-the-ticket-attacksOther
View skill →
detecting-port-scanning-with-fail2banDevOps
View skill →
detecting-privilege-escalation-attemptsCode
View skill →
detecting-privilege-escalation-in-kubernetes-podsDevOps
View skill →
detecting-process-hollowing-techniqueOther
View skill →
detecting-process-injection-techniquesDevOps
View skill →
detecting-qr-code-phishing-with-email-securitySQL
View skill →
detecting-ransomware-encryption-behaviorDevOps
View skill →
detecting-ransomware-precursors-in-networkDevOps
View skill →
detecting-rdp-brute-force-attacksData
View skill →
detecting-rootkit-activityShell
View skill →
detecting-s3-data-exfiltration-attemptsDevOps
View skill →
detecting-serverless-function-injectionDevOps
View skill →
detecting-service-account-abuseCode
View skill →
detecting-shadow-api-endpointsOther
View skill →
detecting-shadow-it-cloud-usageData
View skill →
detecting-spearphishing-with-email-gatewayResearch
View skill →
detecting-sql-injection-via-waf-logsMarketing
View skill →
detecting-stuxnet-style-attacksTesting
View skill →
detecting-supply-chain-attacks-in-ci-cdTesting
View skill →
detecting-suspicious-oauth-application-consentWeb
View skill →
detecting-suspicious-powershell-executionShell
View skill →
detecting-t1003-credential-dumping-with-edrDevOps
View skill →
detecting-t1055-process-injection-with-sysmonOther
View skill →
detecting-t1548-abuse-elevation-control-mechanismDevOps
View skill →
detecting-typosquatting-packages-in-npm-pypiTesting
View skill →
detecting-wmi-persistenceOther
View skill →
eradicating-malware-from-infected-systemsSQL
View skill →
evaluating-threat-intelligence-platformsAutomation
View skill →
executing-active-directory-attack-simulationCode
View skill →
executing-phishing-simulation-campaignMarketing
View skill →
executing-red-team-engagement-planningOther
View skill →
executing-red-team-exerciseOther
View skill →
exploiting-active-directory-certificate-services-esc1Code
View skill →
exploiting-active-directory-with-bloodhoundShell
View skill →
exploiting-api-injection-vulnerabilitiesOther
View skill →
exploiting-bgp-hijacking-vulnerabilitiesDevOps
View skill →
exploiting-broken-function-level-authorizationCode
View skill →
exploiting-broken-link-hijackingOther
View skill →
exploiting-constrained-delegation-abuseCode
View skill →
exploiting-deeplink-vulnerabilitiesShell
View skill →
exploiting-excessive-data-exposure-in-apiCode
View skill →
exploiting-http-request-smugglingWeb
View skill →
exploiting-idor-vulnerabilitiesSQL
View skill →
exploiting-insecure-data-storage-in-mobileTesting
View skill →
exploiting-insecure-deserializationCode
View skill →
exploiting-ipv6-vulnerabilitiesOther
View skill →
exploiting-jwt-algorithm-confusion-attackData
View skill →
exploiting-kerberoasting-with-impacketOther
View skill →
exploiting-mass-assignment-in-rest-apisSQL
View skill →
exploiting-ms17-010-eternalblue-vulnerabilityOther
View skill →
exploiting-nopac-cve-2021-42278-42287Testing
View skill →
exploiting-nosql-injection-vulnerabilitiesOther
View skill →
exploiting-oauth-misconfigurationOther
View skill →
exploiting-prototype-pollution-in-javascriptDesign
View skill →
exploiting-race-condition-vulnerabilitiesSQL
View skill →
exploiting-server-side-request-forgerySQL
View skill →
exploiting-smb-vulnerabilities-with-metasploitOther
View skill →
exploiting-sql-injection-vulnerabilitiesSQL
View skill →
exploiting-sql-injection-with-sqlmapOther
View skill →
exploiting-template-injection-vulnerabilitiesOther
View skill →
exploiting-type-juggling-vulnerabilitiesShell
View skill →
exploiting-vulnerabilities-with-metasploit-frameworkShell
View skill →
exploiting-websocket-vulnerabilitiesCode
View skill →
exploiting-zerologon-vulnerability-cve-2020-1472Data
View skill →
extracting-browser-history-artifactsCode
View skill →
extracting-config-from-agent-tesla-ratCommunication
View skill →
extracting-credentials-from-memory-dumpOther
View skill →
extracting-iocs-from-malware-samplesSQL
View skill →
extracting-memory-artifacts-with-rekallSQL
View skill →
extracting-windows-event-logs-artifactsTesting
View skill →
generating-threat-intelligence-reportsOther
View skill →
hardening-docker-containers-for-productionData
View skill →
hardening-docker-daemon-configurationOther
View skill →
hardening-linux-endpoint-with-cis-benchmarkData
View skill →
hardening-windows-endpoint-with-cis-benchmarkData
View skill →
hunting-advanced-persistent-threatsResearch
View skill →
hunting-credential-stuffing-attacksMarketing
View skill →
hunting-for-anomalous-powershell-executionShell
View skill →
hunting-for-beaconing-with-frequency-analysisShell
View skill →
hunting-for-cobalt-strike-beaconsCode
View skill →
hunting-for-command-and-control-beaconingShell
View skill →
hunting-for-data-exfiltration-indicatorsOther
View skill →
hunting-for-data-staging-before-exfiltrationDevOps
View skill →
hunting-for-dcom-lateral-movementShell
View skill →
hunting-for-dcsync-attacksOther
View skill →
hunting-for-defense-evasion-via-timestompingCode
View skill →
hunting-for-dns-based-persistenceShell
View skill →
hunting-for-dns-tunneling-with-zeekOther
View skill →
hunting-for-domain-fronting-c2-trafficOther
View skill →
hunting-for-lateral-movement-via-wmiShell
View skill →
hunting-for-living-off-the-cloud-techniquesDevOps
View skill →
hunting-for-living-off-the-land-binariesOther
View skill →
hunting-for-lolbins-execution-in-endpoint-logsShell
View skill →
hunting-for-ntlm-relay-attacksOther
View skill →
hunting-for-persistence-mechanisms-in-windowsOther
View skill →
hunting-for-persistence-via-wmi-subscriptionsSQL
View skill →
hunting-for-process-injection-techniquesOther
View skill →
hunting-for-registry-persistence-mechanismsShell
View skill →
hunting-for-registry-run-key-persistenceOther
View skill →
hunting-for-scheduled-task-persistenceAutomation
View skill →
hunting-for-shadow-copy-deletionDevOps
View skill →
hunting-for-spearphishing-indicatorsMarketing
View skill →
hunting-for-startup-folder-persistenceDevOps
View skill →
hunting-for-supply-chain-compromiseTesting
View skill →
hunting-for-suspicious-scheduled-tasksAutomation
View skill →
hunting-for-t1098-account-manipulationOther
View skill →
hunting-for-unusual-network-connectionsOther
View skill →
hunting-for-unusual-service-installationsOther
View skill →
hunting-for-webshell-activityOther
View skill →
implementing-aes-encryption-for-data-at-restShell
View skill →
implementing-alert-fatigue-reductionDevOps
View skill →
implementing-anti-phishing-training-programOther
View skill →
implementing-anti-ransomware-group-policyOther
View skill →
implementing-api-abuse-detection-with-rate-limitingData
View skill →
implementing-api-abuse-detection-with-rate-limitingData
View skill →
implementing-api-gateway-security-controlsDevOps
View skill →
implementing-api-key-security-controlsData
View skill →
implementing-api-rate-limiting-and-throttlingSQL
View skill →
implementing-api-schema-validation-securityData
View skill →
implementing-api-security-posture-managementData
View skill →
implementing-api-security-testing-with-42crunchWeb
View skill →
implementing-api-threat-protection-with-apigeeOther
View skill →
implementing-application-whitelisting-with-applockerData
View skill →
implementing-aqua-security-for-container-scanningAutomation
View skill →
implementing-attack-path-analysis-with-xm-cyberOther
View skill →
implementing-attack-surface-managementmacOS
View skill →
implementing-aws-config-rules-for-complianceDevOps
View skill →
implementing-aws-iam-permission-boundariesData
View skill →
implementing-aws-macie-for-data-classificationDevOps
View skill →
implementing-aws-nitro-enclave-securityShell
View skill →
implementing-aws-security-hubOther
View skill →
implementing-aws-security-hub-complianceOther
View skill →
implementing-azure-ad-privileged-identity-managementDevOps
View skill →
implementing-azure-defender-for-cloudOther
View skill →
implementing-beyondcorp-zero-trust-access-modelCode
View skill →
implementing-bgp-security-with-rpkiOther
View skill →
implementing-browser-isolation-for-zero-trustCode
View skill →
implementing-canary-tokens-for-network-intrusionDevOps
View skill →
implementing-cisa-zero-trust-maturity-modelCode
View skill →
implementing-cloud-dlp-for-data-protectionDevOps
View skill →
implementing-cloud-security-posture-managementDevOps
View skill →
implementing-cloud-trail-log-analysisDevOps
View skill →
implementing-cloud-vulnerability-posture-managementDevOps
View skill →
implementing-cloud-waf-rulesDevOps
View skill →
implementing-cloud-workload-protectionDevOps
View skill →
implementing-code-signing-for-artifactsTesting
View skill →
implementing-conditional-access-policies-azure-adDevOps
View skill →
implementing-conduit-security-for-ot-remote-accessShell
View skill →
implementing-container-image-minimal-base-with-distrolessOther
View skill →
implementing-container-network-policies-with-calicoDevOps
View skill →
implementing-continuous-security-validation-with-basTesting
View skill →
implementing-data-loss-prevention-with-microsoft-purviewAPI integration
View skill →
implementing-ddos-mitigation-with-cloudflareOther
View skill →
implementing-deception-based-detection-with-canarytokenShell
View skill →
implementing-delinea-secret-server-for-pamShell
View skill →
implementing-device-posture-assessment-in-zero-trustCode
View skill →
implementing-devsecops-security-scanningAutomation
View skill →
implementing-diamond-model-analysisOther
View skill →
implementing-digital-signatures-with-ed25519Other
View skill →
implementing-disk-encryption-with-bitlockerOther
View skill →
implementing-dmarc-dkim-spf-email-securityOther
View skill →
implementing-dragos-platform-for-ot-monitoringDevOps
View skill →
implementing-ebpf-security-monitoringDevOps
View skill →
implementing-email-sandboxing-with-proofpointSQL
View skill →
implementing-end-to-end-encryption-for-messagingOther
View skill →
implementing-endpoint-detection-with-wazuhWeb
View skill →
implementing-endpoint-dlp-controlsOther
View skill →
implementing-envelope-encryption-with-aws-kmsOther
View skill →
implementing-epss-score-for-vulnerability-prioritizationDocument
View skill →
implementing-file-integrity-monitoring-with-aideDevOps
View skill →
implementing-fuzz-testing-in-cicd-with-aflplusplusAutomation
View skill →
implementing-gcp-binary-authorizationDevOps
View skill →
implementing-gcp-organization-policy-constraintsSQL
View skill →
implementing-gcp-vpc-firewall-rulesDevOps
View skill →
implementing-gdpr-data-protection-controlsOther
View skill →
implementing-gdpr-data-subject-access-requestWriting
View skill →
implementing-github-advanced-security-for-code-scanningOther
View skill →
implementing-google-workspace-admin-securityAPI integration
View skill →
implementing-google-workspace-phishing-protectionAPI integration
View skill →
implementing-google-workspace-sso-configurationAPI integration
View skill →
implementing-hardware-security-key-authenticationShell
View skill →
implementing-hashicorp-vault-dynamic-secretsOther
View skill →
implementing-honeypot-for-ransomware-detectionSQL
View skill →
implementing-honeytokens-for-breach-detectionSQL
View skill →
implementing-ics-firewall-with-tofinoDevOps
View skill →
implementing-identity-governance-with-sailpointMarketing
View skill →
implementing-identity-verification-for-zero-trustCode
View skill →
implementing-iec-62443-security-zonesDevOps
View skill →
implementing-image-provenance-verification-with-cosignDevOps
View skill →
implementing-immutable-backup-with-resticData
View skill →
implementing-infrastructure-as-code-security-scanningDevOps
View skill →
implementing-iso-27001-information-security-managementCode
View skill →
implementing-just-in-time-access-provisioningOther
View skill →
implementing-jwt-signing-and-verificationShell
View skill →
implementing-kubernetes-network-policy-with-calicoDevOps
View skill →
implementing-kubernetes-pod-security-standardsDevOps
View skill →
implementing-llm-guardrails-for-securityCode
View skill →
implementing-log-forwarding-with-fluentdDevOps
View skill →
implementing-log-integrity-with-blockchainTesting
View skill →
implementing-memory-protection-with-dep-aslrTesting
View skill →
implementing-microsegmentation-with-guardicoreData
View skill →
implementing-mimecast-targeted-attack-protectionOther
View skill →
implementing-mitre-attack-coverage-mappingOther
View skill →
implementing-mobile-application-managementData
View skill →
implementing-mtls-for-zero-trust-servicesCode
View skill →
implementing-nerc-cip-compliance-controlsTesting
View skill →
implementing-network-access-controlData
View skill →
implementing-network-access-control-with-cisco-iseOther
View skill →
implementing-network-deception-with-honeypotsOther
View skill →
implementing-network-intrusion-prevention-with-suricataOther
View skill →
implementing-network-policies-for-kubernetesDevOps
View skill →
implementing-network-segmentation-for-otDevOps
View skill →
implementing-network-segmentation-with-firewall-zonesDevOps
View skill →
implementing-network-traffic-analysis-with-arkimeOther
View skill →
implementing-network-traffic-baseliningData
View skill →
implementing-next-generation-firewall-with-palo-altoDevOps
View skill →
implementing-opa-gatekeeper-for-policy-enforcementData
View skill →
implementing-ot-incident-response-playbookDevOps
View skill →
implementing-ot-network-traffic-analysis-with-nozomiDevOps
View skill →
implementing-pam-for-database-accessSQL
View skill →
implementing-passwordless-auth-with-microsoft-entraShell
View skill →
implementing-passwordless-authentication-with-fido2Code
View skill →
implementing-patch-management-for-ot-systemsSQL
View skill →
implementing-patch-management-workflowOther
View skill →
implementing-pci-dss-compliance-controlsOther
View skill →
implementing-pod-security-admission-controllerSQL
View skill →
implementing-policy-as-code-with-open-policy-agentAutomation
View skill →
implementing-privileged-access-management-with-cyberarkOther
View skill →
implementing-privileged-access-workstationCode
View skill →
implementing-privileged-session-monitoringDevOps
View skill →
implementing-proofpoint-email-security-gatewayOther
View skill →
implementing-purdue-model-network-segmentationData
View skill →
implementing-ransomware-backup-strategyOther
View skill →
implementing-ransomware-kill-switch-detectionDevOps
View skill →
implementing-rapid7-insightvm-for-scanningDevOps
View skill →
implementing-rbac-hardening-for-kubernetesDevOps
View skill →
implementing-rsa-key-pair-managementShell
View skill →
implementing-runtime-application-self-protectionCode
View skill →
implementing-runtime-security-with-tetragonDevOps
View skill →
implementing-saml-sso-with-oktaOther
View skill →
implementing-scim-provisioning-with-oktaOther
View skill →
implementing-secret-scanning-with-gitleaksShell
View skill →
implementing-secrets-management-with-vaultAutomation
View skill →
implementing-secrets-scanning-in-ci-cdAutomation
View skill →
implementing-security-chaos-engineeringDevOps
View skill →
implementing-security-information-sharing-with-stix2Code
View skill →
implementing-security-monitoring-with-datadogDevOps
View skill →
implementing-semgrep-for-custom-sast-rulesShell
View skill →
implementing-siem-correlation-rules-for-aptTesting
View skill →
implementing-siem-use-case-tuningOther
View skill →
implementing-siem-use-cases-for-detectionOther
View skill →
implementing-sigstore-for-software-signingAutomation
View skill →
implementing-soar-automation-with-phantomDevOps
View skill →
implementing-soar-playbook-for-phishingSQL
View skill →
implementing-soar-playbook-with-palo-alto-xsoarDevOps
View skill →
implementing-stix-taxii-feed-integrationCode
View skill →
implementing-supply-chain-security-with-in-totoTesting
View skill →
implementing-syslog-centralization-with-rsyslogOther
View skill →
implementing-taxii-server-with-opentaxiiCode
View skill →
implementing-threat-intelligence-lifecycle-managementOther
View skill →
implementing-threat-modeling-with-mitre-attackOther
View skill →
implementing-ticketing-system-for-incidentsAPI integration
View skill →
implementing-usb-device-control-policyData
View skill →
implementing-velociraptor-for-ir-collectionmacOS
View skill →
implementing-vulnerability-management-with-greenboneDevOps
View skill →
implementing-vulnerability-remediation-slaShell
View skill →
implementing-vulnerability-sla-breach-alertingDevOps
View skill →
implementing-web-application-logging-with-modsecurityOther
View skill →
implementing-zero-knowledge-proof-for-authenticationOther
View skill →
implementing-zero-standing-privilege-with-cyberarkOther
View skill →
implementing-zero-trust-dns-with-nextdnsCode
View skill →
implementing-zero-trust-for-saas-applicationsCode
View skill →
implementing-zero-trust-in-cloudCode
View skill →
implementing-zero-trust-network-accessCode
View skill →
implementing-zero-trust-network-access-with-zscalerCode
View skill →
implementing-zero-trust-with-beyondcorpCode
View skill →
implementing-zero-trust-with-hashicorp-boundaryCode
View skill →
integrating-dast-with-owasp-zap-in-pipelineAutomation
View skill →
integrating-sast-into-github-actions-pipelineAutomation
View skill →
intercepting-mobile-traffic-with-burpsuiteOther
View skill →
investigating-insider-threat-indicatorsOther
View skill →
investigating-phishing-email-incidentSQL
View skill →
investigating-ransomware-attack-artifactsOther
View skill →
managing-cloud-identity-with-oktaData
View skill →
managing-intelligence-lifecycleOther
View skill →
mapping-mitre-attack-techniquesShell
View skill →
monitoring-darkweb-sourcesDevOps
View skill →
monitoring-scada-modbus-traffic-anomaliesDevOps
View skill →
performing-access-recertification-with-saviyntMarketing
View skill →
performing-access-review-and-certificationMarketing
View skill →
performing-active-directory-bloodhound-analysisShell
View skill →
performing-active-directory-compromise-investigationOther
View skill →
performing-active-directory-forest-trust-attackCode
View skill →
performing-active-directory-penetration-testShell
View skill →
performing-active-directory-vulnerability-assessmentCode
View skill →
performing-adversary-in-the-middle-phishing-detectionSQL
View skill →
performing-agentless-vulnerability-scanningDevOps
View skill →
performing-ai-driven-osint-correlationShell
View skill →
performing-alert-triage-with-elastic-siemOther
View skill →
performing-android-app-static-analysis-with-mobsfAutomation
View skill →
performing-api-fuzzing-with-restlerWeb
View skill →
performing-api-inventory-and-discoveryCode
View skill →
performing-api-inventory-and-discoveryCode
View skill →
performing-api-rate-limiting-bypassSQL
View skill →
performing-api-security-testing-with-postmanAutomation
View skill →
performing-arp-spoofing-attack-simulationSQL
View skill →
performing-asset-criticality-scoring-for-vulnsShell
View skill →
performing-authenticated-scan-with-openvasDevOps
View skill →
performing-authenticated-vulnerability-scanDevOps
View skill →
performing-automated-malware-analysis-with-capeDevOps
View skill →
performing-aws-account-enumeration-with-scout-suiteOther
View skill →
performing-aws-privilege-escalation-assessmentCode
View skill →
performing-bandwidth-throttling-attack-simulationDevOps
View skill →
performing-binary-exploitation-analysisTesting
View skill →
performing-blind-ssrf-exploitationDevOps
View skill →
performing-bluetooth-security-assessmentOther
View skill →
performing-brand-monitoring-for-impersonationDevOps
View skill →
performing-brand-monitoring-for-impersonationDevOps
View skill →
performing-clickjacking-attack-testOther
View skill →
performing-cloud-asset-inventory-with-cartographyOther
View skill →
performing-cloud-forensics-investigationDevOps
View skill →
performing-cloud-forensics-with-aws-cloudtrailShell
View skill →
performing-cloud-incident-containment-proceduresDevOps
View skill →
performing-cloud-log-forensics-with-athenaSQL
View skill →
performing-cloud-native-forensics-with-falcoDevOps
View skill →
performing-cloud-native-threat-hunting-with-aws-detectiveDevOps
View skill →
performing-cloud-penetration-testing-with-pacuCode
View skill →
performing-cloud-storage-forensic-acquisitionAPI integration
View skill →
performing-container-escape-detectionDevOps
View skill →
performing-container-image-hardeningOther
View skill →
performing-container-security-scanning-with-trivyAutomation
View skill →
performing-content-security-policy-bypassOther
View skill →
performing-credential-access-with-lazagneShell
View skill →
performing-cryptographic-audit-of-applicationOther
View skill →
performing-csrf-attack-simulationOther
View skill →
performing-cve-prioritization-with-kev-catalogShell
View skill →
performing-dark-web-monitoring-for-threatsDevOps
View skill →
performing-deception-technology-deploymentShell
View skill →
performing-directory-traversal-testingDocument
View skill →
performing-disk-forensics-investigationDevOps
View skill →
performing-dmarc-policy-enforcement-rolloutData
View skill →
performing-dns-enumeration-and-zone-transferData
View skill →
performing-dns-tunneling-detectionOther
View skill →
performing-docker-bench-security-assessmentShell
View skill →
performing-dynamic-analysis-of-android-appOther
View skill →
performing-dynamic-analysis-with-any-runShell
View skill →
performing-endpoint-forensics-investigationShell
View skill →
performing-endpoint-vulnerability-remediationDevOps
View skill →
performing-entitlement-review-with-sailpoint-iiqMarketing
View skill →
performing-external-network-penetration-testOther
View skill →
performing-false-positive-reduction-in-siemShell
View skill →
performing-file-carving-with-foremostOther
View skill →
performing-firmware-extraction-with-binwalkShell
View skill →
performing-firmware-malware-analysisOther
View skill →
performing-fuzzing-with-aflplusplusMarketing
View skill →
performing-gcp-penetration-testing-with-gcpbucketbruteDevOps
View skill →
performing-gcp-security-assessment-with-forsetiDevOps
View skill →
performing-graphql-depth-limit-attackOther
View skill →
performing-graphql-introspection-attackData
View skill →
performing-graphql-security-assessmentOther
View skill →
performing-hardware-security-module-integrationCode
View skill →
performing-hash-cracking-with-hashcatOther
View skill →
performing-http-parameter-pollution-attackShell
View skill →
performing-ics-asset-discovery-with-clarotyDevOps
View skill →
performing-indicator-lifecycle-managementDevOps
View skill →
performing-initial-access-with-evilginx3SQL
View skill →
performing-insider-threat-investigationShell
View skill →
performing-ioc-enrichment-automationSQL
View skill →
performing-ios-app-security-assessmentTesting
View skill →
performing-iot-security-assessmentOther
View skill →
performing-ip-reputation-analysis-with-shodanOther
View skill →
performing-jwt-none-algorithm-attackOther
View skill →
performing-kerberoasting-attackOther
View skill →
performing-kubernetes-cis-benchmark-with-kube-benchDevOps
View skill →
performing-kubernetes-etcd-security-assessmentDevOps
View skill →
performing-kubernetes-penetration-testingDevOps
View skill →
performing-lateral-movement-detectionShell
View skill →
performing-lateral-movement-with-wmiexecShell
View skill →
performing-linux-log-forensics-investigationShell
View skill →
performing-log-analysis-for-forensic-investigationOther
View skill →
performing-log-source-onboarding-in-siemOther
View skill →
performing-malware-hash-enrichment-with-virustotalCode
View skill →
performing-malware-ioc-extractionSQL
View skill →
performing-malware-persistence-investigationOther
View skill →
performing-malware-triage-with-yaraSQL
View skill →
performing-memory-forensics-with-volatility3Other
View skill →
performing-memory-forensics-with-volatility3-pluginsSQL
View skill →
performing-mobile-app-certificate-pinning-bypassSQL
View skill →
performing-mobile-device-forensics-with-cellebriteOther
View skill →
performing-network-forensics-with-wiresharkOther
View skill →
performing-network-packet-capture-analysisOther
View skill →
performing-network-traffic-analysis-with-tsharkOther
View skill →
performing-network-traffic-analysis-with-zeekOther
View skill →
performing-nist-csf-maturity-assessmentShell
View skill →
performing-oauth-scope-minimization-reviewWeb
View skill →
performing-oil-gas-cybersecurity-assessmentOther
View skill →
performing-open-source-intelligence-gatheringDocument
View skill →
performing-open-source-intelligence-gatheringDocument
View skill →
performing-osint-with-spiderfootWeb
View skill →
performing-ot-network-security-assessmentDevOps
View skill →
performing-ot-vulnerability-assessment-with-clarotyShell
View skill →
performing-ot-vulnerability-scanning-safelyDevOps
View skill →
performing-packet-injection-attackDevOps
View skill →
performing-paste-site-monitoring-for-credentialsDevOps
View skill →
performing-paste-site-monitoring-for-credentialsDevOps
View skill →
performing-phishing-simulation-with-gophishMarketing
View skill →
performing-physical-intrusion-assessmentOther
View skill →
performing-plc-firmware-security-analysisOther
View skill →
performing-post-quantum-cryptography-migrationWeb
View skill →
performing-power-grid-cybersecurity-assessmentOther
View skill →
performing-privacy-impact-assessmentWriting
View skill →
performing-privilege-escalation-assessmentCode
View skill →
performing-privilege-escalation-on-linuxCode
View skill →
performing-privileged-account-access-reviewResearch
View skill →
performing-privileged-account-discoveryOther
View skill →
performing-purple-team-atomic-testingShell
View skill →
performing-purple-team-exerciseOther
View skill →
performing-ransomware-responseDevOps
View skill →
performing-ransomware-tabletop-exerciseDevOps
View skill →
performing-red-team-phishing-with-gophishMarketing
View skill →
performing-red-team-with-covenantOther
View skill →
performing-s7comm-protocol-security-analysisShell
View skill →
performing-sca-dependency-scanning-with-snykAutomation
View skill →
performing-scada-hmi-security-assessmentShell
View skill →
performing-second-order-sql-injectionSQL
View skill →
performing-security-headers-auditOther
View skill →
performing-serverless-function-security-reviewDevOps
View skill →
performing-service-account-auditOther
View skill →
performing-service-account-credential-rotationOther
View skill →
performing-soap-web-service-security-testingSQL
View skill →
performing-soc-tabletop-exerciseDevOps
View skill →
performing-soc2-type2-audit-preparationCode
View skill →
performing-sqlite-database-forensicsSQL
View skill →
performing-ssl-certificate-lifecycle-managementDevOps
View skill →
performing-ssl-stripping-attackData
View skill →
performing-ssl-tls-inspection-configurationOther
View skill →
performing-ssl-tls-security-assessmentTesting
View skill →
performing-ssrf-vulnerability-exploitationDevOps
View skill →
performing-static-malware-analysis-with-pe-studioSQL
View skill →
performing-steganography-detectionOther
View skill →
performing-subdomain-enumeration-with-subfindermacOS
View skill →
performing-supply-chain-attack-simulationTesting
View skill →
performing-thick-client-application-penetration-testOther
View skill →
performing-threat-emulation-with-atomic-red-teamData
View skill →
performing-threat-hunting-with-elastic-siemOther
View skill →
performing-threat-hunting-with-yara-rulesCode
View skill →
performing-threat-intelligence-sharing-with-mispOther
View skill →
performing-threat-landscape-assessment-for-sectorOther
View skill →
performing-threat-modeling-with-owasp-threat-dragonOther
View skill →
performing-timeline-reconstruction-with-plasoOther
View skill →
performing-user-behavior-analyticsShell
View skill →
performing-vlan-hopping-attackOther
View skill →
performing-vulnerability-scanning-with-nessusDevOps
View skill →
performing-web-application-firewall-bypassDevOps
View skill →
performing-web-application-penetration-testSQL
View skill →
performing-web-application-scanning-with-niktoOther
View skill →
performing-web-application-vulnerability-triageOther
View skill →
performing-web-cache-deception-attackOther
View skill →
performing-web-cache-poisoning-attackOther
View skill →
performing-wifi-password-cracking-with-aircrackOther
View skill →
performing-windows-artifact-analysis-with-eric-zimmerman-toolsOther
View skill →
performing-wireless-network-penetration-testOther
View skill →
performing-wireless-security-assessment-with-kismetDevOps
View skill →
performing-yara-rule-development-for-detectionOther
View skill →
prioritizing-vulnerabilities-with-cvss-scoringDocument
View skill →
processing-stix-taxii-feedsOther
View skill →
profiling-threat-actor-groupsMarketing
View skill →
recovering-deleted-files-with-photorecShell
View skill →
recovering-from-ransomware-attackDevOps
View skill →
remediating-s3-bucket-misconfigurationDevOps
View skill →
reverse-engineering-android-malware-with-jadxCode
View skill →
reverse-engineering-dotnet-malware-with-dnspyDocument
View skill →
reverse-engineering-ios-app-with-fridaDocument
View skill →
reverse-engineering-malware-with-ghidraDocument
View skill →
reverse-engineering-ransomware-encryption-routineOther
View skill →
reverse-engineering-rust-malwareCode
View skill →
scanning-container-images-with-grypeShell
View skill →
scanning-containers-with-trivy-in-cicdAutomation
View skill →
scanning-docker-images-with-trivyDevOps
View skill →
scanning-infrastructure-with-nessusDevOps
View skill →
scanning-kubernetes-manifests-with-kubesecDevOps
View skill →
scanning-network-with-nmap-advancedOther
View skill →
securing-api-gateway-with-aws-wafDevOps
View skill →
securing-aws-iam-permissionsData
View skill →
securing-aws-lambda-execution-rolesData
View skill →
securing-azure-with-microsoft-defenderOther
View skill →
securing-container-registry-imagesDocument
View skill →
securing-container-registry-with-harborDevOps
View skill →
securing-github-actions-workflowsCode
View skill →
securing-helm-chart-deploymentsDevOps
View skill →
securing-historian-server-in-ot-environmentShell
View skill →
securing-kubernetes-on-cloudDevOps
View skill →
securing-remote-access-to-ot-environmentOther
View skill →
securing-serverless-functionsDevOps
View skill →
testing-android-intents-for-vulnerabilitiesShell
View skill →
testing-api-authentication-weaknessesSQL
View skill →
testing-api-for-broken-object-level-authorizationData
View skill →
testing-api-for-mass-assignment-vulnerabilityOther
View skill →
testing-api-security-with-owasp-top-10Other
View skill →
testing-cors-misconfigurationOther
View skill →
testing-for-broken-access-controlCode
View skill →
testing-for-business-logic-vulnerabilitiesDevOps
View skill →
testing-for-email-header-injectionCommunication
View skill →
testing-for-host-header-injectionOther
View skill →
testing-for-json-web-token-vulnerabilitiesCode
View skill →
testing-for-open-redirect-vulnerabilitiesTesting
View skill →
testing-for-sensitive-data-exposureSQL
View skill →
testing-for-xml-injection-vulnerabilitiesDocument
View skill →
testing-for-xss-vulnerabilitiesSQL
View skill →
testing-for-xss-vulnerabilities-with-burpsuiteOther
View skill →
testing-for-xxe-injection-vulnerabilitiesDocument
View skill →
testing-jwt-token-securityOther
View skill →
testing-mobile-api-authenticationCode
View skill →
testing-oauth2-implementation-flawsCode
View skill →
testing-ransomware-recovery-proceduresOther
View skill →
testing-websocket-api-securityCode
View skill →
tracking-threat-actor-infrastructureDevOps
View skill →
triaging-security-alerts-in-splunkCode
View skill →
triaging-security-incidentShell
View skill →
triaging-security-incident-with-ir-playbookOther
View skill →
triaging-vulnerabilities-with-ssvc-frameworkOther
View skill →
validating-backup-integrity-for-recoveryDevOps
View skill →