Browse Skills — Page 102

implementing-aes-encryption-for-data-at-rest

mukul975/Anthropic-Cybersecurity-Skills

AES (Advanced Encryption Standard) is a symmetric block cipher standardized by NIST (FIPS 197) used to protect classified and sensitive data. This skill covers implementing AES-256 encryption in GCM m

implementing-alert-fatigue-reduction

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-anti-phishing-training-program

mukul975/Anthropic-Cybersecurity-Skills

Security awareness training is the human layer of phishing defense. An effective anti-phishing training program combines regular simulations, interactive learning modules, metric tracking, and positiv

implementing-anti-ransomware-group-policy

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-api-abuse-detection-with-rate-limiting

mukul975/Anthropic-Cybersecurity-Skills

Implement API abuse detection using token bucket, sliding window, and adaptive rate limiting algorithms to prevent DDoS, brute force, and credential stuffing attacks.

implementing-api-gateway-security-controls

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-api-key-security-controls

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-api-rate-limiting-and-throttling

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-api-schema-validation-security

mukul975/Anthropic-Cybersecurity-Skills

Implement API schema validation using OpenAPI specifications and JSON Schema to enforce input/output contracts and prevent injection, data exposure, and mass assignment attacks.

implementing-api-security-posture-management

mukul975/Anthropic-Cybersecurity-Skills

Implement API Security Posture Management to continuously discover, classify, and score APIs based on risk while enforcing security policies across the API lifecycle.

implementing-api-security-testing-with-42crunch

mukul975/Anthropic-Cybersecurity-Skills

Implement comprehensive API security testing using the 42Crunch platform to perform static audit and dynamic conformance scanning of OpenAPI specifications.

implementing-api-threat-protection-with-apigee

mukul975/Anthropic-Cybersecurity-Skills

Implement API threat protection using Google Apigee policies including JSON/XML threat protection, OAuth 2.0, SpikeArrest, and Advanced API Security for OWASP Top 10 defense.

implementing-application-whitelisting-with-applocker

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-aqua-security-for-container-scanning

mukul975/Anthropic-Cybersecurity-Skills

Deploy Aqua Security's Trivy scanner to detect vulnerabilities, misconfigurations, secrets, and license issues in container images across CI/CD pipelines and registries.

implementing-attack-path-analysis-with-xm-cyber

mukul975/Anthropic-Cybersecurity-Skills

Deploy XM Cyber's continuous exposure management platform to map attack paths, identify choke points, and prioritize the 2% of exposures that threaten critical assets.

implementing-attack-surface-management

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-aws-config-rules-for-compliance

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-aws-iam-permission-boundaries

mukul975/Anthropic-Cybersecurity-Skills

Configure IAM permission boundaries in AWS to delegate role creation to developers while enforcing maximum privilege limits set by the security team.

implementing-aws-macie-for-data-classification

mukul975/Anthropic-Cybersecurity-Skills

Implement Amazon Macie to automatically discover, classify, and protect sensitive data in S3 buckets using machine learning and pattern matching for PII, financial data, and credentials detection.

implementing-aws-nitro-enclave-security

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-aws-security-hub

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-aws-security-hub-compliance

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-azure-ad-privileged-identity-management

mukul975/Anthropic-Cybersecurity-Skills

Configure Microsoft Entra Privileged Identity Management to enforce just-in-time role activation, approval workflows, and access reviews for Azure AD privileged roles.

implementing-azure-defender-for-cloud

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-beyondcorp-zero-trust-access-model

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-bgp-security-with-rpki

mukul975/Anthropic-Cybersecurity-Skills

Implement BGP route origin validation using RPKI with Route Origin Authorizations, RPKI-to-Router protocol, and ROV policies on Cisco and Juniper routers to prevent route hijacking.

implementing-browser-isolation-for-zero-trust

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-canary-tokens-for-network-intrusion

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-cisa-zero-trust-maturity-model

mukul975/Anthropic-Cybersecurity-Skills

Implement the CISA Zero Trust Maturity Model v2.0 across the five pillars of identity, devices, networks, applications, and data to achieve progressive organizational zero trust maturity.

implementing-cloud-dlp-for-data-protection

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-cloud-security-posture-management

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-cloud-trail-log-analysis

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-cloud-vulnerability-posture-management

mukul975/Anthropic-Cybersecurity-Skills

Implement Cloud Security Posture Management using AWS Security Hub, Azure Defender for Cloud, and open-source tools like Prowler and ScoutSuite for multi-cloud vulnerability detection.

implementing-cloud-waf-rules

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-cloud-workload-protection

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-code-signing-for-artifacts

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-command-palettes

AgentWorkforce/relay

Use when building Cmd+K command palettes in React - covers keyboard navigation with arrow keys, keeping selected items in view with scrollIntoView, filtering with shortcut matching, and preventing infinite re-renders from reference instability

implementing-conditional-access-policies-azure-ad

mukul975/Anthropic-Cybersecurity-Skills

Configure Microsoft Entra ID (Azure AD) Conditional Access policies for zero trust access control. Covers signal-based policy design, device compliance requirements, risk-based authentication, named l

implementing-conduit-security-for-ot-remote-access

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-container-image-minimal-base-with-distroless

mukul975/Anthropic-Cybersecurity-Skills

Reduce container attack surface by building application images on Google distroless base images that contain only the application runtime with no shell, package manager, or unnecessary OS utilities.

implementing-container-network-policies-with-calico

mukul975/Anthropic-Cybersecurity-Skills

Enforce Kubernetes network segmentation using Calico CNI network policies and global network policies to control pod-to-pod traffic, restrict egress, and implement zero-trust microsegmentation.

implementing-continuous-security-validation-with-bas

mukul975/Anthropic-Cybersecurity-Skills

Deploy Breach and Attack Simulation tools to continuously validate security control effectiveness by safely emulating real-world attack techniques across the kill chain.

implementing-data-loss-prevention-with-microsoft-purview

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-ddos-mitigation-with-cloudflare

mukul975/Anthropic-Cybersecurity-Skills

Configure Cloudflare DDoS protection with managed rulesets, rate limiting, WAF rules, Bot Management, and origin protection to mitigate volumetric, protocol, and application-layer attacks.

implementing-deception-based-detection-with-canarytoken

mukul975/Anthropic-Cybersecurity-Skills

Deploy and monitor Canary Tokens via the Thinkst Canary API for deception-based breach detection using web bug tokens, DNS tokens, document tokens, and AWS key tokens.

implementing-delinea-secret-server-for-pam

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-device-posture-assessment-in-zero-trust

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-devsecops-security-scanning

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-diamond-model-analysis

mukul975/Anthropic-Cybersecurity-Skills

>-

implementing-digital-signatures-with-ed25519

mukul975/Anthropic-Cybersecurity-Skills

Ed25519 is a high-performance digital signature algorithm using the Edwards curve Curve25519. It provides 128-bit security with 64-byte signatures and 32-byte keys, offering significant advantages ove

implementing-disk-encryption-with-bitlocker

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-dmarc-dkim-spf-email-security

mukul975/Anthropic-Cybersecurity-Skills

SPF, DKIM, and DMARC form the three pillars of email authentication. Together they prevent domain spoofing, validate message integrity, and define policies for handling unauthenticated mail. Proper im

implementing-dragos-platform-for-ot-monitoring

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-ebpf-security-monitoring

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-email-sandboxing-with-proofpoint

mukul975/Anthropic-Cybersecurity-Skills

Email sandboxing detonates suspicious attachments and URLs in isolated environments to detect zero-day malware and evasive phishing payloads. Proofpoint Targeted Attack Protection (TAP) is an industry

implementing-end-to-end-encryption-for-messaging

mukul975/Anthropic-Cybersecurity-Skills

End-to-end encryption (E2EE) ensures that only the communicating parties can read messages, with no intermediary (including the server) able to decrypt them. This skill implements a simplified version

implementing-endpoint-detection-with-wazuh

mukul975/Anthropic-Cybersecurity-Skills

Deploy and configure Wazuh SIEM/XDR for endpoint detection including agent management, custom decoder and rule XML creation, alert querying via the Wazuh REST API, and automated response actions.

implementing-endpoint-dlp-controls

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-envelope-encryption-with-aws-kms

mukul975/Anthropic-Cybersecurity-Skills

Envelope encryption is a strategy where data is encrypted with a data encryption key (DEK), and the DEK itself is encrypted with a master key (KEK) managed by AWS KMS. This approach allows encrypting

implementing-epss-score-for-vulnerability-prioritization

mukul975/Anthropic-Cybersecurity-Skills

Integrate FIRST's Exploit Prediction Scoring System (EPSS) API to prioritize vulnerability remediation based on real-world exploitation probability within 30 days.

implementing-file-integrity-monitoring-with-aide

mukul975/Anthropic-Cybersecurity-Skills

Configure AIDE (Advanced Intrusion Detection Environment) for file integrity monitoring including baseline creation, scheduled integrity checks, change detection, and alerting

implementing-fuzz-testing-in-cicd-with-aflplusplus

mukul975/Anthropic-Cybersecurity-Skills

Integrate AFL++ coverage-guided fuzz testing into CI/CD pipelines to discover memory corruption, input handling, and logic vulnerabilities in C/C++ and compiled applications.

implementing-gcp-binary-authorization

mukul975/Anthropic-Cybersecurity-Skills

Implement GCP Binary Authorization to enforce deploy-time security controls that ensure only trusted, attested container images are deployed to Google Kubernetes Engine and Cloud Run.

implementing-gcp-organization-policy-constraints

mukul975/Anthropic-Cybersecurity-Skills

Implement GCP Organization Policy constraints to enforce security guardrails across the entire resource hierarchy, restricting risky configurations and ensuring compliance at organization, folder, and project levels.

implementing-gcp-vpc-firewall-rules

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-gdpr-data-protection-controls

mukul975/Anthropic-Cybersecurity-Skills

The General Data Protection Regulation (EU) 2016/679 (GDPR) is the EU's comprehensive data protection law governing the collection, processing, storage, and transfer of personal data. This skill cover

implementing-gdpr-data-subject-access-request

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-github-advanced-security-for-code-scanning

mukul975/Anthropic-Cybersecurity-Skills

Configure GitHub Advanced Security with CodeQL to perform automated static analysis and vulnerability detection across repositories at enterprise scale.

implementing-google-workspace-admin-security

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-google-workspace-phishing-protection

mukul975/Anthropic-Cybersecurity-Skills

Configure Google Workspace advanced phishing and malware protection settings including pre-delivery scanning, attachment protection, spoofing detection, and Enhanced Safe Browsing.

implementing-google-workspace-sso-configuration

mukul975/Anthropic-Cybersecurity-Skills

Configure SAML 2.0 single sign-on for Google Workspace with a third-party identity provider, enabling centralized authentication and enforcing organization-wide access policies.

implementing-hardware-security-key-authentication

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-hashicorp-vault-dynamic-secrets

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-honeypot-for-ransomware-detection

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-honeytokens-for-breach-detection

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-ics-firewall-with-tofino

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-identity-governance-with-sailpoint

mukul975/Anthropic-Cybersecurity-Skills

Deploy SailPoint IdentityNow or IdentityIQ for identity governance and administration. Covers identity lifecycle management, access request workflows, certification campaigns, role mining, SOD policy

implementing-identity-verification-for-zero-trust

mukul975/Anthropic-Cybersecurity-Skills

Implement continuous identity verification for zero trust using phishing-resistant MFA (FIDO2/WebAuthn), risk-based conditional access, and identity governance aligned with the CISA Zero Trust Maturity Model.

implementing-iec-62443-security-zones

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-image-provenance-verification-with-cosign

mukul975/Anthropic-Cybersecurity-Skills

Sign and verify container image provenance using Sigstore Cosign with keyless OIDC-based signing, attestations, and Kubernetes admission enforcement.

implementing-immutable-backup-with-restic

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-infrastructure-as-code-security-scanning

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-iso-27001-information-security-management

mukul975/Anthropic-Cybersecurity-Skills

ISO/IEC 27001:2022 is the international standard for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS). This skill covers the complete

implementing-just-in-time-access-provisioning

mukul975/Anthropic-Cybersecurity-Skills

Implement Just-In-Time (JIT) access provisioning to eliminate standing privileges by granting temporary, time-bound access only when needed. This skill covers JIT architecture design, approval workflo

implementing-jwt-signing-and-verification

mukul975/Anthropic-Cybersecurity-Skills

JSON Web Tokens (JWT) defined in RFC 7519 are compact, URL-safe tokens used for authentication and authorization in web applications. This skill covers implementing secure JWT signing with HMAC-SHA256

implementing-kubernetes-network-policy-with-calico

mukul975/Anthropic-Cybersecurity-Skills

Implement Kubernetes network segmentation using Calico NetworkPolicy and GlobalNetworkPolicy for zero-trust pod-to-pod communication.

implementing-kubernetes-pod-security-standards

mukul975/Anthropic-Cybersecurity-Skills

Pod Security Standards (PSS) define three levels of security policies -- Privileged, Baseline, and Restricted -- enforced by the Pod Security Admission (PSA) controller built into Kubernetes 1.25+. PS

implementing-llm-guardrails-for-security

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-llms-litgpt

Orchestra-Research/AI-Research-SKILLs

Implements and trains LLMs using Lightning AI's LitGPT with 20+ pretrained architectures (Llama, Gemma, Phi, Qwen, Mistral). Use when need clean model implementations, educational understanding of architectures, or production fine-tuning with LoRA/QLoRA. Single-file implementations, no abstraction layers.

implementing-log-forwarding-with-fluentd

mukul975/Anthropic-Cybersecurity-Skills

Configure Fluentd and Fluent Bit for centralized log aggregation, routing, filtering, and enrichment across distributed infrastructure

implementing-log-integrity-with-blockchain

mukul975/Anthropic-Cybersecurity-Skills

>-

implementing-memory-protection-with-dep-aslr

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-microsegmentation-with-guardicore

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-mimecast-targeted-attack-protection

mukul975/Anthropic-Cybersecurity-Skills

Deploy Mimecast Targeted Threat Protection including URL Protect, Attachment Protect, Impersonation Protect, and Internal Email Protect to defend against advanced phishing and spearphishing attacks.

implementing-mitre-attack-coverage-mapping

mukul975/Anthropic-Cybersecurity-Skills

Implement MITRE ATT&CK coverage mapping to identify detection gaps, prioritize rule development, and measure SOC detection maturity against adversary techniques.

implementing-mobile-application-management

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-mtls-for-zero-trust-services

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-nerc-cip-compliance-controls

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-network-access-control

mukul975/Anthropic-Cybersecurity-Skills

>

implementing-network-access-control-with-cisco-ise

mukul975/Anthropic-Cybersecurity-Skills

Deploy Cisco Identity Services Engine for 802.1X wired and wireless authentication, MAC Authentication Bypass, posture assessment, and dynamic VLAN assignment for network access control.