Blue Team / Defensive Security
CommunityDefend and detect threats with expert security insights.
Software Engineering#log analysis#incident response#threat hunting#blue team#security hardening#detection engineering#defensive security
Authordefconxt
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill empowers security professionals to build robust defenses, detect sophisticated threats, and respond effectively to security incidents by providing expert guidance on defensive security practices.
Core Features & Use Cases
- Detection Engineering: Write and translate Sigma rules for various SIEMs.
- Log Analysis & Correlation: Understand critical event IDs and log sources for threat hunting.
- Threat Hunting: Develop and execute hypothesis-driven hunts.
- Endpoint & Network Security: Harden systems, monitor network traffic, and deploy security tools like CrowdSec and Suricata.
- Vulnerability Management: Prioritize patching based on exploitability and impact.
- Identity Security: Implement zero-trust principles and secure privileged access.
- Security Architecture: Apply CIS benchmarks and hardening best practices.
Quick Start
Use the blue team skill to write a Sigma rule for detecting suspicious net user enumeration.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: Blue Team / Defensive Security Download link: https://github.com/defconxt/CIPHER/archive/main.zip#blue-team-defensive-security Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.