security-alert-triage
OfficialTriage security alerts efficiently.
Authorelastic
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill automates the process of investigating and responding to security alerts, reducing manual effort and improving response times for security analysts.
Core Features & Use Cases
- Automated Alert Triage: Fetches, investigates, and acknowledges security alerts.
- Context Gathering: Runs queries to gather relevant information about alerts.
- Case Management Integration: Creates and updates cases with findings.
- Use Case: When a new critical alert fires, this Skill can automatically fetch it, gather related process and network information, create a case, and acknowledge the alert, allowing analysts to focus on high-priority threats.
Quick Start
Fetch the next unacknowledged alert and begin its triage process.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: security-alert-triage Download link: https://github.com/elastic/agent-skills/archive/main.zip#security-alert-triage Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.