Cybersecurity Skills Bundle | Prompeteer.ai
Security auditing, vulnerability assessment, compliance frameworks, secure coding practices, and incident response skills.
Included Skills (78)
- Adversarial Decision Reviewer — This skill subjects non-trivial technical decisions to rigorous adversarial cross-examination, helping developers ensure correctness and mitigate risks in high-stakes coding environments.
- VCN Gap Analyzer — This tool identifies weak classification samples for NVIDIA TAO VCN experiments to help engineers optimize decision thresholds and target data for augmentation.
- Senior Secops — Senior SecOps engineer skill for application security, vulnerability management, compliance verification, and secure development practices. Runs SAST/DAST scans, generates CVE remediation plans, checks dependency vulnerabilities, creates security policies, enforces secure coding patterns, and automates compliance checks against SOC2, PCI-DSS, HIPAA, and GDPR. Use when conducting a security review or audit, responding to a CVE or security incident, hardening infrastructure, implementing authentication or secrets management, running penetration test prep, checking OWASP Top 10 exposure, or enforcing security controls in CI/CD pipelines.
- Compliance Orchestration Engine — This meta-orchestrator helps compliance teams configure frameworks, map control overlaps, simulate audits, and consolidate evidence across multiple regulatory standards for streamlined certification readiness.
- Vulnerability Triage Assistant — This tool helps security professionals validate DAST and SAST findings using OWASP methodology to prioritize critical vulnerabilities and reduce alert fatigue.
- ISMS Audit Assistant — This skill helps security professionals conduct ISO 27001 ISMS audits, assess controls, and prepare for certification.
- Security Incident Responder — This skill classifies, triages, and manages declared security incidents, determining severity, escalation paths, and initiating forensic evidence collection for security teams.
- Elastic Threat Hunter — This skill enables SOC analysts to perform proactive threat hunting in Elastic SIEM using KQL and EQL to identify sophisticated threats evading automated detection.
- Incident Ticketing Integrator — Automates incident lifecycle management by connecting SIEM alerts to ticketing platforms, helping SOC teams streamline tracking, escalation, and compliance documentation.
- ISO 27001 Compliance Manager — This tool assists HealthTech and MedTech professionals in implementing ISO 27001 ISMS frameworks, conducting risk assessments, and maintaining rigorous cybersecurity compliance standards.
- Network Traffic Forensics — This tool analyzes network traffic captures and flow data to help incident responders identify adversary activity like command-and-control, lateral movement, and data exfiltration.
- Timesketch Timeline Builder — This tool helps incident responders and forensic analysts build collaborative, searchable timelines by normalizing and analyzing multi-source event data for effective investigation.
- Malware Incident Communicator — This tool generates structured communication templates for malware incidents to assist cybersecurity teams in managing stakeholder notifications, executive briefings, and regulatory disclosures effectively.
- NoPac Privilege Escalator — This tool automates the NoPac exploit chain to help security professionals escalate standard domain user privileges to Domain Admin in Active Directory.
- Zerologon Exploitation Tool — This tool automates the exploitation of the Zerologon vulnerability to assist security professionals in testing domain controller resilience against privilege escalation.
- Zero Trust Identity — This skill helps security engineers implement phishing-resistant MFA and risk-based conditional access to strengthen identity verification within zero trust architectures.
- Network Segmentation Architect — Design and implement secure network segmentation using firewall zones and microsegmentation to restrict lateral movement and enforce least-privilege access for security engineers.
- STIX Threat Intelligence — This tool enables cybersecurity professionals to create, validate, and share standardized STIX 2.1 threat intelligence objects using the Python stix2 library.
- Phishing Incident Investigator — This tool assists security analysts by automating the investigation, analysis, and containment of reported phishing emails using integrated SOC platforms and sandbox tools.
- YARA Threat Hunter — This tool enables security analysts to proactively identify malware and indicators of compromise by scanning files and memory dumps using custom YARA rules.
- UEFI Firmware Auditor — This tool utilizes Intel CHIPSEC to assess platform firmware security, identify hardware vulnerabilities, and analyze low-level configurations for cybersecurity professionals and researchers.
- QRadar Correlation Assistant — This tool helps SOC analysts and detection engineers correlate security events and tune detection logic within IBM QRadar to identify multi-stage attacks.
- S7comm Security Analyzer — This tool helps cybersecurity professionals identify vulnerabilities and potential attack vectors within Siemens S7comm and S7CommPlus industrial control system protocols.
- Security Incident Triage — This tool helps SOC analysts classify and prioritize security incidents by applying structured IR playbooks to streamline response team assignment and procedures.
- Security Incident Triage — This tool assists security analysts by classifying and prioritizing active security incidents using industry-standard frameworks to streamline initial response and escalation.
- Splunk Security Analyst — This skill assists security professionals in investigating incidents by performing log correlation, anomaly detection, and complex SPL query generation within Splunk Enterprise Security.
- Zero Trust DNS — This skill helps security engineers implement NextDNS to enforce encrypted resolution, threat intelligence blocking, and granular policy control across organizational network endpoints.
- Vulnerability Prioritization Assistant — This tool helps security professionals prioritize CVE remediation by integrating CISA KEV data with EPSS and CVSS scores for risk-based decision making.
- Phishing Certificate Monitor — This tool monitors Certificate Transparency logs to help security teams detect phishing domains, lookalike certificates, and unauthorized issuance targeting their organization.
- Malware Covert Channel Analyzer — This tool detects and analyzes hidden network communication channels in malware to help cybersecurity analysts identify C2 traffic and data exfiltration attempts.
- Typosquatting Domain Analyzer — This tool helps security professionals identify potential brand impersonation and phishing threats by detecting registered lookalike domains using advanced permutation analysis.
- Windows Threat Analyst — This skill helps SOC analysts and incident responders detect Windows-based threats by executing MITRE-mapped SPL queries against Splunk event logs.
- Ransomware Response Architect — Generates structured ransomware incident response playbooks aligned with CISA and NIST frameworks to assist security teams in enhancing their organizational preparedness.
- Ransomware Response Playbook — This skill generates structured incident response playbooks for SOC teams to effectively detect, contain, and recover from ransomware attacks using industry-standard frameworks.
- Splunk Threat Enrichment — Automate threat intelligence enrichment pipelines within Splunk Enterprise Security to help SOC analysts correlate indicators of compromise and accelerate incident response.
- Threat Intelligence Integrator — Automates the ingestion, normalization, and distribution of threat intelligence feeds into security platforms to enable real-time IOC matching for SOC teams.
- Vulnerability SLA Tracker — This tool helps security teams measure remediation performance by tracking vulnerability aging and enforcing severity-based SLA timelines to improve organizational risk management.
- Vulnerability Management Orchestrator — Automates vulnerability scanning, prioritization, and remediation tracking workflows to help SOC teams secure infrastructure and manage security risks effectively.
- Volatile Evidence Collector — This tool assists incident responders in systematically capturing volatile forensic data from compromised systems to preserve critical evidence before it is lost.
- NTLM Relay Detector — This tool helps security analysts identify NTLM relay attacks by correlating Windows security events to detect suspicious authentication patterns and protocol downgrades.
- Malware Eradication Specialist — This skill assists incident responders in systematically removing malware, backdoors, and persistence mechanisms to ensure complete system restoration and prevent future re-infection.
- SIEM Detection Engineer — This skill assists SOC teams in designing, testing, and deploying formalized detection rules mapped to MITRE ATT&CK frameworks across various SIEM platforms.
- Vulnerability SLA Monitor — This tool automates vulnerability remediation tracking and escalation workflows to help security teams maintain compliance and meet critical security service level agreements.
- Insider Threat Investigator — This tool assists SOC analysts in investigating potential insider threats by correlating SIEM, DLP, and HR data to identify unauthorized activities and policy violations.
- Authenticated Vulnerability Scanner — This tool performs deep security inspections using system credentials to help security professionals identify software vulnerabilities and misconfigurations with high accuracy.
- Power Grid Cybersecurity Assessment — This skill assists security professionals in conducting comprehensive cybersecurity assessments of power grid infrastructure, ensuring NERC CIP compliance and robust protection for critical energy systems.
- Threat Infrastructure Tracker — This tool monitors and maps adversary-controlled assets like C2 servers and phishing domains to assist cybersecurity analysts in proactive threat intelligence operations.
- HIPAA Compliance Implementation — This skill helps developers implement HIPAA compliance in healthcare applications, covering PHI handling, encryption, audit logging, and access controls.
- AI Pentesting Agent — Automate security testing with PentAGI, an AI-powered penetration testing agent that helps users deploy autonomous vulnerability scanners and self-hosted security platforms.
- Npm Malware Analyzer — This tool helps security engineers identify malicious npm packages by detecting dangerous install-script behaviors, exfiltration attempts, and potential supply-chain threats.
- Threat Intelligence Navigator — This tool helps cybersecurity analysts visualize adversary TTPs and identify detection gaps by generating layered heatmaps using the MITRE ATT&CK Navigator framework.
- Linux Audit Investigator — This tool assists security professionals by analyzing Linux audit logs to detect unauthorized access, privilege escalation, and suspicious system activity for incident response.
- Threat Actor Analyst — This tool helps cybersecurity professionals map threat actor behaviors to the MITRE ATT&CK framework to identify detection gaps and generate actionable intelligence reports.
- Incident Response Dashboard — Creates real-time incident response dashboards in SIEM platforms to provide SOC analysts and leadership with critical situational awareness during active security incidents.
- Threat Actor Profiler — This tool aggregates open-source intelligence to help cybersecurity analysts document adversary motivations, infrastructure, and tactics for proactive organizational defense.
- NERC CIP Compliance — This skill assists power grid operators in implementing and maintaining NERC CIP cybersecurity controls to ensure regulatory compliance for critical infrastructure systems.
- Splunk SOAR Automation — This skill helps SOC teams automate alert triage, incident response, and security tool orchestration to reduce manual workload and improve response consistency.
- XSOAR Playbook Orchestrator — This tool helps security operations teams automate incident response workflows within Cortex XSOAR to significantly reduce manual effort and response times.
- STIX TAXII Integrator — This skill assists cybersecurity professionals in implementing and configuring STIX 2.1 and TAXII 2.1 feed consumers to automate cyber threat intelligence ingestion.
- Threat Intelligence Lifecycle — This skill guides cybersecurity professionals in establishing a structured intelligence lifecycle to transform raw data into actionable insights for organizational decision-making.
- Zero Trust Implementation — This skill assists security engineers in deploying HashiCorp Boundary to establish identity-aware, zero-trust infrastructure access with dynamic credential management and session monitoring.
- Dark Web Monitor — This tool systematically scans hidden services and underground forums to help cybersecurity professionals identify and mitigate potential threats targeting their organization's digital assets.
- SIEM Log Onboarding — This skill assists security analysts in systematically integrating and normalizing new data sources into SIEM platforms to ensure comprehensive security visibility and monitoring.
- Mobile Certificate Bypass — This skill enables security professionals to intercept and analyze encrypted traffic by bypassing SSL/TLS certificate pinning in Android and iOS mobile applications.
- OT Network Security Assessor — This skill assists cybersecurity professionals in conducting comprehensive security assessments of industrial control systems and OT network architectures to identify critical vulnerabilities.
- OT Vulnerability Scanner — This skill enables cybersecurity professionals to safely identify vulnerabilities in OT and ICS environments using non-disruptive scanning techniques to protect critical industrial infrastructure.
- Sector Threat Assessment — This tool analyzes industry-specific threat actors, attack vectors, and vulnerabilities to provide actionable intelligence for organizational risk management and security prioritization.
- Splunk Alert Triage — This skill assists SOC analysts in efficiently classifying, investigating, and documenting security alerts within Splunk Enterprise Security to streamline incident response workflows.
- Security Audit Agent — This skill conducts security audits, threat modeling, and provides hardening recommendations for software and infrastructure projects, aiding security professionals.
- Robotics Security Hardening — This skill hardens robotic systems by implementing security best practices for ROS2, DDS, network segmentation, and secrets management.
- Jetson Memory Auditor — This tool provides precise DRAM and NvMap usage snapshots to help developers verify memory reclamation and troubleshoot resource management issues on Jetson devices.
- FIDO2 Authentication Architect — This skill assists developers in implementing secure FIDO2 and WebAuthn hardware authentication flows to enable robust, phishing-resistant passwordless login systems for users.
- LLM Security Guardrails — This tool secures LLM applications by implementing input and output validation pipelines to prevent prompt injection, data leakage, and toxic content generation.
- Oil Gas Cybersecurity Assessment — This skill assists security professionals in conducting comprehensive cybersecurity assessments for oil and gas industrial control systems and critical infrastructure facilities.
- AI Security Assessor — Assess AI/ML systems for vulnerabilities like prompt injection, model inversion, and data poisoning, aiding security engineers and AI developers.
- Academic Writing Pipeline — This multi-agent system assists researchers by automating the drafting, revision, and formatting of academic papers across various disciplines and citation styles.
- Subdomain Discovery Tool — Subfinder discovers subdomains for a target domain using passive enumeration, aiding security professionals and developers in attack surface mapping.
- CLAUDE.md Optimizer — This skill audits and improves CLAUDE.md files within a repository, ensuring optimal project context for Claude Code and aiding developers.