Add new skill
This Claude Code skill provides a template structure for contributing new cybersecurity skills to the Anthropic Cybersecurity Skills repository. Use it when adding novel security capabilities by filling in standardized fields including skill name, domain classification, description, relevant MITRE ATT&CK technique mappings, applicable NIST Cybersecurity Framework functions, and the practical security problem the skill addresses for practitioners.
git clone --depth 1 https://github.com/mukul975/Anthropic-Cybersecurity-Skills /tmp/add-new-skill && cp -r /tmp/add-new-skill/.github/ISSUE_TEMPLATE/new- ~/.claude/skills/add-new-skillnew-skill.md
## Skill name (kebab-case) <!-- e.g., detecting-lateral-movement-in-azure --> ## Domain / Subdomain <!-- e.g., cybersecurity / threat-hunting --> ## Description <!-- One sentence describing what this skill does --> ## MITRE ATT&CK techniques <!-- e.g., T1021.001, T1078.004 --> ## NIST CSF function <!-- Identify, Protect, Detect, Respond, or Recover --> ## Why is this skill needed? <!-- What problem does it solve for security practitioners? -->
Create forensically sound bit-for-bit disk images using dd and dcfldd
Detect dangerous ACL misconfigurations in Active Directory using ldap3
Perform static analysis of Android APK malware samples using apktool
Parses API Gateway access logs (AWS API Gateway, Kong, Nginx) to detect
Analyze advanced persistent threat (APT) group techniques using MITRE
Queries Azure Monitor activity logs and sign-in logs via azure-monitor-query
Analyzes bootkit and advanced rootkit malware that infects the Master