Vibe Index
🎯

building-soc-escalation-matrix

🎯Skill

from mukul975/anthropic-cybersecurity-skills

VibeIndex|
What it does
|

A cybersecurity skill for designing SOC escalation matrices, from the largest open-source cybersecurity skills library with 754 skills across 26 security domains. It supports five industry frameworks and works with Claude Code, Cursor, Codex, and other AI agents.

📦

Same repository

mukul975/anthropic-cybersecurity-skills(748 items)

building-soc-escalation-matrix

Installation

Vibe Index InstallInstalls to .claude/skills/
npx vibeindex add mukul975/anthropic-cybersecurity-skills --skill building-soc-escalation-matrix
skills.sh Install⚠ Installs to .agents/skills/
npx skills add mukul975/anthropic-cybersecurity-skills --skill building-soc-escalation-matrix
Manual InstallCopy SKILL.md content and save to the path below
~/.claude/skills/building-soc-escalation-matrix/SKILL.md

SKILL.md

110Installs
-
AddedMar 17, 2026
View on GitHubBack to Skills

More from this repository10

🎯
acquiring-disk-image-with-dd-and-dcfldd🎯Skill

Part of the largest open-source cybersecurity skills library with 754 skills across 26 security domains. Provides digital forensics guidance on acquiring disk images using dd and dcfldd tools for incident response and forensic investigations.

🎯
analyzing-api-gateway-access-logs🎯Skill

A cybersecurity skill for analyzing API gateway access logs, part of the Anthropic Cybersecurity Skills library of 754 production-grade skills across 26 security domains with MITRE ATT&CK and NIST framework mappings.

🎯
analyzing-cyber-kill-chain🎯Skill

Analyzes intrusion activity against the Lockheed Martin Cyber Kill Chain framework to identify completed attack phases, evaluate defense successes/failures, and recommend controls for earlier attack interruption, with MITRE ATT&CK integration.

🎯
analyzing-email-headers-for-phishing-investigation🎯Skill

Parses and analyzes email headers to trace the origin of phishing emails, verify sender authenticity, and identify spoofing through SPF, DKIM, and DMARC validation with DNS lookup tools and threat intelligence integration.

🎯
analyzing-android-malware-with-apktool🎯Skill

A cybersecurity skill teaching AI agents to analyze Android malware using APKTool for reverse engineering APK files, examining manifests, decompiled code, and identifying malicious behaviors.

🎯
analyzing-browser-forensics-with-hindsight🎯Skill

A digital forensics skill for analyzing Chromium-based browser artifacts (Chrome, Edge, Brave, Opera) using Hindsight to extract and correlate browsing history, downloads, cookies, autofill data, saved passwords, and extensions into unified forensic timelines.

🎯
analyzing-docker-container-forensics🎯Skill

Guides investigating compromised Docker containers by analyzing images, layers, volumes, logs, and runtime artifacts to identify malicious activity, container escape attempts, and security misconfigurations.

🎯
analyzing-active-directory-acl-abuse🎯Skill

Detects dangerous ACL misconfigurations in Active Directory using ldap3 to identify GenericAll, WriteDACL, and WriteOwner abuse paths for security investigations.

🎯
analyzing-certificate-transparency-for-phishing🎯Skill

A cybersecurity skill from a 754-skill library that teaches AI agents to analyze Certificate Transparency logs to detect and investigate phishing infrastructure.

🎯
analyzing-cloud-storage-access-patterns🎯Skill

A cybersecurity skill from the Anthropic Cybersecurity Skills library that guides AI agents in analyzing cloud storage access patterns to identify unauthorized access, data exfiltration attempts, and misconfigured permissions across cloud environments.