
from Anthropic Cybersecurity Skills23,316
Guided workflow to identify, validate, and document reflected, stored, and DOM-based XSS using Burp Suite (scanner, repeater, intruder, DOM Invader).
Practical, step-by-step guidance for security testers to find and validate cross-site scripting (XSS) vulnerabilities using Burp Suite Professional. Covers proxy setup, mapping, Repeater-based reflection checks, Intruder for stored XSS, DOM Invader for client-side issues, CSP analysis, bypass techniques, and reporting reproducible findings. Includes payload examples and remediation recommendations.
Use this skill during authorized penetration tests, bug bounty assessments, or vulnerability validation tasks when you need to confirm XSS findings, assess CSP effectiveness, or perform thorough client- and server-side XSS analysis. Not for unauthorized scanning.
Inferred compatibility with security-focused agent tooling and platforms that support CLI/scripted workflows (e.g., Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI).
This skill has not been reviewed by our automated audit pipeline yet.
Analyzing Ransomware Leak Site Intelligence
Collect and analyze ransomware data-leak site (DLS) postings to extract victim, group, sector, and timeline intelligence for threat hunting and risk assessment.
Evaluating Threat Intelligence Platforms
Guides procurement, evaluation, and proof-of-concept testing for Threat Intelligence Platforms (MISP, OpenCTI, ThreatConnect, Anomali, EclecticIQ) based on inte
Performing Threat Modeling with OWASP Threat Dragon
Use OWASP Threat Dragon to create data-flow diagrams, apply STRIDE/LINDDUN threat classifications, and generate threat-model reports to guide secure design revi
Hunting for Cobalt Strike Beacons
Detect Cobalt Strike beacon network activity using TLS certificate signatures, JA3/JA3S/JARM fingerprints, HTTP profile matching, and timing analysis in Zeek/Su
Conducting Domain Persistence with DCSync
Guided procedures to identify DCSync-capable accounts and extract Active Directory credential hashes (KRBTGT, admin) for authorized red-team testing and validat
Testing for JSON Web Token (JWT) Vulnerabilities
Techniques and checks to find and exploit common JWT misconfigurations (alg none, alg confusion, kid/JKU injection, weak secrets).
NIST SP 800-30 Cyber Risk Assessment
Conducts comprehensive cybersecurity risk assessments using the NIST SP 800-30 Rev 1 methodology to identify threats, vulnerabilities, and impact.