MCP App StoreMCP App Store
from claude-skill-registry426
Guided procedures and tool-aware workflows for proactive threat hunting (IOCs, TTPs, SIEM queries) and producing triage reports.
Concrete threat-hunting playbook for security analysts and automated agents. It guides tool selection (remote vs local), iterative IOC and TTP searches, SIEM query construction, deep investigation steps, and final report or case creation. The skill contains procedural hunting loops for campaign/actor lookups, phase-based investigation (initial scans, deep context search), and synthesis for reporting or escalating to SOAR.
Use this skill when the user asks to 'hunt' for threats, investigate specific IOCs (IPs, domains, file hashes, URLs), validate suspected TTPs (MITRE ATT&CK techniques), or search for related SOAR cases. It's intended for environments with SIEM access and tools like udm_search/get_ioc_match or local equivalents.
Compatible with agents that can run security search tools and SIEM integrations (agents with remote search/tool access such as Claude Code or other Claude-based automation platforms).
IDOR hunting skill for bug bounty researchers — covers 5 IDOR patterns (sequential IDs, UUIDs, encoded IDs, multi-parameter, HTTP method confusion) with step-by-step workflow, bypass techniques, and a PoC report template. No bundled scripts; purely instructional/guidance content. Well-structured with cross-references to related security skills. The original GitHub source path returned 404 but the skill content was recoverable from a related directory in the same repo.
Source path mismatch: DB has 'hunt-google-mcp-security-5d866121' but the actual repo path is '10-idor-hunting'. Skill teaches offensive security testing but is clearly framed for authorized bug bounty work. Python code examples use placeholder cookies only. No dangerous patterns found. Solid instructional quality for its niche.
Uloop: Execute Dynamic Code
Run small C# snippets in the Unity Editor via the uloop CLI for editor automation tasks like prefab wiring, AddComponent flows, and scene edits—without writing
Bookmarklet Creation
Generates browser-executable JavaScript bookmarklets with strict formatting (IIFE wrapper, block comments) and provides ready-to-install links or installer inst
Overnight — Autonomous Long-Running Coding
Orchestrates long-running coding goals: decomposes objectives into atomic tasks, dispatches isolated worktree workers, verifies acceptance criteria, and merges
Bexio API (Swiss CRM & Invoicing)
Integrate and manage Bexio contacts, quotes, invoices, orders and products via the Bexio API. Useful for CRM and Swiss business document workflows.
Content Research Writer
A writing-partner skill that helps research, outline, draft, cite, and iteratively improve articles, tutorials, and thought pieces.
Agent Hierarchy Diagram
Generate visual hierarchy diagrams (ASCII, Mermaid, GraphML) that show agent roles, levels, and delegation for documentation and onboarding.
Review Pull Request
Automated, structured PR reviewer: gathers metadata, diffs, CI results, dependency changes and provides a concise verdict with testing and documentation recomme
Agent Ops — Testing Workflow
Guidance for designing, running, and analyzing test suites for agents: test isolation, execution patterns, and coverage-based enforcement.
libagent
Agent orchestration library for conversational AI — coordinates LLM completions, memory, tool execution, and multi-turn flows; useful for building chat agents a
Raindrop.io API
Manage Raindrop.io bookmarks, collections, tags and highlights via the Raindrop REST API with helper scripts and examples.
Reverse Engineer
Provides step-by-step guidance and best practices for binary reverse engineering: static analysis, dynamic tracing, disassembly, and documentation workflows for
Sandbox0 Integration
Guidance and templates for integrating Sandbox0 sandboxing into AI agents — CLI/SDK patterns, templates, volumes, network policy, and deployment choices.
CTF Write-up Generator
Generate a concise, reproducible submission-style CTF writeup with a one-path solution script, metadata, and a short checklist for fast verification.
Azure External Attack Surface Management
Provides expert guidance for Azure External Attack Surface Management (EASM): quotas, configuration, integrations, and exporting inventory to analytics platform
Node.js Best Practices
Guidelines and decision-making for Node.js architecture, runtime, async patterns, security, validation, and testing to inform framework and system choices.
radar — Smart Contract AST & Security Analysis
Multi-framework AST generator and static analysis tool for smart contracts (Rust/Anchor/Stylus and Solidity/Foundry) with a template DSL for writing detection r
Bash Pro
Defensive, production-grade Bash scripting patterns and CI/CD best practices: strict mode, safe argument parsing, testing with Bats, and tooling (ShellCheck/shf
Analyzing Ransomware Leak Site Intelligence
Collect and analyze ransomware data-leak site (DLS) posts to extract victim, group, sector and geographic trends for threat intelligence and proactive defense.