Vibe Index
๐ŸŽฏ

analyzing-network-covert-channels-in-malware

๐ŸŽฏSkill

from mukul975/anthropic-cybersecurity-skills

VibeIndex|
What it does
|

Detects and analyzes covert communication channels used by malware, including DNS tunneling, ICMP exfiltration, and steganographic HTTP, using Python-based entropy analysis and traffic pattern detection to identify C2 infrastructure and data exfiltration attempts.

๐Ÿ“ฆ

Same repository

mukul975/anthropic-cybersecurity-skills(748 items)

analyzing-network-covert-channels-in-malware

Installation

Vibe Index InstallInstalls to .claude/skills/
npx vibeindex add mukul975/anthropic-cybersecurity-skills --skill analyzing-network-covert-channels-in-malware
skills.sh Installโš  Installs to .agents/skills/
npx skills add mukul975/anthropic-cybersecurity-skills --skill analyzing-network-covert-channels-in-malware
Manual InstallCopy SKILL.md content and save to the path below
~/.claude/skills/analyzing-network-covert-channels-in-malware/SKILL.md

SKILL.md

191Installs
-
AddedMar 15, 2026
View on GitHubBack to Skills

More from this repository10

๐ŸŽฏ
acquiring-disk-image-with-dd-and-dcfldd๐ŸŽฏSkill

Part of the largest open-source cybersecurity skills library with 754 skills across 26 security domains. Provides digital forensics guidance on acquiring disk images using dd and dcfldd tools for incident response and forensic investigations.

๐ŸŽฏ
analyzing-api-gateway-access-logs๐ŸŽฏSkill

A cybersecurity skill for analyzing API gateway access logs, part of the Anthropic Cybersecurity Skills library of 754 production-grade skills across 26 security domains with MITRE ATT&CK and NIST framework mappings.

๐ŸŽฏ
analyzing-cyber-kill-chain๐ŸŽฏSkill

Analyzes intrusion activity against the Lockheed Martin Cyber Kill Chain framework to identify completed attack phases, evaluate defense successes/failures, and recommend controls for earlier attack interruption, with MITRE ATT&CK integration.

๐ŸŽฏ
analyzing-email-headers-for-phishing-investigation๐ŸŽฏSkill

Parses and analyzes email headers to trace the origin of phishing emails, verify sender authenticity, and identify spoofing through SPF, DKIM, and DMARC validation with DNS lookup tools and threat intelligence integration.

๐ŸŽฏ
analyzing-android-malware-with-apktool๐ŸŽฏSkill

A cybersecurity skill teaching AI agents to analyze Android malware using APKTool for reverse engineering APK files, examining manifests, decompiled code, and identifying malicious behaviors.

๐ŸŽฏ
analyzing-browser-forensics-with-hindsight๐ŸŽฏSkill

A digital forensics skill for analyzing Chromium-based browser artifacts (Chrome, Edge, Brave, Opera) using Hindsight to extract and correlate browsing history, downloads, cookies, autofill data, saved passwords, and extensions into unified forensic timelines.

๐ŸŽฏ
analyzing-docker-container-forensics๐ŸŽฏSkill

Guides investigating compromised Docker containers by analyzing images, layers, volumes, logs, and runtime artifacts to identify malicious activity, container escape attempts, and security misconfigurations.

๐ŸŽฏ
analyzing-cloud-storage-access-patterns๐ŸŽฏSkill

A cybersecurity skill from the Anthropic Cybersecurity Skills library that guides AI agents in analyzing cloud storage access patterns to identify unauthorized access, data exfiltration attempts, and misconfigured permissions across cloud environments.

๐ŸŽฏ
analyzing-certificate-transparency-for-phishing๐ŸŽฏSkill

A cybersecurity skill from a 754-skill library that teaches AI agents to analyze Certificate Transparency logs to detect and investigate phishing infrastructure.

๐ŸŽฏ
analyzing-active-directory-acl-abuse๐ŸŽฏSkill

Detects dangerous ACL misconfigurations in Active Directory using ldap3 to identify GenericAll, WriteDACL, and WriteOwner abuse paths for security investigations.