blue-team-defense--hardening

Solid

System hardening, detection engineering, security baseline monitoring, patch management, defense-in-depth architecture, and security posture improvement

Data & Documents 47 stars 3 forks Updated today MIT

Install

View on GitHub

Quality Score: 89/100

Stars 20%
56
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
80
License 10%
100
Description 5%
100

Skill Content

# Blue Team Defense & Hardening ## Purpose Enable Claude to assist defenders with comprehensive security hardening, detection rule engineering, security baseline establishment, patch management, and security architecture review. Claude directly analyzes provided configurations, scripts, and system state — then produces specific hardening commands, detection rules, and improvement plans. --- ## Activation Triggers This skill activates when the user asks about: - Hardening Linux (Ubuntu, RHEL, CentOS, Debian) servers - Hardening Windows Server or Windows workstations (CIS Benchmarks) - Creating detection rules (Sigma, Splunk, KQL, YARA, Snort/Suricata) - Security baseline definition and monitoring - Patch management strategy and prioritization - Security architecture review (defense-in-depth, zero trust) - Implementing Sysmon, auditd, or Windows audit policy - Hardening SSH, nginx, Apache, or database configurations - Network security controls and microsegmentation - Endpoint protection (EDR, HIPS) configuration guidance - Security posture improvement after a red team or pentest --- ## Prerequisites ```bash pip install pyyaml jinja2 requests ``` **Tools used in this skill:** - `Sysmon` — Windows endpoint telemetry (SwiftOnSecurity config recommended) - `auditd` — Linux audit daemon - `Lynis` — Linux security auditing tool - `OpenSCAP / oscap` — CIS/STIG compliance scanning - `fail2ban` — SSH and service brute-force protection - `CIS-CAT` — CIS Benchmark compliance tool...

Details

Author
Masriyan
Repository
Masriyan/Claude-Code-CyberSecurity-Skill
Created
3 months ago
Last Updated
today
Language
Python
License
MIT

Similar Skills

Semantically similar based on skill content — not just same category

DevOps & Infrastructure Solid

cloud-security--container-hardening

AWS/Azure/GCP security auditing, container and Kubernetes hardening, Infrastructure as Code scanning, and cloud compliance assessment

47 Updated today
Masriyan
DevOps & Infrastructure Listed

security-hardening

Reduces attack surface across OS, container, cloud, network, and database layers using CIS Benchmarks and zero-trust principles. Use when hardening production infrastructure, meeting compliance requirements, or implementing defense-in-depth security.

368 Updated 5 months ago
ancoleman
Data & Documents Solid

red-team-operations--engagement-planning

Authorized red team engagement planning, C2 architecture design, attack methodology, lateral movement strategy, OPSEC, and professional reporting

47 Updated today
Masriyan
DevOps & Infrastructure Featured

hardening-linux-endpoint-with-cis-benchmark

Hardens Linux endpoints using CIS Benchmark recommendations for Ubuntu, RHEL, and CentOS to reduce attack surface, enforce security baselines, and meet compliance requirements. Use when deploying new Linux servers, remediating audit findings, or establishing security baselines for Linux infrastructure. Activates for requests involving Linux hardening, CIS benchmarks for Linux, server security baselines, or Linux configuration compliance.

12,642 Updated today
mukul975
DevOps & Infrastructure Listed

security-scanning-security-hardening

Coordinate multi-layer security scanning and hardening across application, infrastructure, and compliance controls.

335 Updated today
aiskillstore