Stats
Actions
Tags
Analyzes threat landscape from MISP using PyMISP: pulls events by threat level/date, computes IOC/attribute distributions, identifies top threat actors/MITRE techniques/galaxy clusters/tags, generates time-series reports.
How this skill is triggered — by the user, by Claude, or both
Slash command
/cybersecurity-skills-zh:analyzing-threat-landscape-with-mispThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
1. 安装依赖:`pip install pymisp`
pip install pymisppython scripts/agent.py --misp-url https://misp.local --api-key YOUR_KEY --days 90 --output landscape_report.json
分析周期: 最近 90 天
分析事件数: 1,247
主要威胁级别: 高(43%)
主要属性类型: ip-dst(31%)、domain(22%)、sha256(18%)
主要 MITRE 技术: T1566 钓鱼(89 个事件)
主要威胁行为者: APT28(34 个事件)
npx claudepluginhub killvxk/cybersecurity-skills-zhQueries MISP events, attribute distributions, threat actor galaxy clusters, and tag trends over time to generate threat landscape reports using PyMISP.
Analyze the threat landscape using MISP by querying event statistics, attribute distributions, threat actor galaxy clusters, and tag trends over time. Uses PyMISP.
Analyzes threat landscape using MISP via PyMISP: queries event statistics, IOC attribute distributions, top threat actors/malware families, tag trends over time. Generates reports for SOC threat hunting.