Stats
Actions
Tags
From cybersecurity-skills
Deploys OpenRASP agents in Java/Python apps to detect and block SQLi, XSS, RCE, and other runtime attacks with near-zero false positives. Useful for production security hardening and compliance.
How this skill is triggered — by the user, by Claude, or both
Slash command
/cybersecurity-skills:implementing-runtime-application-self-protectionThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Runtime Application Self-Protection (RASP) instruments application code at runtime to detect and block attacks by examining actual execution context rather than relying solely on network traffic patterns. Unlike WAFs that inspect HTTP requests externally, RASP agents intercept dangerous operations (SQL queries, file operations, command execution, deserialization) at the function level inside th...
Runtime Application Self-Protection (RASP) instruments application code at runtime to detect and block attacks by examining actual execution context rather than relying solely on network traffic patterns. Unlike WAFs that inspect HTTP requests externally, RASP agents intercept dangerous operations (SQL queries, file operations, command execution, deserialization) at the function level inside the application, achieving near-zero false positives. This skill covers deploying OpenRASP for Java applications, configuring detection policies for OWASP Top 10 attacks, tuning alerting thresholds, and integrating RASP telemetry with SIEM platforms.
Install the RASP agent into the application server runtime using JVM agent attachment for Java or middleware hooks for Python.
Define detection rules for SQL injection, command injection, SSRF, path traversal, XXE, and deserialization attacks with block or monitor actions.
Run the agent in monitor mode during normal operations to establish baseline behavior and tune policies to reduce false positives before switching to block mode.
Forward RASP alerts to the SIEM for correlation with WAF, IDS, and authentication events to build comprehensive attack timelines.
JSON report containing RASP policy audit results, detected attack attempts with stack traces, blocked requests summary, and coverage assessment against OWASP Top 10.
npx claudepluginhub mukul975/anthropic-cybersecurity-skills --plugin cybersecurity-skillsDeploys OpenRASP agents in Java/Python apps to detect and block SQLi, XSS, RCE, and other runtime attacks with near-zero false positives. Useful for production security hardening and compliance.
Deploys OpenRASP agents to detect and block attacks from within Java and Python runtime environments, covering OWASP Top 10 and SIEM integration.
Deploys OpenRASP RASP agents to detect and block runtime attacks like SQLi, XSS, RCE in Java (Spring Boot, Tomcat) and Python (Flask, Django) web apps, with policy config and SIEM integration.