安全研究/授权测试 · Python
mukul975/Anthropic-Cybersecurity-Skills
817 structured cybersecurity skills for AI agents · Mapped to 6 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND, NIST AI RMF & MITRE F3 (Fight Fraud) · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platforms · 29 security domains · Apache 2.0。
项目解读
817 structured cybersecurity skills for AI agents · Mapped to 6 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND, NIST AI RMF & MITRE F3 (Fight Fraud) · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platforms · 29 security domains · Apache 2.0。 主题标签包括 ai-agents、claude-code、cloud-security、cybersecurity、devsecops、ethical-hacking、incident-response、infosec。 README 重点章节包括:Anthropic Cybersecurity Skills、The largest open-source cybersecurity skills library for AI agents、Give any AI agent the security skills of a senior analyst、Six frameworks, one skill library、🆕 MITRE Fight Fraud Framework (F3) — 94 fraud-relevant skills。
README / GitHub 亮点
- GitHub 描述:817 structured cybersecurity skills for AI agents · Mapped to 6 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND, NIST AI RMF & MITRE F3 (Fight Fraud) · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platforms · 29 security domains · Apache 2.0。
- Get Started · What's Inside · Frameworks · Platforms · Contributing。
- ⚠️ Community Project — This is an independent, community-created project. Not affiliated with Anthropic PBC.
- No other open-source skills library maps every skill to all of these frameworks. One skill, six compliance checkboxes.
适用场景
适合评估 AI 应用、智能体工作流、模型工具链、RAG/提示词工程或 AI 辅助开发场景。
采用前核查
采用前仍需核查许可证、维护节奏、issue 质量、release 记录和生产适配成本。
README 摘要
817 production-grade cybersecurity skills · 29 security domains · 6 framework mappings · 26+ AI platforms Get Started · What's Inside · Frameworks · Platforms · Contributing ⚠️ Community Project — This is an independent, community-created project. Not affiliated with Anthropic PBC. 🔐 Authorized & lawful use only. This library includes offensive and dual-use techniques (e.g. red-team C2, phishing simulation, exploitation) intended for authorized penetration testing, security research, defense, and educat…