Analyze and guide security incident response, investigation, and remediation processes. Use when you need to handle security breaches, classify incidents, develop response playbooks, gather forensic evidence, or coordinate remediation efforts. Trigger with phrases like "security incident response", "ransomware attack response", "data breach investigation", "incident playbook", or "security forensics".
5.8
Rating
0
Installs
Security
Category
This skill provides a well-structured framework for security incident response with clear prerequisites, workflow steps, and references to external documentation. The description adequately conveys when to use the skill, and the modular structure with separate files for implementation details, errors, and examples is clean. However, the novelty score is moderate because much of this guidance (triaging, evidence preservation, containment) could be provided by a general-purpose CLI agent with security knowledge, though the structured playbook generation and script orchestration do add value. The skill would benefit from more specificity about what automated analysis or unique capabilities the scripts provide beyond standard incident response procedures.
jeremylongshore
Skill Author
Loading SKILL.md…
