What external tools are required for this skill?

This skill utilizes industry-standard tools including Shodan, Maltego, SpiderFoot, and Recon-ng, many of which require their own API keys or licenses for full functionality.

What is OSINT in the context of this skill?

Open-Source Intelligence (OSINT) refers to the collection and analysis of data gathered from public or open sources—like WHOIS records, search engines, and certificate logs—to identify security threats.

Does this skill perform active vulnerability scanning?

No, this skill focuses on passive reconnaissance, which avoids sending packets directly to the target system to remain undetected and comply with legal boundaries unless active scanning is specifically authorized.

How does it help with phishing investigations?

It allows you to pivot from a single malicious domain to find related IP addresses, subdomains, and registration patterns that reveal the broader infrastructure used by a phishing campaign.

OSINT & Threat Intelligence Gathering

Name: OSINT & Threat Intelligence Gathering
Author: mukul975

bymukul975

•

4,121

•

セキュリティとテスト

Gathers and synthesizes open-source intelligence (OSINT) to identify threat actor infrastructure and malicious campaigns using passive reconnaissance techniques.

This skill empowers Claude to perform sophisticated open-source intelligence (OSINT) operations, specializing in the identification and synthesis of data regarding threat actors and malicious infrastructure. It provides structured workflows for passive reconnaissance, utilizing tools like Shodan and Maltego to map attack surfaces and discover hidden subdomains via certificate transparency logs without alerting targets. By automating the correlation of disparate data points such as ASN data, WHOIS records, and dark web mentions, it enables security professionals to rapidly enrich cyber threat intelligence (CTI) reports and conduct thorough pre-engagement assessments for authorized red team activities.

主な機能

01Dark web and paste site monitoring for leaked credentials

02Passive infrastructure mapping via DNS and WHOIS history

03Automated Shodan queries for internet-wide service discovery

04Certificate transparency log analysis for subdomain discovery

054,121 GitHub stars

06Graph-based link analysis workflows for Maltego

ユースケース

01Investigating external infrastructure associated with phishing campaigns

02Enriching threat actor profiles with publicly observable indicators and ASN data

03Conducting authorized attack surface discovery to identify external exposure

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills collecting-open-source-intelligence

For use in Claude.ai and ChatGPT

主な機能

01Dark web and paste site monitoring for leaked credentials

02Passive infrastructure mapping via DNS and WHOIS history

03Automated Shodan queries for internet-wide service discovery

04Certificate transparency log analysis for subdomain discovery

054,121 GitHub stars

06Graph-based link analysis workflows for Maltego

ユースケース

01Investigating external infrastructure associated with phishing campaigns

02Enriching threat actor profiles with publicly observable indicators and ASN data

03Conducting authorized attack surface discovery to identify external exposure

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills collecting-open-source-intelligence

For use in Claude.ai and ChatGPT