Can it generate detection signatures automatically?

Yes, the skill suggests YARA rules based on unique strings, file structures, and behaviors identified during the analysis process.

What platforms does the malware analysis skill support?

The skill is platform-agnostic and provides specialized analysis for Windows, macOS, Linux, and Android malware.

Does this skill provide MITRE ATT&CK mapping?

Yes, one of the core functions of the skill is to identify and list specific MITRE ATT&CK techniques related to the malware's capabilities.

What kind of indicators of compromise (IOCs) does it extract?

It extracts a wide range of technical artifacts including IP addresses, domains, registry keys, file paths, mutexes, and file hashes.

Malware Analysis Expert

Name: Malware Analysis Expert
Author: bdmorin

bybdmorin

•

보안 및 테스팅

Performs deep technical analysis of malicious software to extract indicators of compromise, behavioral patterns, and detection signatures.

This skill transforms Claude into a specialized malware analyst capable of dissecting suspicious files and reports across Windows, macOS, Linux, and Android platforms. By systematically extracting indicators of compromise (IOCs), mapping behaviors to the MITRE ATT&CK framework, and identifying potential pivot points, it provides security researchers with actionable intelligence. It streamlines the creation of technical summaries, detection strategies, and custom YARA rules, making it an essential tool for incident responders and threat hunters looking to accelerate their reverse engineering workflows.

주요 기능

01Comprehensive cross-platform support for Windows, macOS, Linux, and Android analysis

02Automated extraction of IOCs including IPs, domains, registry keys, and file paths

03Technical pivoting advice based on extracted hashes and infrastructure

04Deep mapping of malware behaviors to specific MITRE ATT&CK techniques

05Automated generation of suggested YARA rules for signature-based detection

061 GitHub stars

사용 사례

01Generating structured threat intelligence from raw static or dynamic analysis data

02Developing proactive detection rules and hunting queries for newly identified threats

03Rapidly triaging suspicious binaries and technical reports during incident response

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add bdmorin/the-no-shop analyze-malware

For use in Claude.ai and ChatGPT

주요 기능

01Comprehensive cross-platform support for Windows, macOS, Linux, and Android analysis

02Automated extraction of IOCs including IPs, domains, registry keys, and file paths

03Technical pivoting advice based on extracted hashes and infrastructure

04Deep mapping of malware behaviors to specific MITRE ATT&CK techniques

05Automated generation of suggested YARA rules for signature-based detection

061 GitHub stars

사용 사례

01Generating structured threat intelligence from raw static or dynamic analysis data

02Developing proactive detection rules and hunting queries for newly identified threats

03Rapidly triaging suspicious binaries and technical reports during incident response