Is this skill appropriate for standard IT networks?

No, this skill is specifically tailored for Operational Technology (OT) and Industrial Control System (ICS) environments.

What industrial protocols does this skill help monitor?

This skill facilitates the monitoring of over 600 OT-specific protocols, including Modbus, DNP3, S7comm, OPC UA, and Ethernet/IP.

Which threat groups can this skill help detect?

The skill is designed to configure detection for major ICS threat groups including VOLTZITE, CHERNOVITE, GRAPHITE, and BAUXITE.

Does this skill help with SIEM integration?

Yes, it provides configuration templates and scripts to forward Dragos OT alerts to enterprise SIEMs like Splunk and Azure Sentinel.

Dragos OT Security Monitoring

Name: Dragos OT Security Monitoring
Author: mukul975

bymukul975

•

4,121

•

Security & Testing

Deploys and configures the Dragos Platform to monitor industrial control systems and detect advanced OT-specific threats.

This skill provides specialized guidance for implementing the Dragos Platform within industrial environments to achieve comprehensive network visibility and threat detection. It enables security teams to leverage 600+ industrial protocol parsers, intelligence-driven analytics, and asset discovery tools to defend against ICS-specific threat groups like VOLTZITE and CHERNOVITE. It includes structured workflows for sensor deployment validation, SIEM integration, and the configuration of threat intelligence Knowledge Packs, ensuring a robust security posture for critical infrastructure and SCADA networks.

Key Features

01Automated asset discovery and vulnerability management workflows

024,121 GitHub stars

03SIEM integration scripts for Splunk, Microsoft Sentinel, and QRadar

04Threat intelligence integration for ICS-specific threat group detection

05Configuration of 600+ industrial protocol parsers including Modbus and DNP3

06Deployment validation for Dragos OT sensors and SiteStore connectivity

Use Cases

01Detecting reconnaissance and lateral movement within critical infrastructure networks

02Building an OT Security Operations Center (SOC) with purpose-built industrial tooling

03Establishing visibility and monitoring for legacy SCADA and PLC environments

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills implementing-dragos-platform-for-ot-monitoring

For use in Claude.ai and ChatGPT

Key Features

01Automated asset discovery and vulnerability management workflows

024,121 GitHub stars

03SIEM integration scripts for Splunk, Microsoft Sentinel, and QRadar

04Threat intelligence integration for ICS-specific threat group detection

05Configuration of 600+ industrial protocol parsers including Modbus and DNP3

06Deployment validation for Dragos OT sensors and SiteStore connectivity

Use Cases

01Detecting reconnaissance and lateral movement within critical infrastructure networks

02Building an OT Security Operations Center (SOC) with purpose-built industrial tooling

03Establishing visibility and monitoring for legacy SCADA and PLC environments

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills implementing-dragos-platform-for-ot-monitoring

For use in Claude.ai and ChatGPT