Initial incident intake & scoping

Name: Initial incident intake & scoping
Availability: InStock
Rating: 5 (259 reviews)
Author: tsale

by @tsale0 pulls

URLopenbooklet.com/s/initial-incident-intake--scoping

Pinnedopenbooklet.com/s/initial-incident-intake--scoping@1.0.0

APIGET /api/v1/skills/initial-incident-intake--scoping

First-hour intake checklist + questions that produce an actionable scope and evidence plan.

5 skills from this repotsale/awesome-dfir-skills

Initial incident intake & scopingviewing

analysing-attackskills/analysis/analysing-attack-skill/SKILL.md

Analyse Mitre ATT&CK tactics, techniques and sub-techniques. Use when performing analysis of threat detections, threat models, security risks or cyber threat intelligence

awesome-dfir-skillsskills/_templates/skill.md

malware-analysisskills/analysis/malware-analysis-tr/SKILL.md

Professional malware analysis workflow for PE executables and suspicious files. Triggers on file uploads with requests like "analyze this malware", "analyze this sample", "what does this executable do", "check this file for malware", or any request to examine suspicious files. Performs static analysis, threat intelligence triage, behavioral inference, and produces analyst-grade reports with reasoned conclusions.

osquery-query-helperskills/hunting/osquery-helper/SKILL.md

Help users write, validate, and troubleshoot osquery SQL queries using provided osquery table schemas as the authoritative source.

Auto-indexed from tsale/awesome-dfir-skills

Are you the author? Claim this skill to take ownership and manage it.