cyber-ir-playbook

Build incident response timelines and report packs from event logs. Use for detection-to-recovery reporting, phase tracking, and stakeholder-ready incident summaries.

作者: admin | 来源: ClawHub

源自

ClawHub

版本

V 0.1.0

安全检测

已通过

326
下载量

0
收藏

概述

安装方式

版本历史

cyber-ir-playbook

# Cyber IR Playbook ## Overview Convert incident events into a standardized response timeline and phase-based report. ## Workflow 1. Ingest incident events with timestamps. 2. Classify events into detection, containment, eradication, recovery, or post-incident phases. 3. Build ordered timeline and summarize current phase completion. 4. Produce a report artifact for internal and executive audiences. ## Use Bundled Resources - Run `scripts/ir_timeline_report.py` to generate a deterministic timeline report. - Read `references/ir-phase-guide.md` for phase mapping guidance. ## Guardrails - Focus on defensive incident handling and post-incident learning. - Do not provide offensive exploitation instructions.

通过对话安装

该技能支持在以下平台通过对话安装：

OpenClaw WorkBuddy QClaw Kimi Claude

方式一：安装 SkillHub 和技能

帮我安装 SkillHub 和 cyber-ir-playbook-1776297054 技能

方式二：设置 SkillHub 为优先技能安装源

设置 SkillHub 为我的优先技能安装源，然后帮我安装 cyber-ir-playbook-1776297054 技能

通过命令行安装

skillhub install cyber-ir-playbook-1776297054

下载 Zip 包

⬇ 下载 cyber-ir-playbook v0.1.0

文件大小: 3.81 KB | 发布时间: 2026-4-16 18:40

v0.1.0 最新 2026-4-16 18:40

Initial release of cyber-ir-playbook.

- Generates incident response timelines and phase-based reports from event logs.
- Classifies events into detection, containment, eradication, recovery, or post-incident phases.
- Produces ordered incident timelines and stakeholder-ready summaries.
- Includes scripts and guides for report generation and phase mapping.
- Emphasizes defensive incident handling; avoids offensive exploitation content.