chain-of-custody▌
2 indexed skills · max 10 per page
performing-disk-forensics-investigation
mukul975/Anthropic-Cybersecurity-Skills · performing-disk-forensics-investigation
Conducts disk forensics investigations using forensic imaging, file system analysis, artifact recovery, and timeline reconstruction to support incident response cases. Utilizes tools such as FTK Imager, Autopsy, and The Sleuth Kit for evidence acquisition, deleted file recovery, and artifact examination. Activates for requests involving disk forensics, hard drive analysis, forensic imaging, file recovery, evidence acquisition, or digital forensic investigation.
collecting-volatile-evidence-from-compromised-host
mukul975/Anthropic-Cybersecurity-Skills · collecting-volatile-evidence-from-compromised-host
Collect volatile forensic evidence from a compromised system following order of volatility, preserving memory, network connections, processes, and system state before they are lost.