Create your first TwinMind meeting transcription and AI summary.
Use when starting with TwinMind, testing your setup,
or learning basic transcription and summary patterns.
Trigger with phrases like "t...
0
AI 95
hunting-for-dns-tunneling-with-zeek
micsapp3/20/2026
Detect DNS tunneling and data exfiltration by analyzing Zeek dns.log for high-entropy subdomain queries, excessive query volume, long query lengths, and unusual DNS record types indicating covert chan...
0
AI 94
planning-with-files
micsapp3/20/2026
Implements Manus-style file-based planning to organize and track progress on complex tasks. Creates task_plan.md, findings.md, and progress.md. Use when asked to plan out, break down, or organize a mu...
0
AI 93
pi-planning-with-files
micsapp3/20/2026
Implements Manus-style file-based planning to organize and track progress on complex tasks. Creates task_plan.md, findings.md, and progress.md. Use when asked to plan out, break down, or organize a mu...
0
AI 93
hunting-advanced-persistent-threats
micsapp3/20/2026
Proactively hunts for Advanced Persistent Threat (APT) activity within enterprise environments using hypothesis-driven searches across endpoint telemetry, network logs, and memory artifacts. Use when...
0
AI 93
scanning-container-images-with-grype
micsapp3/20/2026
Scan container images for known vulnerabilities using Anchore Grype with SBOM-based matching and configurable severity thresholds.
0
AI 92
database-optimization
micsapp3/20/2026
Query optimization, indexing strategies, and database performance tuning for PostgreSQL and MySQL
0
AI 92
context-engine
micsapp3/20/2026
Loads and manages company context for all C-suite advisor skills. Reads ~/.claude/company-context.md, detects stale context (>90 days), enriches context during conversations, and enforces privacy/anon...
0
AI 92
analyzing-linux-kernel-rootkits
micsapp3/20/2026
Detect kernel-level rootkits in Linux memory dumps using Volatility3 linux plugins (check_syscall, lsmod, hidden_modules), rkhunter system scanning, and /proc vs /sys discrepancy analysis to identify...
0
AI 92
detecting-t1003-credential-dumping-with-edr
micsapp3/20/2026
Detect OS credential dumping techniques targeting LSASS memory, SAM database, NTDS.dit, and cached credentials using EDR telemetry, Sysmon process access monitoring, and Windows security event correla...
0
AI 92
performing-service-account-audit
micsapp3/20/2026
Audit service accounts across enterprise infrastructure to identify orphaned, over-privileged, and non-compliant accounts. This skill covers discovery of service accounts in Active Directory, cloud pl
0
AI 91
performing-dmarc-policy-enforcement-rollout
micsapp3/20/2026
Execute a phased DMARC rollout from p=none monitoring through p=quarantine to p=reject enforcement, ensuring all legitimate email sources are authenticated before blocking unauthorized senders.
0
AI 91
access
micsapp3/20/2026
Manage Discord channel access — approve pairings, edit allowlists, set DM/group policy. Use when the user asks to pair, approve someone, check who's allowed, or change policy for the Discord channel.
0
AI 90
hardening-docker-containers-for-production
micsapp3/20/2026
Hardening Docker containers for production involves applying security best practices aligned with CIS Docker Benchmark v1.8.0 to minimize attack surface, prevent privilege escalation, and enforce leas
0
AI 90
performing-cloud-asset-inventory-with-cartography
micsapp3/20/2026
Perform comprehensive cloud asset inventory and relationship mapping using Cartography to build a Neo4j security graph of infrastructure assets, IAM permissions, and attack paths across AWS, GCP, and...
0
AI 90
smart-explore
micsapp3/20/2026
Token-optimized structural code search using tree-sitter AST parsing. Use instead of reading full files when you need to understand code structure, find functions, or explore a codebase efficiently.
0
AI 90
configuring-windows-event-logging-for-detection
micsapp3/20/2026
Configures Windows Event Logging with advanced audit policies to generate high-fidelity security events for threat detection and forensic investigation. Use when enabling audit policies for logon even...
0
AI 90
configuring-oauth2-authorization-flow
micsapp3/20/2026
Configure secure OAuth 2.0 authorization flows including Authorization Code with PKCE, Client Credentials, and Device Authorization Grant. This skill covers flow selection, PKCE implementation, token
