Summary
Parses API Gateway access logs from AWS, Kong, or Nginx to spot BOLA attacks, rate limit bypasses, credential scanning, and injection attempts. You get pandas-based detection patterns for things like users enumerating resource IDs, 401 surges from single IPs, and suspicious HTTP methods on read-only endpoints. Useful when you're investigating API abuse or building threat detection rules and need structured procedures instead of ad-hoc log queries. The examples are straightforward, grouping operations that flag anomalies like users hitting 50+ unique resource IDs or IPs generating 100+ auth failures. Maps to MITRE T1190 and NIST detection functions if you need compliance alignment.
Install to Claude Code
npx -y skills add mukul975/anthropic-cybersecurity-skills --skill analyzing-api-gateway-access-logs --agent claude-codeInstalls into .claude/skills of the current project.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Files
SKILL.md
Select a file.
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
