🎁 Get the FREE AI Skills Starter Guide β€” Subscribe β†’
BytesAgainBytesAgain
BytesAgain β€Ί Skills β€Ί threat-detection
πŸ¦€ ClawHub

threat-detection

by @wu-uk

Exact detection thresholds for identifying malicious network patterns including port scans, DoS attacks, and beaconing behavior.

Versionv0.1.0
#clawhub
πŸ’‘ Examples

ppm_max = 2372, ppm_avg = 262.9
Ratio = 2372 / 262.9 = 9.02
9.02 < 20, therefore: NO DoS pattern

Implementation

import sys
sys.path.insert(0, '/root/skills/pcap-analysis')
from pcap_utils import detect_dos_pattern
has_dos = detect_dos_pattern(ppm_avg, ppm_max)  # Returns True/False

Or manually:

def detect_dos_pattern(ppm_avg, ppm_max):
    """DoS requires ratio > 20. Lower ratios are normal variation."""
    if ppm_avg == 0:
        return False
    ratio = ppm_max / ppm_avg
    return ratio > 20

View on ClawHub
TERMINAL
clawhub install dapt-intrusion-detection-threat-detection

πŸ§ͺ Use this skill with your agent

Most visitors already have an agent. Pick your environment, install or copy the workflow, then run the smoke-test prompt above.

Manus
Task-oriented agent. Great for testing AI skills end-to-end.
Try Manus β†’
OpenClaw
Local-first agent. Install skills via ClawHub CLI.
Set up OpenClaw β†’
Claude Code
Anthropic's coding agent. Paste the prompt or SKILL.md into your session.
Claude Code docs β†’
Cursor
AI-powered IDE. Use the smoke-test prompt in Cursor Agent.
Open Cursor β†’
Continue.dev
Open-source AI code assistant. Add SKILL.md as a custom tool.
Continue docs β†’
Windsurf
Agentic IDE by Codeium. Paste the prompt into Cascade.
Try Windsurf β†’
Cline
VS Code extension for autonomous coding with MCP tools.
Cline on GitHub β†’
Copilot Workspace
GitHub's AI dev environment. Suitable for code-generation skills.
Copilot Workspace β†’

πŸ” Can't find the right skill?

Search 60,000+ AI agent skills β€” free, no login needed.

Search Skills β†’