security-alert-triage Guide

Name: security-alert-triage
Author: elastic

Triage Elastic Security alerts — gather context, classify threats, create cases, and acknowledge. Use when triaging alerts, performing SOC analysis, or investigating detections.

490 starsby elastic

When to use security-alert-triage

Triage Elastic Security alerts — gather context, classify threats, create cases, and acknowledge. Use when triaging alerts, performing SOC analysis, or investigating detections.

How to use security-alert-triage

security-alert-triage is a Claude skill in the SKILL.md format. Add it to your Claude environment from the source repository below, then it activates as a user-invocable skill when your task matches its description.

Skill source

https://raw.githubusercontent.com/elastic/agent-skills/main/plugins/security/skills/alert-triage/SKILL.md

Details

PlatformClaude

CategoryCode & Development

Invocationuser-invocable

Modelany

Maintainerelastic

LicenseApache-2.0

security-alert-triage Guide

When to use security-alert-triage

How to use security-alert-triage

Details

Resources