Eth0izzle Security Skills
eth0izzle-security-skills is a Claude Code plugin for the Ship phase that adds skills to create, validate, import, export, and execute CrowdStrike Falcon SOAR workflows.
by eth0izzle · github.com/eth0izzle/security-skills
Add CrowdStrike Falcon SOAR workflow skills to Claude Code so security-minded builders can create, validate, and run SOAR playbooks in natural language.
Add it to Claude Code
Install the plugin in Claude Code. One command, paste-ready.
/plugin install eth0izzle-security-skills@eth0izzle/security-skillsBuilt to be called by your agent
Skillselion is itself an MCP server. Your agent can pull this entry and a paste-ready install config straight from the API - no copy-paste.
Retrieve this entry with skillselion.get_details("plugin:eth0izzle/security-skills") and the paste-ready config with skillselion.get_install_config("plugin:eth0izzle/security-skills").
What it does
eth0izzle-security-skills is a focused Claude Code plugin collection that packages skills for security teams working with CrowdStrike Falcon SOAR (Fusion). The marketplace entry lists one plugin and keywords around create, execute, export, import, validate, and natural-language workflow authoring—indicating the bundle helps operators translate intent into SOAR artifacts without clicking through every wizard manually. Solo builders are not the primary persona unless they run their own security stack or manage Falcon for a small company; the value is sharper for builders who wear SecOps hats or integrate incident response into agent workflows. Install when you already have Falcon access and need Claude Code to draft, validate, and run SOAR workflows consistently. It is not a general vulnerability scanner or secure-coding linter; it is SOAR workflow lifecycle assistance tied to CrowdStrike’s ecosystem.
Highlights
- Single-plugin bundle focused on security operations in Claude Code
- CrowdStrike Falcon and Fusion SOAR workflow support
- Create, import, export, and validate SOAR workflows via agent skills
- Natural-language driven security automation for trained operators
- Execute workflows after validation in a SOAR-aware toolchain
Why builders use it
Security operators waste cycles manually building and checking SOAR playbooks when they need faster, repeatable workflow authoring inside their coding agent.
After install, Claude Code can assist with SOAR workflow lifecycle steps so validated CrowdStrike Fusion playbooks are easier to create and run from natural language.
At a glance
- Type - Plugin in Security.
- Adoption - 0 installs, 34 stars, 0 votes.
FAQ
Who is eth0izzle-security-skills for?
It is for security practitioners and technical founders using CrowdStrike Falcon SOAR who want Claude Code skills to manage Fusion workflows in natural language.
When should I use eth0izzle-security-skills?
Use it in Ship when you are hardening operations, building or validating SOAR playbooks, and need import-export and execute support inside Claude Code.
How do I add eth0izzle-security-skills to my agent?
Register the eth0izzle/security-skills plugin in Claude Code, confirm CrowdStrike API and SOAR permissions, then invoke the bundled skill for workflow create-validate-execute tasks.
Comments
Share how you use eth0izzle-security-skills, gotchas, or tips for other indie builders.
No comments yet - be the first to share how you use it.