Agent Skills
› rmyndharis/antigravity-skills
› attack-tree-construction
attack-tree-construction
GitHub构建攻击树以可视化威胁路径,识别防御漏洞并沟通安全风险。适用于映射攻击场景、规划防御投资或测试范围。需确认授权范围,分解子目标并标注成本与检测性,映射缓解措施以优先处理高影响路径。
Trigger Scenarios
可视化复杂攻击场景
识别防御漏洞和优先级
向利益相关者沟通风险
规划防御投资或测试范围
Install
npx skills add rmyndharis/antigravity-skills --skill attack-tree-construction -g -y
SKILL.md
Frontmatter
{
"name": "attack-tree-construction",
"description": "Build comprehensive attack trees to visualize threat paths. Use when mapping attack scenarios, identifying defense gaps, or communicating security risks to stakeholders."
}
Attack Tree Construction
Systematic attack path visualization and analysis.
Use this skill when
- Visualizing complex attack scenarios
- Identifying defense gaps and priorities
- Communicating risks to stakeholders
- Planning defensive investments or test scopes
Do not use this skill when
- You lack authorization or a defined scope to model the system
- The task is a general risk review without attack-path modeling
- The request is unrelated to security assessment or design
Instructions
- Confirm scope, assets, and the attacker goal for the root node.
- Decompose into sub-goals with AND/OR structure.
- Annotate leaves with cost, skill, time, and detectability.
- Map mitigations per branch and prioritize high-impact paths.
- If detailed templates are required, open
resources/implementation-playbook.md.
Safety
- Share attack trees only with authorized stakeholders.
- Avoid including sensitive exploit details unless required.
Resources
resources/implementation-playbook.mdfor detailed patterns, templates, and examples.
Version History
- e63f7dd Current 2026-07-05 09:28


