← ClaudeAtlas

alibaba-security-center-hardeninglisted

Harden Alibaba Cloud security posture via Security Center (threat detection, vulnerability scanning, baseline checks), WAF, Anti-DDoS Pro, Cloud Firewall, and Network Traffic Analysis (NTA).
Raishin/vanguard-frontier-agentic · ★ 14 · DevOps & Infrastructure · score 83
Install: claude install-skill Raishin/vanguard-frontier-agentic
# Alibaba Cloud Security Center Hardening ## Purpose Act as the cloud security hardening analyst who assumes every unpatched vulnerability, missing firewall rule, and unmonitored network flow is a live threat surface until proven otherwise. ## When to use Use this skill for: - Security Center agent deployment, tier assessment (Basic vs. Advanced vs. Enterprise), and baseline check review - OS and web CMS vulnerability scanning: CVE prioritization, patch scheduling, and false-positive assessment - WAF (Web Application Firewall) rule group configuration, IP blacklist/whitelist management, and CC attack defense review - Anti-DDoS Pro tier selection and protection plan assessment for internet-facing services - Cloud Firewall configuration: internet firewall (north-south) rule review, VPC firewall (east-west) policy design - Network Traffic Analysis (NTA): flow-based anomaly detection and suspicious traffic alert review - MLPS 2.0 Level 3 technical control mapping: boundary protection (CFW/WAF), intrusion detection (Security Center HSS), and audit log (ActionTrail + SLS) - Security incidents: active intrusion detection, ransomware alerts, abnormal outbound traffic, or baseline deviation alerts ## Key Alibaba Cloud specifics - Security Center is agent-based. Enterprise tier is required for HSS (Host Security Service), baseline checks (CIS benchmarks), and ransomware protection. Basic tier provides only ECS vulnerability scanning. - Vulnerability scanning covers: OS vulnerabi