Skill

implementing-security-chaos-engineering

From asi

Implements security chaos engineering experiments using boto3 and subprocess to test WAF bypass, firewall removal, log disruption, and EDR disablement for SOC detection validation.

Python

AWS

security

testing

npx claudepluginhub plurigrid/asi --plugin asi

Tool Access

This skill uses the workspace's default tool permissions.

Preview

- When deploying or configuring implementing security chaos engineering capabilities in your environment

SKILL.md

Similar Skills

implementing-security-chaos-engineering

5.9k

Implements AWS security chaos experiments with boto3 to disable controls like firewalls, logs, EDR and verify SOC detection. For testing resilience in lab environments.

3 files

cybersecurity-skills

implementing-security-chaos-engineering

Implements security chaos engineering experiments using boto3 and subprocess to disrupt AWS controls like WAF bypass, firewall deletions, CloudTrail disable, and EDR tests. Verifies SOC detection coverage and resilience.

3 files

cybersecurity-skills-zh

performing-purple-team-exercise

Performs purple team exercises coordinating red team adversary emulation with blue team detection validation using MITRE ATT&CK scenarios for SOC detection testing and gap remediation.

asi

Stats

Parent Repo Stars16

Parent Repo Forks5

Last CommitApr 4, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Implementing Security Chaos Engineering

When to Use

When deploying or configuring implementing security chaos engineering capabilities in your environment

When establishing security controls aligned to compliance requirements

When building or improving security architecture for this domain

When conducting security assessments that require this implementation

Prerequisites

Familiarity with security operations concepts and tools

Access to a test or lab environment for safe execution

Python 3.8+ with required dependencies installed

Appropriate authorization for any testing activities

Instructions

Design and execute security chaos experiments that intentionally break security controls to verify that detection, alerting, and response systems work correctly.

# Example: Verify detection when a security group is opened import boto3 ec2 = boto3.client("ec2") # Chaos experiment: temporarily add 0.0.0.0/0 rule ec2.authorize_security_group_ingress( GroupId="sg-12345", IpProtocol="tcp", FromPort=22, ToPort=22, CidrIp="0.0.0.0/0", ) # Verify: does GuardDuty/Config alert fire within SLA? # Rollback: remove the rule after verification

Key experiments:

Open a security group and verify Config Rule alerts

Disable CloudTrail and verify detection time

Create IAM admin user and verify alert triggers

Simulate log pipeline failure and check monitoring gaps

Deploy test malware hash and verify EDR response

Examples

# Rollback function for safe experiment execution def run_experiment(setup_fn, verify_fn, rollback_fn, timeout=300): try: setup_fn() result = verify_fn(timeout) finally: rollback_fn() return result