Moduli
Security Operations
8 agenti · 6 workflow · 0 skills.
Agenti
- Commander — SOC Manager
- Watchdog — L1 Triage Analyst
- Tracker — L2 Investigator
- Hawk — L3 Threat Hunter
- Sentinel — Detection Engineer
- Shield — Quick Analyst
- Keystone — Identity Security Specialist
- Signal — Telemetry Engineer
Workflow
spectra-alert-triage— Alert triage workflow. Use when the user says “triage this alert” or “analyze this alert”.spectra-phishing-response— Phishing incident response workflow. Use when the user says “phishing response” or “analyze this email”.spectra-threat-hunt— Threat hunting workflow. Use when the user says “start a hunt” or “hunt for threats”.spectra-detection-lifecycle— Detection rule lifecycle workflow. Use when the user says “create detection rule” or “write sigma rule”.spectra-identity-detection-review— Identity detection and control review workflow. Use for AD, Entra ID, Okta, IAM, OAuth, session, MFA, and privilege-path defensive coverage analysis.spectra-telemetry-readiness— Telemetry readiness workflow. Use for log-source coverage, parsing quality, field normalization, retention, SIEM pipeline readiness, and Blue Live source validation.