Generate Security Sample Data

Generate ECS-compliant security events and synthetic alerts using the elastic-security MCP connector.

Tools (via elastic-security MCP connector)

Tool	Purpose
`generate-sample-data`	Generate events with interactive UI. Params: `scenario`, `count`

Scenario	Description
`windows-credential-theft`	Mimikatz, procdump, credential dumping on Windows
`aws-privilege-escalation`	IAM policy changes, role assumption, access key creation
`okta-identity-takeover`	MFA factor reset, password change, session hijacking
`ransomware-kill-chain`	PowerShell execution, C2 beaconing, mass file encryption

Related skills