Detect and prevent QR code phishing (quishing) attacks that bypass traditional email security by embedding malicious URLs in QR code images within emails.
Works with
AI-first code editor with Composer
Before installing skills in Cursor, ensure your development environment meets these requirements:
node --versiondetecting-qr-code-phishing-with-email-securityExecute the skills CLI command in your project's root directory to begin installation:
Fetches detecting-qr-code-phishing-with-email-security from mukul975/Anthropic-Cybersecurity-Skills and configures it for Cursor.
The CLI shows a list of agents. Use arrow keys and space to select Cursor:
Confirm successful installation by checking the skill directory location:
Restart Cursor to activate detecting-qr-code-phishing-with-email-security. Access via /detecting-qr-code-phishing-with-email-security in your agent's command palette.
We perform automated surface-level scans (Gen AI Scanner, Socket, Snyk) during installation. These checks detect common vulnerabilities but do not guarantee complete security. Always review skill source code and verify the publisher's reputation before production use.
Skills execute code in your environment. Always review source, verify the publisher, and test in isolation before production.
Submit your Claude Code skill and start earning
Use skill to generate boilerplate code, refactor legacy code, and write tests faster
Example
Generate React component with TypeScript types, styled-components, and comprehensive test suite in minutes
Reduce development time by 40-60% for repetitive coding tasks
Systematically review code for bugs, security issues, and style violations
Example
Analyze pull requests for common anti-patterns, suggest performance improvements, flag security vulnerabilities
Catch 70%+ of code issues before human review, improve code quality
Trace errors through stack traces and identify root causes faster
Example
Analyze error logs, suggest probable causes, recommend fixes with code examples
0
total installs
0
this week
8.6K
GitHub stars
0
upvotes
Run in your terminal
0
installs
0
this week
8.6K
stars
| name | detecting-qr-code-phishing-with-email-security |
| description | Detect and prevent QR code phishing (quishing) attacks that bypass traditional email security by embedding malicious URLs in QR code images within emails. |
| domain | cybersecurity |
| subdomain | phishing-defense |
| tags | - quishing - qr-code - phishing - email-security - image-analysis - ocr - mobile-security |
| version | '1.0' |
| author | mahipal |
| license | Apache-2.0 |
| atlas_techniques | - AML.T0052 - AML.T0024 - AML.T0035 |
| nist_ai_rmf | - MEASURE-2.8 - MAP-5.1 |
| nist_csf | - PR.AT-01 - DE.CM-09 - RS.CO-02 - DE.AE-02 |
QR code phishing (quishing) is a rapidly growing attack vector where malicious URLs are embedded in QR code images within phishing emails. Quishing incidents grew fivefold from 46,000 to 250,000 between August and November 2025, with credential phishing comprising 89.3% of detected incidents. Traditional email security filters struggle because QR codes cannot be read by humans or standard URL scanners, and when scanned, users typically use personal mobile devices that lack corporate security controls. Attackers have evolved to use split QR codes (two separate images), nested QR codes, and ASCII text-based QR codes to evade detection.
Cut debugging time by 30-50%, especially for unfamiliar codebases
Get explanations, examples, and best practices for unfamiliar frameworks
Example
Understand Next.js app router, learn Rust ownership, grasp Kubernetes concepts with practical examples
Accelerate learning curve by 2-3x, reduce onboarding time for new tech stacks
Prerequisites
Time Estimate
15-30 minutes to install and see first useful output
Steps
Common Pitfalls
✓ Do
✗ Don't
💡 Pro Tips
✓ Use when
Use coding skills for boilerplate generation, code reviews, refactoring legacy code, writing tests, learning new frameworks, and debugging non-critical issues. Best for repetitive tasks where errors are easy to catch.
✗ Avoid when
Avoid for production security features (auth, encryption, payment processing), complex business logic requiring deep domain knowledge, performance-critical algorithms, or when learning fundamentals is more valuable than speed.
mukul975/Anthropic-Cybersecurity-Skills
mukul975/Anthropic-Cybersecurity-Skills
mukul975/Anthropic-Cybersecurity-Skills
mukul975/Anthropic-Cybersecurity-Skills
mukul975/Anthropic-Cybersecurity-Skills
mukul975/Anthropic-Cybersecurity-Skills
We added detecting-qr-code-phishing-with-email-security from the explainx registry; install was straightforward and the SKILL.md answered most questions upfront.
Useful defaults in detecting-qr-code-phishing-with-email-security — fewer surprises than typical one-off scripts, and it plays nicely with `npx skills` flows.
Registry listing for detecting-qr-code-phishing-with-email-security matched our evaluation — installs cleanly and behaves as described in the markdown.
detecting-qr-code-phishing-with-email-security fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.
detecting-qr-code-phishing-with-email-security reduced setup friction for our internal harness; good balance of opinion and flexibility.
detecting-qr-code-phishing-with-email-security is among the better-maintained entries we tried; worth keeping pinned for repeat workflows.
Keeps context tight: detecting-qr-code-phishing-with-email-security is the kind of skill you can hand to a new teammate without a long onboarding doc.
We added detecting-qr-code-phishing-with-email-security from the explainx registry; install was straightforward and the SKILL.md answered most questions upfront.
Registry listing for detecting-qr-code-phishing-with-email-security matched our evaluation — installs cleanly and behaves as described in the markdown.
Useful defaults in detecting-qr-code-phishing-with-email-security — fewer surprises than typical one-off scripts, and it plays nicely with `npx skills` flows.
showing 1-10 of 53