Scope fix: remove mitre_attack from 24 non-incident-response skills, use sub-techniques

- Removed mitre_attack from digital-forensics, cloud-security, malware-analysis,
  endpoint-security, threat-hunting, ransomware-defense, phishing-defense, and
  security-operations subdomain skills (out of PR scope per issue #1)
- Applied sub-technique IDs where appropriate (T1566.001, T1003.001, etc.)
- Only incident-response and soc-operations skills retain mappings
This commit is contained in:
MAGI
2026-03-17 22:12:07 -06:00
committed by Julio César Suástegui
parent 42258456e8
commit 100361c3e5
24 changed files with 1 additions and 24 deletions
@@ -4,7 +4,6 @@ description: Analyze memory dumps using Volatility3 plugins to detect injected c
domain: cybersecurity
subdomain: malware-analysis
tags: [memory-forensics, volatility3, malware-analysis, incident-response, process-injection, rootkit-detection, dfir]
mitre_attack: ["T1003", "T1055", "T1620"]
version: "1.0"
author: mahipal
license: Apache-2.0