mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-07-18 05:29:40 +03:00
Complete folder anatomy for all 649 cybersecurity skills + update LICENSE to Mahipal
- Add scripts/agent.py and references/api-reference.md to all remaining skills - Update all 648 LICENSE files: copyright now reads 'Mahipal' - Add implementing-security-monitoring-with-datadog (new skill with full anatomy) - All 649 skills now have: SKILL.md, LICENSE, scripts/agent.py, references/api-reference.md
This commit is contained in:
@@ -0,0 +1,62 @@
|
||||
# API Reference: Patch Tuesday Response Process
|
||||
|
||||
## MSRC Security Update API
|
||||
```
|
||||
GET https://api.msrc.microsoft.com/cvrf/v3.0/Updates('{yyyy-Mon}')
|
||||
api-key: YOUR_MSRC_KEY
|
||||
Accept: application/json
|
||||
```
|
||||
|
||||
## CVRF Vulnerability Fields
|
||||
| Field | Description |
|
||||
|-------|-------------|
|
||||
| `CVE` | CVE identifier |
|
||||
| `Title.Value` | Vulnerability title |
|
||||
| `Threats[].Description.Value` | Severity, exploitation status |
|
||||
| `CVSSScoreSets[].BaseScore` | CVSS v3 base score |
|
||||
| `ProductStatuses[].ProductID` | Affected product IDs |
|
||||
| `Remediations[].URL` | KB article / patch URL |
|
||||
|
||||
## CISA Known Exploited Vulnerabilities (KEV)
|
||||
```
|
||||
GET https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json
|
||||
```
|
||||
|
||||
### KEV Entry Fields
|
||||
| Field | Description |
|
||||
|-------|-------------|
|
||||
| `cveID` | CVE identifier |
|
||||
| `vendorProject` | Vendor name |
|
||||
| `product` | Product name |
|
||||
| `dateAdded` | Date added to KEV |
|
||||
| `dueDate` | Remediation due date |
|
||||
|
||||
## Patch Priority Matrix
|
||||
| Priority | Criteria | SLA |
|
||||
|----------|----------|-----|
|
||||
| Emergency | Exploited + KEV + CVSS >= 9.0 | 24 hours |
|
||||
| Critical | Exploited OR KEV + CVSS >= 7.0 | 72 hours |
|
||||
| Standard | CVSS >= 7.0, no exploitation | 7 days |
|
||||
| Routine | CVSS < 7.0, no exploitation | 30 days |
|
||||
|
||||
## NVD API v2
|
||||
```
|
||||
GET https://services.nvd.nist.gov/rest/json/cves/2.0?cveId={CVE-ID}
|
||||
apiKey: YOUR_NVD_KEY
|
||||
```
|
||||
|
||||
## WSUS Deployment API (PowerShell)
|
||||
```powershell
|
||||
$wsus = Get-WsusServer
|
||||
$update = $wsus.SearchUpdates("KB5034441")
|
||||
$group = $wsus.GetComputerTargetGroup("Production")
|
||||
$update.Approve("Install", $group)
|
||||
```
|
||||
|
||||
## Deployment Phase Timeline
|
||||
| Phase | Window | Targets |
|
||||
|-------|--------|---------|
|
||||
| Emergency | 0-24h | Critical servers, exploited CVEs |
|
||||
| Pilot | 24-72h | Test group (5% of fleet) |
|
||||
| Broad | 3-7d | All production systems |
|
||||
| Cleanup | 7-30d | Exceptions, rollback monitoring |
|
||||
Reference in New Issue
Block a user