mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-07-11 18:13:43 +03:00
feat: enrich 209 skills with MITRE ATLAS, D3FEND, and NIST AI RMF frontmatter
Added structured security framework mappings to SKILL.md frontmatter across all applicable skills: - atlas_techniques: MITRE ATLAS v5.5 AML.TXXXX IDs (81 skills, AI-targeted attack techniques) - d3fend_techniques: MITRE D3FEND v1.3 defensive technique labels (139 skills, mapped from ATT&CK IDs) - nist_ai_rmf: NIST AI RMF 1.0 subcategory IDs (85 skills, AI risk management functions) Also updates ATTACK_COVERAGE.md with coverage statistics for all three frameworks.
This commit is contained in:
@@ -1,18 +1,33 @@
|
||||
---
|
||||
name: implementing-web-application-logging-with-modsecurity
|
||||
description: >
|
||||
Configure ModSecurity WAF with OWASP Core Rule Set (CRS) for web application logging,
|
||||
tune rules to reduce false positives, analyze audit logs for attack detection, and
|
||||
implement custom SecRules for application-specific threats. The analyst configures
|
||||
SecRuleEngine, SecAuditEngine, and CRS paranoia levels to balance security coverage
|
||||
with operational stability. Activates for requests involving WAF configuration,
|
||||
ModSecurity rule tuning, web application audit logging, or CRS deployment.
|
||||
description: 'Configure ModSecurity WAF with OWASP Core Rule Set (CRS) for web application logging, tune rules to reduce false
|
||||
positives, analyze audit logs for attack detection, and implement custom SecRules for application-specific threats. The
|
||||
analyst configures SecRuleEngine, SecAuditEngine, and CRS paranoia levels to balance security coverage with operational
|
||||
stability. Activates for requests involving WAF configuration, ModSecurity rule tuning, web application audit logging, or
|
||||
CRS deployment.
|
||||
|
||||
'
|
||||
domain: cybersecurity
|
||||
subdomain: web-application-security
|
||||
tags: [modsecurity, waf, crs, owasp, web-security, audit-logging, rule-tuning]
|
||||
version: "1.0"
|
||||
tags:
|
||||
- modsecurity
|
||||
- waf
|
||||
- crs
|
||||
- owasp
|
||||
- web-security
|
||||
- audit-logging
|
||||
- rule-tuning
|
||||
version: '1.0'
|
||||
author: mahipal
|
||||
license: Apache-2.0
|
||||
nist_ai_rmf:
|
||||
- MEASURE-2.7
|
||||
- MAP-5.1
|
||||
- MANAGE-2.4
|
||||
atlas_techniques:
|
||||
- AML.T0070
|
||||
- AML.T0066
|
||||
- AML.T0082
|
||||
---
|
||||
# Implementing Web Application Logging with ModSecurity
|
||||
|
||||
|
||||
Reference in New Issue
Block a user