feat: enrich 209 skills with MITRE ATLAS, D3FEND, and NIST AI RMF frontmatter

Added structured security framework mappings to SKILL.md frontmatter across all applicable skills:
- atlas_techniques: MITRE ATLAS v5.5 AML.TXXXX IDs (81 skills, AI-targeted attack techniques)
- d3fend_techniques: MITRE D3FEND v1.3 defensive technique labels (139 skills, mapped from ATT&CK IDs)
- nist_ai_rmf: NIST AI RMF 1.0 subcategory IDs (85 skills, AI risk management functions)

Also updates ATTACK_COVERAGE.md with coverage statistics for all three frameworks.
This commit is contained in:
mukul975
2026-04-06 01:55:37 +02:00
parent c15f73db46
commit ef27f026cb
209 changed files with 3959 additions and 3379 deletions
@@ -1,18 +1,33 @@
---
name: implementing-web-application-logging-with-modsecurity
description: >
Configure ModSecurity WAF with OWASP Core Rule Set (CRS) for web application logging,
tune rules to reduce false positives, analyze audit logs for attack detection, and
implement custom SecRules for application-specific threats. The analyst configures
SecRuleEngine, SecAuditEngine, and CRS paranoia levels to balance security coverage
with operational stability. Activates for requests involving WAF configuration,
ModSecurity rule tuning, web application audit logging, or CRS deployment.
description: 'Configure ModSecurity WAF with OWASP Core Rule Set (CRS) for web application logging, tune rules to reduce false
positives, analyze audit logs for attack detection, and implement custom SecRules for application-specific threats. The
analyst configures SecRuleEngine, SecAuditEngine, and CRS paranoia levels to balance security coverage with operational
stability. Activates for requests involving WAF configuration, ModSecurity rule tuning, web application audit logging, or
CRS deployment.
'
domain: cybersecurity
subdomain: web-application-security
tags: [modsecurity, waf, crs, owasp, web-security, audit-logging, rule-tuning]
version: "1.0"
tags:
- modsecurity
- waf
- crs
- owasp
- web-security
- audit-logging
- rule-tuning
version: '1.0'
author: mahipal
license: Apache-2.0
nist_ai_rmf:
- MEASURE-2.7
- MAP-5.1
- MANAGE-2.4
atlas_techniques:
- AML.T0070
- AML.T0066
- AML.T0082
---
# Implementing Web Application Logging with ModSecurity