feat: add NIST CSF 2.0 nist_csf field to all 754 cybersecurity skills

Mapped every skill to NIST CSF 2.0 subcategory IDs (GV/ID/PR/DE/RS/RC functions)
based on subdomain and content analysis. Restores 11 skills corrupted during
prior rebase, re-enriching with ATLAS, D3FEND, NIST AI RMF, and CSF 2.0 fields.

All 754 skills now carry structured mappings for all 5 security frameworks:
- MITRE ATT&CK (in tags)
- MITRE ATLAS v5.5 (atlas_techniques)
- MITRE D3FEND v1.3 (d3fend_techniques)
- NIST AI RMF 1.0 (nist_ai_rmf)
- NIST CSF 2.0 (nist_csf)
This commit is contained in:
mukul975
2026-04-06 11:17:31 +02:00
parent e8105a2f4d
commit efca3ec611
754 changed files with 12847 additions and 2832 deletions
@@ -1,16 +1,27 @@
---
name: detecting-compromised-cloud-credentials
description: >
Detecting compromised cloud credentials across AWS, Azure, and GCP by analyzing
anomalous API activity, impossible travel patterns, unauthorized resource provisioning,
and credential abuse indicators using GuardDuty, Defender for Identity, and SCC
Event Threat Detection.
description: 'Detecting compromised cloud credentials across AWS, Azure, and GCP by analyzing anomalous API activity, impossible
travel patterns, unauthorized resource provisioning, and credential abuse indicators using GuardDuty, Defender for Identity,
and SCC Event Threat Detection.
'
domain: cybersecurity
subdomain: cloud-security
tags: [cloud-security, credential-compromise, threat-detection, guardduty, incident-response, anomaly-detection]
version: "1.0"
tags:
- cloud-security
- credential-compromise
- threat-detection
- guardduty
- incident-response
- anomaly-detection
version: '1.0'
author: mahipal
license: Apache-2.0
nist_csf:
- PR.IR-01
- ID.AM-08
- GV.SC-06
- DE.CM-01
---
# Detecting Compromised Cloud Credentials