feat: add NIST CSF 2.0 nist_csf field to all 754 cybersecurity skills

Mapped every skill to NIST CSF 2.0 subcategory IDs (GV/ID/PR/DE/RS/RC functions)
based on subdomain and content analysis. Restores 11 skills corrupted during
prior rebase, re-enriching with ATLAS, D3FEND, NIST AI RMF, and CSF 2.0 fields.

All 754 skills now carry structured mappings for all 5 security frameworks:
- MITRE ATT&CK (in tags)
- MITRE ATLAS v5.5 (atlas_techniques)
- MITRE D3FEND v1.3 (d3fend_techniques)
- NIST AI RMF 1.0 (nist_ai_rmf)
- NIST CSF 2.0 (nist_csf)
This commit is contained in:
mukul975
2026-04-06 11:17:31 +02:00
parent e8105a2f4d
commit efca3ec611
754 changed files with 12847 additions and 2832 deletions
@@ -1,16 +1,29 @@
---
name: performing-s7comm-protocol-security-analysis
description: >
Perform security analysis of Siemens S7comm and S7CommPlus protocols used by
SIMATIC S7 PLCs to identify vulnerabilities including replay attacks, integrity
bypass, unauthorized CPU stop commands, and program download manipulation
exploiting weaknesses in S7-300, S7-400, S7-1200, and S7-1500 controllers.
description: 'Perform security analysis of Siemens S7comm and S7CommPlus protocols used by SIMATIC S7 PLCs to identify vulnerabilities
including replay attacks, integrity bypass, unauthorized CPU stop commands, and program download manipulation exploiting
weaknesses in S7-300, S7-400, S7-1200, and S7-1500 controllers.
'
domain: cybersecurity
subdomain: ot-ics-security
tags: [ot-security, ics, s7comm, siemens, plc-security, protocol-analysis, scada, vulnerability-assessment]
version: "1.0"
tags:
- ot-security
- ics
- s7comm
- siemens
- plc-security
- protocol-analysis
- scada
- vulnerability-assessment
version: '1.0'
author: mahipal
license: Apache-2.0
nist_csf:
- PR.IR-01
- DE.CM-01
- ID.AM-05
- GV.OC-02
---
# Performing S7comm Protocol Security Analysis