@blamejs/exceptd-skills 0.12.26 → 0.12.28
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/AGENTS.md +3 -0
- package/CHANGELOG.md +60 -0
- package/bin/exceptd.js +73 -1
- package/data/_indexes/_meta.json +22 -19
- package/data/_indexes/activity-feed.json +26 -5
- package/data/_indexes/catalog-summaries.json +3 -3
- package/data/_indexes/chains.json +994 -64
- package/data/_indexes/currency.json +28 -1
- package/data/_indexes/frequency.json +428 -124
- package/data/_indexes/handoff-dag.json +70 -19
- package/data/_indexes/jurisdiction-map.json +37 -12
- package/data/_indexes/section-offsets.json +282 -0
- package/data/_indexes/stale-content.json +2 -2
- package/data/_indexes/summary-cards.json +198 -0
- package/data/_indexes/token-budget.json +168 -3
- package/data/_indexes/trigger-table.json +190 -0
- package/data/_indexes/xref.json +145 -2
- package/data/attack-techniques.json +104 -19
- package/data/framework-control-gaps.json +498 -11
- package/data/playbooks/cloud-iam-incident.json +1351 -0
- package/data/playbooks/idp-incident.json +1259 -0
- package/data/playbooks/ransomware.json +1407 -0
- package/data/rfc-references.json +44 -0
- package/lib/flag-suggest.js +4 -0
- package/lib/playbook-runner.js +117 -10
- package/manifest-snapshot.json +227 -3
- package/manifest-snapshot.sha256 +1 -1
- package/manifest.json +282 -41
- package/package.json +1 -1
- package/sbom.cdx.json +7 -7
- package/skills/cloud-iam-incident/skill.md +419 -0
- package/skills/idp-incident-response/skill.md +352 -0
- package/skills/ransomware-response/skill.md +374 -0
|
@@ -86,8 +86,9 @@
|
|
|
86
86
|
]
|
|
87
87
|
},
|
|
88
88
|
"CWE-345": {
|
|
89
|
-
"count":
|
|
89
|
+
"count": 2,
|
|
90
90
|
"skills": [
|
|
91
|
+
"idp-incident-response",
|
|
91
92
|
"mcp-agent-trust"
|
|
92
93
|
]
|
|
93
94
|
},
|
|
@@ -163,18 +164,21 @@
|
|
|
163
164
|
]
|
|
164
165
|
},
|
|
165
166
|
"CWE-269": {
|
|
166
|
-
"count":
|
|
167
|
+
"count": 6,
|
|
167
168
|
"skills": [
|
|
168
169
|
"attack-surface-pentest",
|
|
170
|
+
"cloud-iam-incident",
|
|
169
171
|
"container-runtime-security",
|
|
170
172
|
"identity-assurance",
|
|
173
|
+
"idp-incident-response",
|
|
171
174
|
"webapp-security"
|
|
172
175
|
]
|
|
173
176
|
},
|
|
174
177
|
"CWE-732": {
|
|
175
|
-
"count":
|
|
178
|
+
"count": 6,
|
|
176
179
|
"skills": [
|
|
177
180
|
"attack-surface-pentest",
|
|
181
|
+
"cloud-iam-incident",
|
|
178
182
|
"cloud-security",
|
|
179
183
|
"container-runtime-security",
|
|
180
184
|
"identity-assurance",
|
|
@@ -245,13 +249,16 @@
|
|
|
245
249
|
]
|
|
246
250
|
},
|
|
247
251
|
"CWE-287": {
|
|
248
|
-
"count":
|
|
252
|
+
"count": 13,
|
|
249
253
|
"skills": [
|
|
250
254
|
"age-gates-child-safety",
|
|
251
255
|
"api-security",
|
|
256
|
+
"cloud-iam-incident",
|
|
252
257
|
"cloud-security",
|
|
253
258
|
"identity-assurance",
|
|
259
|
+
"idp-incident-response",
|
|
254
260
|
"ot-ics-security",
|
|
261
|
+
"ransomware-response",
|
|
255
262
|
"sector-energy",
|
|
256
263
|
"sector-financial",
|
|
257
264
|
"sector-healthcare",
|
|
@@ -269,11 +276,13 @@
|
|
|
269
276
|
]
|
|
270
277
|
},
|
|
271
278
|
"CWE-798": {
|
|
272
|
-
"count":
|
|
279
|
+
"count": 7,
|
|
273
280
|
"skills": [
|
|
281
|
+
"cloud-iam-incident",
|
|
274
282
|
"cloud-security",
|
|
275
283
|
"identity-assurance",
|
|
276
284
|
"ot-ics-security",
|
|
285
|
+
"ransomware-response",
|
|
277
286
|
"sector-energy",
|
|
278
287
|
"sector-financial"
|
|
279
288
|
]
|
|
@@ -291,10 +300,12 @@
|
|
|
291
300
|
]
|
|
292
301
|
},
|
|
293
302
|
"CWE-863": {
|
|
294
|
-
"count":
|
|
303
|
+
"count": 6,
|
|
295
304
|
"skills": [
|
|
296
305
|
"api-security",
|
|
306
|
+
"cloud-iam-incident",
|
|
297
307
|
"identity-assurance",
|
|
308
|
+
"idp-incident-response",
|
|
298
309
|
"sector-financial",
|
|
299
310
|
"webapp-security"
|
|
300
311
|
]
|
|
@@ -305,6 +316,19 @@
|
|
|
305
316
|
"ot-ics-security",
|
|
306
317
|
"sector-energy"
|
|
307
318
|
]
|
|
319
|
+
},
|
|
320
|
+
"CWE-522": {
|
|
321
|
+
"count": 2,
|
|
322
|
+
"skills": [
|
|
323
|
+
"cloud-iam-incident",
|
|
324
|
+
"idp-incident-response"
|
|
325
|
+
]
|
|
326
|
+
},
|
|
327
|
+
"CWE-284": {
|
|
328
|
+
"count": 1,
|
|
329
|
+
"skills": [
|
|
330
|
+
"idp-incident-response"
|
|
331
|
+
]
|
|
308
332
|
}
|
|
309
333
|
},
|
|
310
334
|
"d3fend_refs": {
|
|
@@ -343,46 +367,55 @@
|
|
|
343
367
|
]
|
|
344
368
|
},
|
|
345
369
|
"D3-IOPR": {
|
|
346
|
-
"count":
|
|
370
|
+
"count": 10,
|
|
347
371
|
"skills": [
|
|
348
372
|
"ai-attack-surface",
|
|
349
373
|
"ai-c2-detection",
|
|
374
|
+
"cloud-iam-incident",
|
|
350
375
|
"defensive-countermeasure-mapping",
|
|
351
376
|
"dlp-gap-analysis",
|
|
352
377
|
"fuzz-testing-strategy",
|
|
378
|
+
"idp-incident-response",
|
|
353
379
|
"rag-pipeline-security",
|
|
380
|
+
"ransomware-response",
|
|
354
381
|
"sector-telecom"
|
|
355
382
|
]
|
|
356
383
|
},
|
|
357
384
|
"D3-NTA": {
|
|
358
|
-
"count":
|
|
385
|
+
"count": 10,
|
|
359
386
|
"skills": [
|
|
360
387
|
"ai-attack-surface",
|
|
361
388
|
"ai-c2-detection",
|
|
362
389
|
"attack-surface-pentest",
|
|
390
|
+
"cloud-iam-incident",
|
|
363
391
|
"defensive-countermeasure-mapping",
|
|
364
392
|
"dlp-gap-analysis",
|
|
393
|
+
"idp-incident-response",
|
|
365
394
|
"rag-pipeline-security",
|
|
395
|
+
"ransomware-response",
|
|
366
396
|
"sector-telecom"
|
|
367
397
|
]
|
|
368
398
|
},
|
|
369
399
|
"D3-CBAN": {
|
|
370
|
-
"count":
|
|
400
|
+
"count": 5,
|
|
371
401
|
"skills": [
|
|
402
|
+
"cloud-iam-incident",
|
|
372
403
|
"defensive-countermeasure-mapping",
|
|
404
|
+
"idp-incident-response",
|
|
373
405
|
"mcp-agent-trust",
|
|
374
406
|
"supply-chain-integrity"
|
|
375
407
|
]
|
|
376
408
|
},
|
|
377
409
|
"D3-CSPP": {
|
|
378
|
-
"count":
|
|
410
|
+
"count": 7,
|
|
379
411
|
"skills": [
|
|
380
412
|
"ai-c2-detection",
|
|
381
413
|
"attack-surface-pentest",
|
|
382
414
|
"defensive-countermeasure-mapping",
|
|
383
415
|
"dlp-gap-analysis",
|
|
384
416
|
"mcp-agent-trust",
|
|
385
|
-
"rag-pipeline-security"
|
|
417
|
+
"rag-pipeline-security",
|
|
418
|
+
"ransomware-response"
|
|
386
419
|
]
|
|
387
420
|
},
|
|
388
421
|
"D3-EHB": {
|
|
@@ -394,9 +427,11 @@
|
|
|
394
427
|
]
|
|
395
428
|
},
|
|
396
429
|
"D3-MFA": {
|
|
397
|
-
"count":
|
|
430
|
+
"count": 4,
|
|
398
431
|
"skills": [
|
|
432
|
+
"cloud-iam-incident",
|
|
399
433
|
"defensive-countermeasure-mapping",
|
|
434
|
+
"idp-incident-response",
|
|
400
435
|
"mcp-agent-trust"
|
|
401
436
|
]
|
|
402
437
|
},
|
|
@@ -458,9 +493,10 @@
|
|
|
458
493
|
]
|
|
459
494
|
},
|
|
460
495
|
"D3-RPA": {
|
|
461
|
-
"count":
|
|
496
|
+
"count": 2,
|
|
462
497
|
"skills": [
|
|
463
|
-
"defensive-countermeasure-mapping"
|
|
498
|
+
"defensive-countermeasure-mapping",
|
|
499
|
+
"ransomware-response"
|
|
464
500
|
]
|
|
465
501
|
},
|
|
466
502
|
"D3-SCP": {
|
|
@@ -468,6 +504,12 @@
|
|
|
468
504
|
"skills": [
|
|
469
505
|
"defensive-countermeasure-mapping"
|
|
470
506
|
]
|
|
507
|
+
},
|
|
508
|
+
"D3-CAA": {
|
|
509
|
+
"count": 1,
|
|
510
|
+
"skills": [
|
|
511
|
+
"cloud-iam-incident"
|
|
512
|
+
]
|
|
471
513
|
}
|
|
472
514
|
},
|
|
473
515
|
"framework_gaps": {
|
|
@@ -895,6 +937,138 @@
|
|
|
895
937
|
"skills": [
|
|
896
938
|
"sector-telecom"
|
|
897
939
|
]
|
|
940
|
+
},
|
|
941
|
+
"OFAC-SDN-Payment-Block": {
|
|
942
|
+
"count": 1,
|
|
943
|
+
"skills": [
|
|
944
|
+
"ransomware-response"
|
|
945
|
+
]
|
|
946
|
+
},
|
|
947
|
+
"Insurance-Carrier-24h-Notification": {
|
|
948
|
+
"count": 1,
|
|
949
|
+
"skills": [
|
|
950
|
+
"ransomware-response"
|
|
951
|
+
]
|
|
952
|
+
},
|
|
953
|
+
"EU-Sanctions-Reg-2014-833-Cyber": {
|
|
954
|
+
"count": 1,
|
|
955
|
+
"skills": [
|
|
956
|
+
"ransomware-response"
|
|
957
|
+
]
|
|
958
|
+
},
|
|
959
|
+
"Immutable-Backup-Recovery": {
|
|
960
|
+
"count": 1,
|
|
961
|
+
"skills": [
|
|
962
|
+
"ransomware-response"
|
|
963
|
+
]
|
|
964
|
+
},
|
|
965
|
+
"Decryptor-Availability-Pre-Decision": {
|
|
966
|
+
"count": 1,
|
|
967
|
+
"skills": [
|
|
968
|
+
"ransomware-response"
|
|
969
|
+
]
|
|
970
|
+
},
|
|
971
|
+
"PHI-Exfil-Before-Encrypt-Breach-Class": {
|
|
972
|
+
"count": 1,
|
|
973
|
+
"skills": [
|
|
974
|
+
"ransomware-response"
|
|
975
|
+
]
|
|
976
|
+
},
|
|
977
|
+
"FedRAMP-IL5-IAM-Federated": {
|
|
978
|
+
"count": 1,
|
|
979
|
+
"skills": [
|
|
980
|
+
"cloud-iam-incident"
|
|
981
|
+
]
|
|
982
|
+
},
|
|
983
|
+
"CISA-Snowflake-AA24-IdP-Cloud": {
|
|
984
|
+
"count": 1,
|
|
985
|
+
"skills": [
|
|
986
|
+
"cloud-iam-incident"
|
|
987
|
+
]
|
|
988
|
+
},
|
|
989
|
+
"NIST-800-53-AC-2-Cross-Account": {
|
|
990
|
+
"count": 1,
|
|
991
|
+
"skills": [
|
|
992
|
+
"cloud-iam-incident"
|
|
993
|
+
]
|
|
994
|
+
},
|
|
995
|
+
"ISO-27017-Cloud-IAM": {
|
|
996
|
+
"count": 1,
|
|
997
|
+
"skills": [
|
|
998
|
+
"cloud-iam-incident"
|
|
999
|
+
]
|
|
1000
|
+
},
|
|
1001
|
+
"SOC2-CC6-Access-Key-Leak-Public-Repo": {
|
|
1002
|
+
"count": 1,
|
|
1003
|
+
"skills": [
|
|
1004
|
+
"cloud-iam-incident"
|
|
1005
|
+
]
|
|
1006
|
+
},
|
|
1007
|
+
"AWS-Security-Hub-Coverage-Gap": {
|
|
1008
|
+
"count": 1,
|
|
1009
|
+
"skills": [
|
|
1010
|
+
"cloud-iam-incident"
|
|
1011
|
+
]
|
|
1012
|
+
},
|
|
1013
|
+
"UK-CAF-B2-Cloud-IAM": {
|
|
1014
|
+
"count": 1,
|
|
1015
|
+
"skills": [
|
|
1016
|
+
"cloud-iam-incident"
|
|
1017
|
+
]
|
|
1018
|
+
},
|
|
1019
|
+
"AU-ISM-1546-Cloud-Service-Account": {
|
|
1020
|
+
"count": 1,
|
|
1021
|
+
"skills": [
|
|
1022
|
+
"cloud-iam-incident"
|
|
1023
|
+
]
|
|
1024
|
+
},
|
|
1025
|
+
"NIST-800-53-IA-5-Federated": {
|
|
1026
|
+
"count": 1,
|
|
1027
|
+
"skills": [
|
|
1028
|
+
"idp-incident-response"
|
|
1029
|
+
]
|
|
1030
|
+
},
|
|
1031
|
+
"ISO-27001-2022-A.5.16-Federated": {
|
|
1032
|
+
"count": 1,
|
|
1033
|
+
"skills": [
|
|
1034
|
+
"idp-incident-response"
|
|
1035
|
+
]
|
|
1036
|
+
},
|
|
1037
|
+
"SOC2-CC6-OAuth-Consent": {
|
|
1038
|
+
"count": 1,
|
|
1039
|
+
"skills": [
|
|
1040
|
+
"idp-incident-response"
|
|
1041
|
+
]
|
|
1042
|
+
},
|
|
1043
|
+
"UK-CAF-B2-IdP-Tenant": {
|
|
1044
|
+
"count": 1,
|
|
1045
|
+
"skills": [
|
|
1046
|
+
"idp-incident-response"
|
|
1047
|
+
]
|
|
1048
|
+
},
|
|
1049
|
+
"AU-ISM-1559-IdP": {
|
|
1050
|
+
"count": 1,
|
|
1051
|
+
"skills": [
|
|
1052
|
+
"idp-incident-response"
|
|
1053
|
+
]
|
|
1054
|
+
},
|
|
1055
|
+
"NIS2-Art-21-Federated-Identity": {
|
|
1056
|
+
"count": 1,
|
|
1057
|
+
"skills": [
|
|
1058
|
+
"idp-incident-response"
|
|
1059
|
+
]
|
|
1060
|
+
},
|
|
1061
|
+
"DORA-Art-19-IdP-4h": {
|
|
1062
|
+
"count": 1,
|
|
1063
|
+
"skills": [
|
|
1064
|
+
"idp-incident-response"
|
|
1065
|
+
]
|
|
1066
|
+
},
|
|
1067
|
+
"OFAC-Sanctions-Threat-Actor-Negotiation": {
|
|
1068
|
+
"count": 1,
|
|
1069
|
+
"skills": [
|
|
1070
|
+
"idp-incident-response"
|
|
1071
|
+
]
|
|
898
1072
|
}
|
|
899
1073
|
},
|
|
900
1074
|
"atlas_refs": {
|
|
@@ -909,11 +1083,12 @@
|
|
|
909
1083
|
]
|
|
910
1084
|
},
|
|
911
1085
|
"AML.T0051": {
|
|
912
|
-
"count":
|
|
1086
|
+
"count": 10,
|
|
913
1087
|
"skills": [
|
|
914
1088
|
"ai-attack-surface",
|
|
915
1089
|
"ai-risk-management",
|
|
916
1090
|
"attack-surface-pentest",
|
|
1091
|
+
"cloud-iam-incident",
|
|
917
1092
|
"dlp-gap-analysis",
|
|
918
1093
|
"identity-assurance",
|
|
919
1094
|
"incident-response-playbook",
|
|
@@ -1022,11 +1197,12 @@
|
|
|
1022
1197
|
]
|
|
1023
1198
|
},
|
|
1024
1199
|
"T1059": {
|
|
1025
|
-
"count":
|
|
1200
|
+
"count": 5,
|
|
1026
1201
|
"skills": [
|
|
1027
1202
|
"ai-attack-surface",
|
|
1028
1203
|
"attack-surface-pentest",
|
|
1029
1204
|
"mcp-agent-trust",
|
|
1205
|
+
"ransomware-response",
|
|
1030
1206
|
"webapp-security"
|
|
1031
1207
|
]
|
|
1032
1208
|
},
|
|
@@ -1090,15 +1266,17 @@
|
|
|
1090
1266
|
]
|
|
1091
1267
|
},
|
|
1092
1268
|
"T1078": {
|
|
1093
|
-
"count":
|
|
1269
|
+
"count": 13,
|
|
1094
1270
|
"skills": [
|
|
1095
1271
|
"age-gates-child-safety",
|
|
1096
1272
|
"api-security",
|
|
1097
1273
|
"attack-surface-pentest",
|
|
1274
|
+
"cloud-iam-incident",
|
|
1098
1275
|
"cloud-security",
|
|
1099
1276
|
"email-security-anti-phishing",
|
|
1100
1277
|
"identity-assurance",
|
|
1101
1278
|
"incident-response-playbook",
|
|
1279
|
+
"ransomware-response",
|
|
1102
1280
|
"sector-energy",
|
|
1103
1281
|
"sector-financial",
|
|
1104
1282
|
"sector-healthcare",
|
|
@@ -1106,12 +1284,13 @@
|
|
|
1106
1284
|
]
|
|
1107
1285
|
},
|
|
1108
1286
|
"T1567": {
|
|
1109
|
-
"count":
|
|
1287
|
+
"count": 7,
|
|
1110
1288
|
"skills": [
|
|
1111
1289
|
"age-gates-child-safety",
|
|
1112
1290
|
"api-security",
|
|
1113
1291
|
"dlp-gap-analysis",
|
|
1114
1292
|
"incident-response-playbook",
|
|
1293
|
+
"ransomware-response",
|
|
1115
1294
|
"sector-financial",
|
|
1116
1295
|
"sector-healthcare"
|
|
1117
1296
|
]
|
|
@@ -1184,9 +1363,10 @@
|
|
|
1184
1363
|
]
|
|
1185
1364
|
},
|
|
1186
1365
|
"T1486": {
|
|
1187
|
-
"count":
|
|
1366
|
+
"count": 3,
|
|
1188
1367
|
"skills": [
|
|
1189
1368
|
"incident-response-playbook",
|
|
1369
|
+
"ransomware-response",
|
|
1190
1370
|
"sector-financial"
|
|
1191
1371
|
]
|
|
1192
1372
|
},
|
|
@@ -1197,8 +1377,9 @@
|
|
|
1197
1377
|
]
|
|
1198
1378
|
},
|
|
1199
1379
|
"T1199": {
|
|
1200
|
-
"count":
|
|
1380
|
+
"count": 2,
|
|
1201
1381
|
"skills": [
|
|
1382
|
+
"idp-incident-response",
|
|
1202
1383
|
"sector-telecom"
|
|
1203
1384
|
]
|
|
1204
1385
|
},
|
|
@@ -1237,6 +1418,50 @@
|
|
|
1237
1418
|
"skills": [
|
|
1238
1419
|
"email-security-anti-phishing"
|
|
1239
1420
|
]
|
|
1421
|
+
},
|
|
1422
|
+
"T1078.004": {
|
|
1423
|
+
"count": 2,
|
|
1424
|
+
"skills": [
|
|
1425
|
+
"cloud-iam-incident",
|
|
1426
|
+
"idp-incident-response"
|
|
1427
|
+
]
|
|
1428
|
+
},
|
|
1429
|
+
"T1098.001": {
|
|
1430
|
+
"count": 2,
|
|
1431
|
+
"skills": [
|
|
1432
|
+
"cloud-iam-incident",
|
|
1433
|
+
"idp-incident-response"
|
|
1434
|
+
]
|
|
1435
|
+
},
|
|
1436
|
+
"T1552.005": {
|
|
1437
|
+
"count": 1,
|
|
1438
|
+
"skills": [
|
|
1439
|
+
"cloud-iam-incident"
|
|
1440
|
+
]
|
|
1441
|
+
},
|
|
1442
|
+
"T1580": {
|
|
1443
|
+
"count": 1,
|
|
1444
|
+
"skills": [
|
|
1445
|
+
"cloud-iam-incident"
|
|
1446
|
+
]
|
|
1447
|
+
},
|
|
1448
|
+
"T1538": {
|
|
1449
|
+
"count": 1,
|
|
1450
|
+
"skills": [
|
|
1451
|
+
"cloud-iam-incident"
|
|
1452
|
+
]
|
|
1453
|
+
},
|
|
1454
|
+
"T1556.007": {
|
|
1455
|
+
"count": 1,
|
|
1456
|
+
"skills": [
|
|
1457
|
+
"idp-incident-response"
|
|
1458
|
+
]
|
|
1459
|
+
},
|
|
1460
|
+
"T1606.002": {
|
|
1461
|
+
"count": 1,
|
|
1462
|
+
"skills": [
|
|
1463
|
+
"idp-incident-response"
|
|
1464
|
+
]
|
|
1240
1465
|
}
|
|
1241
1466
|
},
|
|
1242
1467
|
"rfc_refs": {
|
|
@@ -1267,11 +1492,13 @@
|
|
|
1267
1492
|
]
|
|
1268
1493
|
},
|
|
1269
1494
|
"RFC-7519": {
|
|
1270
|
-
"count":
|
|
1495
|
+
"count": 9,
|
|
1271
1496
|
"skills": [
|
|
1272
1497
|
"api-security",
|
|
1498
|
+
"cloud-iam-incident",
|
|
1273
1499
|
"cloud-security",
|
|
1274
1500
|
"identity-assurance",
|
|
1501
|
+
"idp-incident-response",
|
|
1275
1502
|
"mcp-agent-trust",
|
|
1276
1503
|
"sector-financial",
|
|
1277
1504
|
"sector-healthcare",
|
|
@@ -1294,11 +1521,13 @@
|
|
|
1294
1521
|
]
|
|
1295
1522
|
},
|
|
1296
1523
|
"RFC-8725": {
|
|
1297
|
-
"count":
|
|
1524
|
+
"count": 8,
|
|
1298
1525
|
"skills": [
|
|
1299
1526
|
"api-security",
|
|
1527
|
+
"cloud-iam-incident",
|
|
1300
1528
|
"cloud-security",
|
|
1301
1529
|
"identity-assurance",
|
|
1530
|
+
"idp-incident-response",
|
|
1302
1531
|
"mcp-agent-trust",
|
|
1303
1532
|
"sector-financial",
|
|
1304
1533
|
"webapp-security"
|
|
@@ -1314,10 +1543,11 @@
|
|
|
1314
1543
|
]
|
|
1315
1544
|
},
|
|
1316
1545
|
"RFC-9421": {
|
|
1317
|
-
"count":
|
|
1546
|
+
"count": 6,
|
|
1318
1547
|
"skills": [
|
|
1319
1548
|
"ai-c2-detection",
|
|
1320
1549
|
"api-security",
|
|
1550
|
+
"idp-incident-response",
|
|
1321
1551
|
"mcp-agent-trust",
|
|
1322
1552
|
"sector-financial",
|
|
1323
1553
|
"sector-healthcare"
|
|
@@ -1398,6 +1628,24 @@
|
|
|
1398
1628
|
"skills": [
|
|
1399
1629
|
"sector-telecom"
|
|
1400
1630
|
]
|
|
1631
|
+
},
|
|
1632
|
+
"RFC-8693": {
|
|
1633
|
+
"count": 1,
|
|
1634
|
+
"skills": [
|
|
1635
|
+
"cloud-iam-incident"
|
|
1636
|
+
]
|
|
1637
|
+
},
|
|
1638
|
+
"RFC-9068": {
|
|
1639
|
+
"count": 1,
|
|
1640
|
+
"skills": [
|
|
1641
|
+
"cloud-iam-incident"
|
|
1642
|
+
]
|
|
1643
|
+
},
|
|
1644
|
+
"RFC-7591": {
|
|
1645
|
+
"count": 1,
|
|
1646
|
+
"skills": [
|
|
1647
|
+
"idp-incident-response"
|
|
1648
|
+
]
|
|
1401
1649
|
}
|
|
1402
1650
|
},
|
|
1403
1651
|
"dlp_refs": {}
|
|
@@ -1406,13 +1654,16 @@
|
|
|
1406
1654
|
"cwe_refs": [
|
|
1407
1655
|
{
|
|
1408
1656
|
"id": "CWE-287",
|
|
1409
|
-
"count":
|
|
1657
|
+
"count": 13,
|
|
1410
1658
|
"skills": [
|
|
1411
1659
|
"age-gates-child-safety",
|
|
1412
1660
|
"api-security",
|
|
1661
|
+
"cloud-iam-incident",
|
|
1413
1662
|
"cloud-security",
|
|
1414
1663
|
"identity-assurance",
|
|
1664
|
+
"idp-incident-response",
|
|
1415
1665
|
"ot-ics-security",
|
|
1666
|
+
"ransomware-response",
|
|
1416
1667
|
"sector-energy",
|
|
1417
1668
|
"sector-financial",
|
|
1418
1669
|
"sector-healthcare",
|
|
@@ -1420,6 +1671,19 @@
|
|
|
1420
1671
|
"webapp-security"
|
|
1421
1672
|
]
|
|
1422
1673
|
},
|
|
1674
|
+
{
|
|
1675
|
+
"id": "CWE-798",
|
|
1676
|
+
"count": 7,
|
|
1677
|
+
"skills": [
|
|
1678
|
+
"cloud-iam-incident",
|
|
1679
|
+
"cloud-security",
|
|
1680
|
+
"identity-assurance",
|
|
1681
|
+
"ot-ics-security",
|
|
1682
|
+
"ransomware-response",
|
|
1683
|
+
"sector-energy",
|
|
1684
|
+
"sector-financial"
|
|
1685
|
+
]
|
|
1686
|
+
},
|
|
1423
1687
|
{
|
|
1424
1688
|
"id": "CWE-862",
|
|
1425
1689
|
"count": 7,
|
|
@@ -1482,21 +1746,23 @@
|
|
|
1482
1746
|
]
|
|
1483
1747
|
},
|
|
1484
1748
|
{
|
|
1485
|
-
"id": "CWE-
|
|
1486
|
-
"count":
|
|
1749
|
+
"id": "CWE-269",
|
|
1750
|
+
"count": 6,
|
|
1487
1751
|
"skills": [
|
|
1488
|
-
"api-security",
|
|
1489
1752
|
"attack-surface-pentest",
|
|
1490
|
-
"
|
|
1491
|
-
"
|
|
1753
|
+
"cloud-iam-incident",
|
|
1754
|
+
"container-runtime-security",
|
|
1755
|
+
"identity-assurance",
|
|
1756
|
+
"idp-incident-response",
|
|
1492
1757
|
"webapp-security"
|
|
1493
1758
|
]
|
|
1494
1759
|
},
|
|
1495
1760
|
{
|
|
1496
1761
|
"id": "CWE-732",
|
|
1497
|
-
"count":
|
|
1762
|
+
"count": 6,
|
|
1498
1763
|
"skills": [
|
|
1499
1764
|
"attack-surface-pentest",
|
|
1765
|
+
"cloud-iam-incident",
|
|
1500
1766
|
"cloud-security",
|
|
1501
1767
|
"container-runtime-security",
|
|
1502
1768
|
"identity-assurance",
|
|
@@ -1504,99 +1770,108 @@
|
|
|
1504
1770
|
]
|
|
1505
1771
|
},
|
|
1506
1772
|
{
|
|
1507
|
-
"id": "CWE-
|
|
1508
|
-
"count":
|
|
1509
|
-
"skills": [
|
|
1510
|
-
"cloud-security",
|
|
1511
|
-
"identity-assurance",
|
|
1512
|
-
"ot-ics-security",
|
|
1513
|
-
"sector-energy",
|
|
1514
|
-
"sector-financial"
|
|
1515
|
-
]
|
|
1516
|
-
},
|
|
1517
|
-
{
|
|
1518
|
-
"id": "CWE-918",
|
|
1519
|
-
"count": 5,
|
|
1773
|
+
"id": "CWE-863",
|
|
1774
|
+
"count": 6,
|
|
1520
1775
|
"skills": [
|
|
1521
1776
|
"api-security",
|
|
1522
|
-
"
|
|
1523
|
-
"
|
|
1524
|
-
"
|
|
1777
|
+
"cloud-iam-incident",
|
|
1778
|
+
"identity-assurance",
|
|
1779
|
+
"idp-incident-response",
|
|
1780
|
+
"sector-financial",
|
|
1525
1781
|
"webapp-security"
|
|
1526
1782
|
]
|
|
1527
1783
|
}
|
|
1528
1784
|
],
|
|
1529
1785
|
"d3fend_refs": [
|
|
1530
|
-
{
|
|
1531
|
-
"id": "D3-EAL",
|
|
1532
|
-
"count": 7,
|
|
1533
|
-
"skills": [
|
|
1534
|
-
"attack-surface-pentest",
|
|
1535
|
-
"defensive-countermeasure-mapping",
|
|
1536
|
-
"dlp-gap-analysis",
|
|
1537
|
-
"fuzz-testing-strategy",
|
|
1538
|
-
"kernel-lpe-triage",
|
|
1539
|
-
"mcp-agent-trust",
|
|
1540
|
-
"supply-chain-integrity"
|
|
1541
|
-
]
|
|
1542
|
-
},
|
|
1543
1786
|
{
|
|
1544
1787
|
"id": "D3-IOPR",
|
|
1545
|
-
"count":
|
|
1788
|
+
"count": 10,
|
|
1546
1789
|
"skills": [
|
|
1547
1790
|
"ai-attack-surface",
|
|
1548
1791
|
"ai-c2-detection",
|
|
1792
|
+
"cloud-iam-incident",
|
|
1549
1793
|
"defensive-countermeasure-mapping",
|
|
1550
1794
|
"dlp-gap-analysis",
|
|
1551
1795
|
"fuzz-testing-strategy",
|
|
1796
|
+
"idp-incident-response",
|
|
1552
1797
|
"rag-pipeline-security",
|
|
1798
|
+
"ransomware-response",
|
|
1553
1799
|
"sector-telecom"
|
|
1554
1800
|
]
|
|
1555
1801
|
},
|
|
1556
1802
|
{
|
|
1557
1803
|
"id": "D3-NTA",
|
|
1558
|
-
"count":
|
|
1804
|
+
"count": 10,
|
|
1559
1805
|
"skills": [
|
|
1560
1806
|
"ai-attack-surface",
|
|
1561
1807
|
"ai-c2-detection",
|
|
1562
1808
|
"attack-surface-pentest",
|
|
1809
|
+
"cloud-iam-incident",
|
|
1563
1810
|
"defensive-countermeasure-mapping",
|
|
1564
1811
|
"dlp-gap-analysis",
|
|
1812
|
+
"idp-incident-response",
|
|
1565
1813
|
"rag-pipeline-security",
|
|
1814
|
+
"ransomware-response",
|
|
1566
1815
|
"sector-telecom"
|
|
1567
1816
|
]
|
|
1568
1817
|
},
|
|
1569
1818
|
{
|
|
1570
1819
|
"id": "D3-CSPP",
|
|
1571
|
-
"count":
|
|
1820
|
+
"count": 7,
|
|
1572
1821
|
"skills": [
|
|
1573
1822
|
"ai-c2-detection",
|
|
1574
1823
|
"attack-surface-pentest",
|
|
1575
1824
|
"defensive-countermeasure-mapping",
|
|
1576
1825
|
"dlp-gap-analysis",
|
|
1577
1826
|
"mcp-agent-trust",
|
|
1578
|
-
"rag-pipeline-security"
|
|
1827
|
+
"rag-pipeline-security",
|
|
1828
|
+
"ransomware-response"
|
|
1579
1829
|
]
|
|
1580
1830
|
},
|
|
1581
1831
|
{
|
|
1582
|
-
"id": "D3-
|
|
1583
|
-
"count":
|
|
1832
|
+
"id": "D3-EAL",
|
|
1833
|
+
"count": 7,
|
|
1584
1834
|
"skills": [
|
|
1585
|
-
"
|
|
1835
|
+
"attack-surface-pentest",
|
|
1586
1836
|
"defensive-countermeasure-mapping",
|
|
1587
1837
|
"dlp-gap-analysis",
|
|
1588
|
-
"
|
|
1838
|
+
"fuzz-testing-strategy",
|
|
1839
|
+
"kernel-lpe-triage",
|
|
1840
|
+
"mcp-agent-trust",
|
|
1841
|
+
"supply-chain-integrity"
|
|
1589
1842
|
]
|
|
1590
1843
|
},
|
|
1591
1844
|
{
|
|
1592
1845
|
"id": "D3-CBAN",
|
|
1593
|
-
"count":
|
|
1846
|
+
"count": 5,
|
|
1594
1847
|
"skills": [
|
|
1848
|
+
"cloud-iam-incident",
|
|
1595
1849
|
"defensive-countermeasure-mapping",
|
|
1850
|
+
"idp-incident-response",
|
|
1596
1851
|
"mcp-agent-trust",
|
|
1597
1852
|
"supply-chain-integrity"
|
|
1598
1853
|
]
|
|
1599
1854
|
},
|
|
1855
|
+
{
|
|
1856
|
+
"id": "D3-MFA",
|
|
1857
|
+
"count": 4,
|
|
1858
|
+
"skills": [
|
|
1859
|
+
"cloud-iam-incident",
|
|
1860
|
+
"defensive-countermeasure-mapping",
|
|
1861
|
+
"idp-incident-response",
|
|
1862
|
+
"mcp-agent-trust"
|
|
1863
|
+
]
|
|
1864
|
+
},
|
|
1865
|
+
{
|
|
1866
|
+
"id": "D3-NTPM",
|
|
1867
|
+
"count": 4,
|
|
1868
|
+
"skills": [
|
|
1869
|
+
"ai-c2-detection",
|
|
1870
|
+
"defensive-countermeasure-mapping",
|
|
1871
|
+
"dlp-gap-analysis",
|
|
1872
|
+
"sector-telecom"
|
|
1873
|
+
]
|
|
1874
|
+
},
|
|
1600
1875
|
{
|
|
1601
1876
|
"id": "D3-EHB",
|
|
1602
1877
|
"count": 3,
|
|
@@ -1623,14 +1898,6 @@
|
|
|
1623
1898
|
"fuzz-testing-strategy",
|
|
1624
1899
|
"kernel-lpe-triage"
|
|
1625
1900
|
]
|
|
1626
|
-
},
|
|
1627
|
-
{
|
|
1628
|
-
"id": "D3-ASLR",
|
|
1629
|
-
"count": 2,
|
|
1630
|
-
"skills": [
|
|
1631
|
-
"defensive-countermeasure-mapping",
|
|
1632
|
-
"kernel-lpe-triage"
|
|
1633
|
-
]
|
|
1634
1901
|
}
|
|
1635
1902
|
],
|
|
1636
1903
|
"framework_gaps": [
|
|
@@ -1764,11 +2031,12 @@
|
|
|
1764
2031
|
},
|
|
1765
2032
|
{
|
|
1766
2033
|
"id": "AML.T0051",
|
|
1767
|
-
"count":
|
|
2034
|
+
"count": 10,
|
|
1768
2035
|
"skills": [
|
|
1769
2036
|
"ai-attack-surface",
|
|
1770
2037
|
"ai-risk-management",
|
|
1771
2038
|
"attack-surface-pentest",
|
|
2039
|
+
"cloud-iam-incident",
|
|
1772
2040
|
"dlp-gap-analysis",
|
|
1773
2041
|
"identity-assurance",
|
|
1774
2042
|
"incident-response-playbook",
|
|
@@ -1859,60 +2127,64 @@
|
|
|
1859
2127
|
],
|
|
1860
2128
|
"attack_refs": [
|
|
1861
2129
|
{
|
|
1862
|
-
"id": "
|
|
2130
|
+
"id": "T1078",
|
|
1863
2131
|
"count": 13,
|
|
1864
2132
|
"skills": [
|
|
1865
|
-
"
|
|
2133
|
+
"age-gates-child-safety",
|
|
1866
2134
|
"api-security",
|
|
1867
2135
|
"attack-surface-pentest",
|
|
2136
|
+
"cloud-iam-incident",
|
|
1868
2137
|
"cloud-security",
|
|
1869
|
-
"
|
|
1870
|
-
"
|
|
1871
|
-
"
|
|
1872
|
-
"
|
|
2138
|
+
"email-security-anti-phishing",
|
|
2139
|
+
"identity-assurance",
|
|
2140
|
+
"incident-response-playbook",
|
|
2141
|
+
"ransomware-response",
|
|
1873
2142
|
"sector-energy",
|
|
1874
|
-
"sector-federal-government",
|
|
1875
2143
|
"sector-financial",
|
|
1876
|
-
"sector-
|
|
1877
|
-
"
|
|
2144
|
+
"sector-healthcare",
|
|
2145
|
+
"sector-telecom"
|
|
1878
2146
|
]
|
|
1879
2147
|
},
|
|
1880
2148
|
{
|
|
1881
|
-
"id": "
|
|
1882
|
-
"count":
|
|
2149
|
+
"id": "T1190",
|
|
2150
|
+
"count": 13,
|
|
1883
2151
|
"skills": [
|
|
1884
|
-
"
|
|
2152
|
+
"ai-attack-surface",
|
|
1885
2153
|
"api-security",
|
|
1886
2154
|
"attack-surface-pentest",
|
|
1887
2155
|
"cloud-security",
|
|
1888
|
-
"
|
|
1889
|
-
"
|
|
1890
|
-
"
|
|
2156
|
+
"container-runtime-security",
|
|
2157
|
+
"fuzz-testing-strategy",
|
|
2158
|
+
"mcp-agent-trust",
|
|
2159
|
+
"ot-ics-security",
|
|
1891
2160
|
"sector-energy",
|
|
2161
|
+
"sector-federal-government",
|
|
1892
2162
|
"sector-financial",
|
|
1893
|
-
"sector-
|
|
1894
|
-
"
|
|
2163
|
+
"sector-telecom",
|
|
2164
|
+
"webapp-security"
|
|
1895
2165
|
]
|
|
1896
2166
|
},
|
|
1897
2167
|
{
|
|
1898
2168
|
"id": "T1567",
|
|
1899
|
-
"count":
|
|
2169
|
+
"count": 7,
|
|
1900
2170
|
"skills": [
|
|
1901
2171
|
"age-gates-child-safety",
|
|
1902
2172
|
"api-security",
|
|
1903
2173
|
"dlp-gap-analysis",
|
|
1904
2174
|
"incident-response-playbook",
|
|
2175
|
+
"ransomware-response",
|
|
1905
2176
|
"sector-financial",
|
|
1906
2177
|
"sector-healthcare"
|
|
1907
2178
|
]
|
|
1908
2179
|
},
|
|
1909
2180
|
{
|
|
1910
2181
|
"id": "T1059",
|
|
1911
|
-
"count":
|
|
2182
|
+
"count": 5,
|
|
1912
2183
|
"skills": [
|
|
1913
2184
|
"ai-attack-surface",
|
|
1914
2185
|
"attack-surface-pentest",
|
|
1915
2186
|
"mcp-agent-trust",
|
|
2187
|
+
"ransomware-response",
|
|
1916
2188
|
"webapp-security"
|
|
1917
2189
|
]
|
|
1918
2190
|
},
|
|
@@ -1935,6 +2207,15 @@
|
|
|
1935
2207
|
"ot-ics-security"
|
|
1936
2208
|
]
|
|
1937
2209
|
},
|
|
2210
|
+
{
|
|
2211
|
+
"id": "T1486",
|
|
2212
|
+
"count": 3,
|
|
2213
|
+
"skills": [
|
|
2214
|
+
"incident-response-playbook",
|
|
2215
|
+
"ransomware-response",
|
|
2216
|
+
"sector-financial"
|
|
2217
|
+
]
|
|
2218
|
+
},
|
|
1938
2219
|
{
|
|
1939
2220
|
"id": "T1530",
|
|
1940
2221
|
"count": 3,
|
|
@@ -1959,14 +2240,6 @@
|
|
|
1959
2240
|
"ot-ics-security",
|
|
1960
2241
|
"sector-energy"
|
|
1961
2242
|
]
|
|
1962
|
-
},
|
|
1963
|
-
{
|
|
1964
|
-
"id": "T1041",
|
|
1965
|
-
"count": 2,
|
|
1966
|
-
"skills": [
|
|
1967
|
-
"dlp-gap-analysis",
|
|
1968
|
-
"incident-response-playbook"
|
|
1969
|
-
]
|
|
1970
2243
|
}
|
|
1971
2244
|
],
|
|
1972
2245
|
"rfc_refs": [
|
|
@@ -1988,17 +2261,33 @@
|
|
|
1988
2261
|
},
|
|
1989
2262
|
{
|
|
1990
2263
|
"id": "RFC-7519",
|
|
1991
|
-
"count":
|
|
2264
|
+
"count": 9,
|
|
1992
2265
|
"skills": [
|
|
1993
2266
|
"api-security",
|
|
2267
|
+
"cloud-iam-incident",
|
|
1994
2268
|
"cloud-security",
|
|
1995
2269
|
"identity-assurance",
|
|
2270
|
+
"idp-incident-response",
|
|
1996
2271
|
"mcp-agent-trust",
|
|
1997
2272
|
"sector-financial",
|
|
1998
2273
|
"sector-healthcare",
|
|
1999
2274
|
"webapp-security"
|
|
2000
2275
|
]
|
|
2001
2276
|
},
|
|
2277
|
+
{
|
|
2278
|
+
"id": "RFC-8725",
|
|
2279
|
+
"count": 8,
|
|
2280
|
+
"skills": [
|
|
2281
|
+
"api-security",
|
|
2282
|
+
"cloud-iam-incident",
|
|
2283
|
+
"cloud-security",
|
|
2284
|
+
"identity-assurance",
|
|
2285
|
+
"idp-incident-response",
|
|
2286
|
+
"mcp-agent-trust",
|
|
2287
|
+
"sector-financial",
|
|
2288
|
+
"webapp-security"
|
|
2289
|
+
]
|
|
2290
|
+
},
|
|
2002
2291
|
{
|
|
2003
2292
|
"id": "RFC-8032",
|
|
2004
2293
|
"count": 6,
|
|
@@ -2011,24 +2300,13 @@
|
|
|
2011
2300
|
"supply-chain-integrity"
|
|
2012
2301
|
]
|
|
2013
2302
|
},
|
|
2014
|
-
{
|
|
2015
|
-
"id": "RFC-8725",
|
|
2016
|
-
"count": 6,
|
|
2017
|
-
"skills": [
|
|
2018
|
-
"api-security",
|
|
2019
|
-
"cloud-security",
|
|
2020
|
-
"identity-assurance",
|
|
2021
|
-
"mcp-agent-trust",
|
|
2022
|
-
"sector-financial",
|
|
2023
|
-
"webapp-security"
|
|
2024
|
-
]
|
|
2025
|
-
},
|
|
2026
2303
|
{
|
|
2027
2304
|
"id": "RFC-9421",
|
|
2028
|
-
"count":
|
|
2305
|
+
"count": 6,
|
|
2029
2306
|
"skills": [
|
|
2030
2307
|
"ai-c2-detection",
|
|
2031
2308
|
"api-security",
|
|
2309
|
+
"idp-incident-response",
|
|
2032
2310
|
"mcp-agent-trust",
|
|
2033
2311
|
"sector-financial",
|
|
2034
2312
|
"sector-healthcare"
|
|
@@ -2085,37 +2363,59 @@
|
|
|
2085
2363
|
"orphan_adjacent": {
|
|
2086
2364
|
"cwe_refs": [
|
|
2087
2365
|
"CWE-20",
|
|
2366
|
+
"CWE-284",
|
|
2088
2367
|
"CWE-327",
|
|
2089
|
-
"CWE-345",
|
|
2090
2368
|
"CWE-672"
|
|
2091
2369
|
],
|
|
2092
2370
|
"d3fend_refs": [
|
|
2371
|
+
"D3-CAA",
|
|
2093
2372
|
"D3-FAPA",
|
|
2094
2373
|
"D3-PA",
|
|
2095
|
-
"D3-RPA",
|
|
2096
2374
|
"D3-SCP"
|
|
2097
2375
|
],
|
|
2098
2376
|
"framework_gaps": [
|
|
2099
2377
|
"3GPP-TR-33.926",
|
|
2100
2378
|
"ALL-MCP-TOOL-TRUST",
|
|
2379
|
+
"AU-ISM-1546-Cloud-Service-Account",
|
|
2101
2380
|
"AU-ISM-1556",
|
|
2381
|
+
"AU-ISM-1559-IdP",
|
|
2382
|
+
"AWS-Security-Hub-Coverage-Gap",
|
|
2383
|
+
"CISA-Snowflake-AA24-IdP-Cloud",
|
|
2102
2384
|
"CWE-Top-25-2024-meta",
|
|
2103
2385
|
"CycloneDX-v1.6-SBOM",
|
|
2386
|
+
"DORA-Art-19-IdP-4h",
|
|
2104
2387
|
"DORA-Art-21-Telecom-ICT",
|
|
2388
|
+
"Decryptor-Availability-Pre-Decision",
|
|
2389
|
+
"EU-Sanctions-Reg-2014-833-Cyber",
|
|
2105
2390
|
"FCC-CPNI-4.1",
|
|
2106
2391
|
"FCC-Cyber-Incident-Notification-2024",
|
|
2392
|
+
"FedRAMP-IL5-IAM-Federated",
|
|
2107
2393
|
"GSMA-NESAS-Deployment",
|
|
2394
|
+
"ISO-27001-2022-A.5.16-Federated",
|
|
2395
|
+
"ISO-27017-Cloud-IAM",
|
|
2108
2396
|
"ITU-T-X.805",
|
|
2397
|
+
"Immutable-Backup-Recovery",
|
|
2398
|
+
"Insurance-Carrier-24h-Notification",
|
|
2109
2399
|
"NIS2-Annex-I-Telecom",
|
|
2400
|
+
"NIS2-Art-21-Federated-Identity",
|
|
2401
|
+
"NIST-800-53-AC-2-Cross-Account",
|
|
2402
|
+
"NIST-800-53-IA-5-Federated",
|
|
2110
2403
|
"NIST-800-53-SI-12",
|
|
2111
2404
|
"NIST-800-53-SI-2",
|
|
2112
2405
|
"NIST-800-63B-rev4",
|
|
2406
|
+
"OFAC-SDN-Payment-Block",
|
|
2407
|
+
"OFAC-Sanctions-Threat-Actor-Negotiation",
|
|
2113
2408
|
"OWASP-LLM-Top-10-2025-LLM02",
|
|
2114
2409
|
"OWASP-LLM-Top-10-2025-LLM06",
|
|
2115
2410
|
"OWASP-Pen-Testing-Guide-v5",
|
|
2116
2411
|
"PCI-DSS-4.0-6.3.3",
|
|
2412
|
+
"PHI-Exfil-Before-Encrypt-Breach-Class",
|
|
2117
2413
|
"PTES-Pre-engagement",
|
|
2414
|
+
"SOC2-CC6-Access-Key-Leak-Public-Repo",
|
|
2415
|
+
"SOC2-CC6-OAuth-Consent",
|
|
2118
2416
|
"SPDX-v3.0-SBOM",
|
|
2417
|
+
"UK-CAF-B2-Cloud-IAM",
|
|
2418
|
+
"UK-CAF-B2-IdP-Tenant",
|
|
2119
2419
|
"UK-CAF-B5",
|
|
2120
2420
|
"VEX-CSAF-v2.1"
|
|
2121
2421
|
],
|
|
@@ -2128,15 +2428,19 @@
|
|
|
2128
2428
|
"T1110",
|
|
2129
2429
|
"T1133",
|
|
2130
2430
|
"T1195.002",
|
|
2131
|
-
"T1199",
|
|
2132
2431
|
"T1213",
|
|
2133
2432
|
"T1505",
|
|
2433
|
+
"T1538",
|
|
2134
2434
|
"T1548.001",
|
|
2135
2435
|
"T1552",
|
|
2436
|
+
"T1552.005",
|
|
2437
|
+
"T1556.007",
|
|
2136
2438
|
"T1566.001",
|
|
2137
2439
|
"T1566.002",
|
|
2138
2440
|
"T1566.003",
|
|
2139
2441
|
"T1568",
|
|
2442
|
+
"T1580",
|
|
2443
|
+
"T1606.002",
|
|
2140
2444
|
"T1610",
|
|
2141
2445
|
"T1611"
|
|
2142
2446
|
],
|
|
@@ -2146,7 +2450,10 @@
|
|
|
2146
2450
|
"RFC-4301",
|
|
2147
2451
|
"RFC-4303",
|
|
2148
2452
|
"RFC-7296",
|
|
2453
|
+
"RFC-7591",
|
|
2454
|
+
"RFC-8693",
|
|
2149
2455
|
"RFC-9000",
|
|
2456
|
+
"RFC-9068",
|
|
2150
2457
|
"RFC-9106",
|
|
2151
2458
|
"RFC-9420",
|
|
2152
2459
|
"RFC-9622",
|
|
@@ -2159,7 +2466,6 @@
|
|
|
2159
2466
|
"CWE-123",
|
|
2160
2467
|
"CWE-250",
|
|
2161
2468
|
"CWE-256",
|
|
2162
|
-
"CWE-284",
|
|
2163
2469
|
"CWE-310",
|
|
2164
2470
|
"CWE-312",
|
|
2165
2471
|
"CWE-326",
|
|
@@ -2171,7 +2477,6 @@
|
|
|
2171
2477
|
"CWE-353",
|
|
2172
2478
|
"CWE-426",
|
|
2173
2479
|
"CWE-506",
|
|
2174
|
-
"CWE-522",
|
|
2175
2480
|
"CWE-669",
|
|
2176
2481
|
"CWE-759",
|
|
2177
2482
|
"CWE-760",
|
|
@@ -2202,7 +2507,6 @@
|
|
|
2202
2507
|
],
|
|
2203
2508
|
"d3fend_refs": [
|
|
2204
2509
|
"D3-ANCI",
|
|
2205
|
-
"D3-CAA",
|
|
2206
2510
|
"D3-CH",
|
|
2207
2511
|
"D3-EI",
|
|
2208
2512
|
"D3-FCR",
|