@blamejs/exceptd-skills 0.13.5 → 0.13.7

package/data/_indexes/frequency.json

@@ -2485,9 +2485,12 @@
     ],
     "atlas_refs": [
       "AML.T0001",
+      "AML.T0007",
+      "AML.T0011",
       "AML.T0011.002",
       "AML.T0024",
       "AML.T0044",
+      "AML.T0047",
       "AML.T0048",
       "AML.T0053",
       "AML.T0055",
@@ -2516,6 +2519,7 @@
       "D3-SFA"
     ],
     "framework_gaps": [
+      "ATLAS-AML.T0048",
       "AU-Essential-8-App-Hardening",
       "AU-Essential-8-Backup",
       "AU-Essential-8-MFA",
@@ -2523,55 +2527,96 @@
       "AU-ISM-1546",
       "AU-ISM-1808",
       "CIS-Controls-v8-10.1",
+      "CIS-Controls-v8-7.4",
       "CIS-Controls-v8-Control6",
       "CIS-Kubernetes-Benchmark-4.2.13",
       "CIS-Kubernetes-Benchmark-5.3",
       "CIS-Kubernetes-Benchmark-5.7",
       "DORA-Art-9",
+      "DORA-Art10",
       "DORA-Art28",
       "DORA-IA-CTPP-Oversight",
       "DORA-ITS-TLPT",
       "DORA-RTS-Incident-Classification",
       "DORA-RTS-Subcontracting",
+      "ENISA-IoT-security-baseline",
+      "ENISA-mobile-secure-baseline",
       "EU-AI-Act-Annex-IX-Conformity",
       "EU-AI-Act-Art-15",
       "EU-AI-Act-Art-53-GPAI",
       "EU-AI-Act-Art-55-Systemic",
+      "EU-AI-Act-Art10",
+      "EU-AI-Act-Art15",
       "EU-AI-Act-GPAI-CoP",
       "EU-CRA-Art13",
+      "FedRAMP-AC-3",
+      "FedRAMP-AC-4",
+      "FedRAMP-SC-4",
+      "FedRAMP-SC-7",
+      "GDPR-Art32",
       "HIPAA-Security-Rule-2026-NPRM-164.308",
       "HIPAA-Security-Rule-2026-NPRM-164.310",
       "HIPAA-Security-Rule-2026-NPRM-164.312",
       "HIPAA-Security-Rule-2026-NPRM-164.314",
       "ISO-27001-2022-A.5.15",
+      "ISO-27001-2022-A.5.21",
       "ISO-27001-2022-A.5.7",
       "ISO-27001-2022-A.8.13",
+      "ISO-27001-2022-A.8.15",
+      "ISO-27001-2022-A.8.21",
       "ISO-27001-2022-A.8.22",
+      "ISO-27001-2022-A.8.24",
       "ISO-27001-2022-A.8.7",
+      "ISO-27001-2022-A.8.9",
+      "ISO-IEC-42001-AIMS",
+      "ISO-IEC-42001-AIMS-A.6.2.5",
+      "NIS2-Art21-availability",
       "NIS2-Art21-business-continuity",
       "NIS2-Art21-identity-management",
       "NIS2-Art21-incident-handling",
       "NIS2-Art21-network-security",
       "NIS2-Art21-supply-chain",
       "NIS2-Art21-vulnerability-management",
+      "NIST-800-218-SSDF-PO.4.2",
       "NIST-800-218-SSDF-PW.4",
+      "NIST-800-218-SSDF-PW.7.1",
       "NIST-800-53-AC-3",
       "NIST-800-53-AC-6",
+      "NIST-800-53-AU-9",
       "NIST-800-53-IA-2",
+      "NIST-800-53-IA-8",
       "NIST-800-53-SC-39",
       "NIST-800-53-SC-44",
+      "NIST-800-53-SC-5",
       "NIST-800-53-SI-10",
       "NIST-800-53-SR-3",
       "NIST-AI-RMF-MAP-3.4",
       "NIST-AI-RMF-MEASURE-2.7",
+      "OWASP-API-Security-Top-10-API4:2023",
+      "OWASP-API-Security-Top-10-API8:2023",
       "OWASP-LLM-Top-10-2025-LLM05",
+      "OWASP-LLM-Top-10-LLM01",
+      "OWASP-LLM-Top-10-LLM02",
+      "OWASP-LLM-Top-10-LLM05",
+      "OWASP-LLM-Top-10-LLM06",
+      "OWASP-LLM-Top-10-LLM07",
       "OWASP-ML-Top-10-2023-ML06",
+      "OWASP-SAMM-Code-Review",
+      "OWASP-Top-10-2021-A03",
       "OWASP-Top-10-2021-A06",
+      "OWASP-Top-10-2021-A10",
+      "OpenSSF-Scorecard-PinnedDependenciesID",
+      "PCI-DSS-4.0-10.5",
+      "PCI-DSS-4.0-2.2.3",
+      "PCI-DSS-4.0-3.5",
       "PCI-DSS-4.0-5.1",
+      "PCI-DSS-4.0-6.2.4",
+      "PCI-DSS-4.0-6.3.2",
       "PCI-DSS-4.0.1-11.6.1",
       "PCI-DSS-4.0.1-12.10.7",
       "PCI-DSS-4.0.1-12.3.3",
       "PCI-DSS-4.0.1-6.4.3",
+      "SLSA-3",
       "SLSA-v1.0-Source-L3",
       "UK-CAF-A1",
       "UK-CAF-B2",

package/data/atlas-ttps.json

@@ -85,6 +85,7 @@
     "maturity": "high",
     "last_verified": "2026-05-15",
     "cve_refs": [
+      "CVE-2025-68664",
       "CVE-2026-30623",
       "CVE-2026-42945"
     ]
@@ -127,11 +128,14 @@
     "maturity": "high",
     "last_verified": "2026-05-15",
     "cve_refs": [
+      "CVE-2026-22778",
       "CVE-2026-30615",
       "CVE-2026-39987",
       "CVE-2026-45321",
+      "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
       "MAL-2026-3083",
       "MAL-2026-NODE-IPC-STEALER",
+      "MAL-2026-RUBYGEMS-BUFFERZONECORP-SLEEPER",
       "MAL-2026-SHAI-HULUD-OSS",
       "MAL-2026-TANSTACK-MINI"
     ]
@@ -307,7 +311,13 @@
     "exceptd_skills": [],
     "secure_ai_v2_layer": true,
     "maturity": "high",
-    "last_verified": "2026-05-15"
+    "last_verified": "2026-05-15",
+    "cve_refs": [
+      "CVE-2025-10725",
+      "CVE-2025-53767",
+      "CVE-2025-6965",
+      "MAL-2025-AI-FOUND-FFMPEG-BIGSLEEP"
+    ]
   },
   "AML.T0043": {
     "id": "AML.T0043",
@@ -405,6 +415,7 @@
     "maturity": "moderate",
     "last_verified": "2026-05-15",
     "cve_refs": [
+      "CVE-2026-22778",
       "CVE-2026-45321"
     ]
   },
@@ -450,6 +461,8 @@
     "last_verified": "2026-05-15",
     "cve_refs": [
       "CVE-2025-53773",
+      "CVE-2025-55319",
+      "CVE-2025-68664",
       "CVE-2026-30615",
       "CVE-2026-39884",
       "CVE-2026-39987"
@@ -986,5 +999,65 @@
     "secure_ai_v2_layer": true,
     "maturity": "moderate",
     "last_verified": "2026-05-15"
+  },
+  "AML.T0007": {
+    "id": "AML.T0007",
+    "name": "Discover ML Artifacts",
+    "tactic": "Reconnaissance",
+    "description": "Adversary enumerates ML artifacts available locally or remotely after gaining initial access — model files, training datasets, model registries, tokenizer files, configuration. Distinct from AML.T0001 (Victim Research, pre-access) — this is post-access enumeration of the ML attack surface to plan downstream actions like poisoning, theft, or evasion.",
+    "subtechniques": [],
+    "real_world_instances": [],
+    "framework_gap": true,
+    "framework_gap_detail": "ML artifact enumeration is rarely covered by data-loss-prevention controls — operators treat model files as code, not data.",
+    "controls_that_partially_help": [],
+    "controls_that_dont_help": [],
+    "detection": "File-access auditing on model registries + tokenizer / weights paths; anomalous read patterns from non-training service accounts.",
+    "exceptd_skills": [],
+    "last_verified": "2026-05-18",
+    "cve_refs": [
+      "CVE-2026-7482"
+    ]
+  },
+  "AML.T0011": {
+    "id": "AML.T0011",
+    "name": "User Execution",
+    "tactic": "Initial Access",
+    "description": "Adversary relies on a user to execute malicious ML artifacts — a poisoned model, a malicious pickle file, a typosquatted ML library — to gain code execution in the user context. Bridges traditional supply-chain TTPs into the ML domain where unpickling a model file is a code-execution vector.",
+    "subtechniques": [],
+    "real_world_instances": [
+      "MAL-2024-PYPI-ULTRALYTICS-XMRIG — operators executing a typosquatted AI library imported a crypto-miner payload alongside genuine vision-model inference code."
+    ],
+    "framework_gap": true,
+    "framework_gap_detail": "No framework requires AI/ML library install-time integrity verification.",
+    "controls_that_partially_help": [
+      "NIST-800-53-SI-7"
+    ],
+    "controls_that_dont_help": [],
+    "detection": "Install-time package-integrity verification with vendor allowlist; runtime sandbox on first-time-loaded model files.",
+    "exceptd_skills": [],
+    "last_verified": "2026-05-18",
+    "cve_refs": [
+      "MAL-2024-PYPI-ULTRALYTICS-XMRIG"
+    ]
+  },
+  "AML.T0047": {
+    "id": "AML.T0047",
+    "name": "LLM Meta Prompt Extraction",
+    "tactic": "Credential Access",
+    "description": "Adversary extracts a system prompt, tool definitions, or hidden instructions from an LLM-backed application via prompt-injection that coerces the model into revealing its meta-configuration. Recovered prompts feed downstream attacks (impersonation, jailbreak refinement, sensitive-tool discovery).",
+    "subtechniques": [],
+    "real_world_instances": [
+      "CVE-2025-53767 — Azure OpenAI Service SSRF chained with prompt-injection to extract meta-prompt + tool registration."
+    ],
+    "framework_gap": true,
+    "framework_gap_detail": "No framework treats LLM meta-prompt as a credential class; rotation, scoping, and exposure-detection controls are absent.",
+    "controls_that_partially_help": [],
+    "controls_that_dont_help": [],
+    "detection": "Output-side filtering for system-prompt fingerprints; query-side anomaly detection on injection-class inputs targeting <system>, <SYS>, role:system patterns.",
+    "exceptd_skills": [],
+    "last_verified": "2026-05-18",
+    "cve_refs": [
+      "CVE-2025-53767"
+    ]
   }
 }

package/data/attack-techniques.json

@@ -99,8 +99,12 @@
       "DS0017"
     ],
     "cve_refs": [
+      "CVE-2025-1094",
       "CVE-2025-11837",
       "CVE-2025-53773",
+      "CVE-2025-55319",
+      "CVE-2025-68664",
+      "CVE-2026-22778",
       "CVE-2026-30615",
       "CVE-2026-30623",
       "CVE-2026-32202",
@@ -120,6 +124,7 @@
     "name": "Command and Scripting Interpreter: Python",
     "version": "v19",
     "cve_refs": [
+      "CVE-2025-49844",
       "MAL-2026-3083"
     ]
   },
@@ -127,6 +132,7 @@
     "name": "Command and Scripting Interpreter: JavaScript",
     "version": "v19",
     "cve_refs": [
+      "CVE-2025-0133",
       "CVE-2026-45321",
       "MAL-2026-NODE-IPC-STEALER"
     ]
@@ -135,6 +141,12 @@
     "name": "Exploitation for Privilege Escalation",
     "version": "v19",
     "cve_refs": [
+      "CVE-2025-10725",
+      "CVE-2025-22224",
+      "CVE-2025-22225",
+      "CVE-2025-24201",
+      "CVE-2025-38352",
+      "CVE-2025-43300",
       "CVE-2025-62849",
       "CVE-2026-0300",
       "CVE-2026-31431",
@@ -156,6 +168,7 @@
     "cve_refs": [
       "CVE-2020-10148",
       "CVE-2024-1709",
+      "CVE-2025-21085",
       "CVE-2026-20182",
       "CVE-2026-33825",
       "CVE-2026-39884",
@@ -184,13 +197,19 @@
     "name": "Valid Accounts: Cloud Accounts",
     "version": "v19",
     "cve_refs": [
+      "CVE-2025-53767",
+      "CVE-2025-55241",
       "CVE-2026-45321",
-      "MAL-2026-3083"
+      "MAL-2026-3083",
+      "MAL-2026-RUBYGEMS-BUFFERZONECORP-SLEEPER"
     ]
   },
   "T1098": {
     "name": "Account Manipulation",
-    "version": "v19"
+    "version": "v19",
+    "cve_refs": [
+      "CVE-2025-55241"
+    ]
   },
   "T1098.001": {
     "name": "Account Manipulation: Additional Cloud Credentials",
@@ -234,19 +253,27 @@
       "CVE-2023-3519",
       "CVE-2024-1709",
       "CVE-2024-21762",
+      "CVE-2025-1094",
       "CVE-2025-12686",
+      "CVE-2025-14847",
+      "CVE-2025-49844",
+      "CVE-2025-53767",
       "CVE-2025-53773",
       "CVE-2025-59389",
       "CVE-2025-62847",
       "CVE-2025-62848",
+      "CVE-2025-6965",
       "CVE-2026-0300",
       "CVE-2026-20182",
+      "CVE-2026-22778",
       "CVE-2026-32202",
       "CVE-2026-39987",
       "CVE-2026-42208",
       "CVE-2026-42897",
       "CVE-2026-42945",
-      "CVE-2026-6973"
+      "CVE-2026-6973",
+      "CVE-2026-7482",
+      "MAL-2025-AI-FOUND-FFMPEG-BIGSLEEP"
     ]
   },
   "T1195": {
@@ -269,8 +296,11 @@
     "cve_refs": [
       "CVE-2024-3094",
       "CVE-2026-45321",
+      "MAL-2024-PYPI-ULTRALYTICS-XMRIG",
+      "MAL-2025-PYPI-COLORAMA-SOLANA-STEALER",
       "MAL-2026-3083",
       "MAL-2026-NODE-IPC-STEALER",
+      "MAL-2026-RUBYGEMS-BUFFERZONECORP-SLEEPER",
       "MAL-2026-SHAI-HULUD-OSS"
     ]
   },
@@ -280,11 +310,23 @@
   },
   "T1203": {
     "name": "Exploitation for Client Execution",
-    "version": "v19"
+    "version": "v19",
+    "cve_refs": [
+      "CVE-2025-10585",
+      "CVE-2025-14174",
+      "CVE-2025-24201",
+      "CVE-2025-43300",
+      "CVE-2025-43529",
+      "CVE-2025-4919",
+      "MAL-2025-AI-FOUND-FFMPEG-BIGSLEEP"
+    ]
   },
   "T1212": {
     "name": "Exploitation for Credential Access",
-    "version": "v19"
+    "version": "v19",
+    "cve_refs": [
+      "CVE-2025-14174"
+    ]
   },
   "T1213": {
     "name": "Data from Information Repositories",
@@ -355,12 +397,18 @@
   },
   "T1552": {
     "name": "Unsecured Credentials",
-    "version": "v19"
+    "version": "v19",
+    "cve_refs": [
+      "CVE-2025-68664",
+      "MAL-2025-PYPI-COLORAMA-SOLANA-STEALER",
+      "MAL-2026-RUBYGEMS-BUFFERZONECORP-SLEEPER"
+    ]
   },
   "T1552.001": {
     "name": "Unsecured Credentials: Credentials In Files",
     "version": "v19",
     "cve_refs": [
+      "CVE-2025-21085",
       "CVE-2026-30615",
       "MAL-2026-3083",
       "MAL-2026-NODE-IPC-STEALER",
@@ -514,7 +562,11 @@
     ],
     "cve_refs": [
       "CVE-2024-21626",
-      "CVE-2024-3154"
+      "CVE-2024-3154",
+      "CVE-2025-22224",
+      "CVE-2025-22225",
+      "CVE-2025-22226",
+      "CVE-2025-38352"
     ]
   },
   "T1613": {
@@ -659,6 +711,71 @@
   },
   "T1098.003": {
     "name": "Account Manipulation: Additional Cloud Roles",
-    "version": "v19"
+    "version": "v19",
+    "cve_refs": [
+      "CVE-2025-10725"
+    ]
+  },
+  "T1005": {
+    "name": "Data from Local System",
+    "version": "v19",
+    "cve_refs": [
+      "CVE-2025-14847",
+      "CVE-2025-22226",
+      "CVE-2026-7482"
+    ]
+  },
+  "T1189": {
+    "name": "Drive-by Compromise",
+    "version": "v19",
+    "cve_refs": [
+      "CVE-2025-10585",
+      "CVE-2025-14174",
+      "CVE-2025-24201",
+      "CVE-2025-43529",
+      "CVE-2025-4919"
+    ]
+  },
+  "T1496": {
+    "name": "Resource Hijacking",
+    "version": "v19",
+    "cve_refs": [
+      "MAL-2024-PYPI-ULTRALYTICS-XMRIG"
+    ]
+  },
+  "T1498": {
+    "name": "Network Denial of Service",
+    "version": "v19",
+    "cve_refs": [
+      "CVE-2025-8671"
+    ]
+  },
+  "T1499.001": {
+    "name": "Endpoint Denial of Service: OS Exhaustion Flood",
+    "version": "v19",
+    "cve_refs": [
+      "CVE-2025-8671"
+    ]
+  },
+  "T1499.002": {
+    "name": "Endpoint Denial of Service: Service Exhaustion Flood",
+    "version": "v19",
+    "cve_refs": [
+      "CVE-2025-59529"
+    ]
+  },
+  "T1539": {
+    "name": "Steal Web Session Cookie",
+    "version": "v19",
+    "cve_refs": [
+      "CVE-2025-0133"
+    ]
+  },
+  "T1657": {
+    "name": "Financial Theft",
+    "version": "v19",
+    "cve_refs": [
+      "MAL-2025-PYPI-COLORAMA-SOLANA-STEALER"
+    ]
   }
 }