How does it prioritize vulnerabilities?

It uses a multi-factor risk-based approach combining raw CVSS scores, business asset criticality, and live threat intelligence from the CISA Known Exploited Vulnerabilities (KEV) catalog.

How does it integrate with a SIEM?

The skill provides specific Splunk SPL queries to correlate scan data with network security events, allowing teams to see if unpatched vulnerabilities are currently being targeted.

Does it automate the actual patching process?

It automates the remediation workflow, including ticket creation and SLA tracking, but relies on external systems like WSUS, SCCM, or Intune for the actual deployment of patches.

Does this skill support open-source scanners?

Yes, the skill provides implementation patterns for integrating OpenVAS (Greenbone) alongside enterprise tools like Nessus and Qualys.

Can I use this for penetration testing?

No, this skill is specifically designed for vulnerability assessment and management. It focuses on identifying and tracking weaknesses rather than active exploitation or validation.

Vulnerability Scanning Workflow Builder

Name: Vulnerability Scanning Workflow Builder
Author: mukul975

bymukul975

•

4,121

•

セキュリティとテスト

Automates the setup and management of enterprise-grade vulnerability scanning workflows to identify, prioritize, and remediate security risks.

This skill enables Security Operations Center (SOC) teams to establish a systematic approach to vulnerability management by integrating industry-standard tools like Nessus, Qualys, and OpenVAS with risk-based prioritization. It facilitates the ingestion of scan data into SIEMs for correlation, applies CISA Known Exploited Vulnerabilities (KEV) intelligence for accurate scoring, and automates ticketing in platforms like ServiceNow to ensure critical patches are applied within defined SLA windows. It is ideal for organizations looking to mature their vulnerability assessment programs from manual scanning to automated, risk-aware remediation lifecycles.

主な機能

01SLA-based remediation tracking with pre-built Splunk dashboard queries

02Risk-based prioritization using CVSS, asset criticality, and CISA KEV data

03Automated ITSM ticketing workflows for high-priority findings

04Automated scan policy configuration via Nessus and Qualys APIs

05SIEM integration patterns for correlating scans with active exploitation alerts

064,121 GitHub stars

ユースケース

01Automating high-priority patch remediation ticketing for IT infrastructure teams

02Integrating vulnerability data with Splunk for real-time risk monitoring and correlation

03Establishing a recurring vulnerability assessment process for internal infrastructure

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills building-vulnerability-scanning-workflow

For use in Claude.ai and ChatGPT

主な機能

01SLA-based remediation tracking with pre-built Splunk dashboard queries

02Risk-based prioritization using CVSS, asset criticality, and CISA KEV data

03Automated ITSM ticketing workflows for high-priority findings

04Automated scan policy configuration via Nessus and Qualys APIs

05SIEM integration patterns for correlating scans with active exploitation alerts

064,121 GitHub stars

ユースケース

01Automating high-priority patch remediation ticketing for IT infrastructure teams

02Integrating vulnerability data with Splunk for real-time risk monitoring and correlation

03Establishing a recurring vulnerability assessment process for internal infrastructure

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills building-vulnerability-scanning-workflow

For use in Claude.ai and ChatGPT