تشغيل أي مهارة في Manus بنقرة واحدة

$pwd:

kesekit-start

Name: Kesekit Start
Author: cdppcorp

// Run a security vulnerability assessment based on KISA guidelines. Supports CII (560+ items), AI Security Guide, Robot Security (103 items), Space Security (satellite/GSaaS/supply chain, 12 domains, 53 items), Secure Coding (46 CWE), Zero Trust (~396 items), and SW Supply Chain Security (SBOM, 29 items). Use when "security assessment", "vulnerability scan", "CII audit", "KISA assessment", "AI security", "robot security", "space security", "satellite security", "GSaaS security", "zero trust", "ZTA", "ZTNA", "supply chain", "SBOM", "공급망", "C-SCRM".

تشغيل في Manus

$ git log --oneline --stat

stars:٣٤٩

forks:٧٥

updated:٨ أبريل ٢٠٢٦ في ٠٩:٤٢

مستكشف الملفات

70 ملفات

SKILL.md

readonly

related-skills.json

نفس المستودع

kesekit-check.md

from "cdppcorp/KESE-KIT"

Run a pre-deployment security compliance checklist based on KISA guidelines. Supports CII compliance (70 items), AI security checklists, Robot Security (103 items), Space Security (12 domains, 53 items), SW Supply Chain (SBOM, 29 items). Use when "pre-deploy check", "compliance checklist", "security checklist", "AI security check", "robot security check", "space security check", "satellite compliance", "GSaaS check", "supply chain check", "SBOM check", "공급망 점검".

2026-04-08349

kesekit-fix.md

from "cdppcorp/KESE-KIT"

Auto-fix security vulnerabilities found in CII, AI, robot, space, and supply chain systems. Generates hardening scripts and SBOM-based vulnerability remediation. Use when "fix vulnerabilities", "apply hardening", "server hardening", "AI security fix", "robot security fix", "space security fix", "satellite hardening", "GSaaS hardening", "supply chain fix", "SBOM fix", "공급망 수정", "취약점 조치".

2026-04-08349

kesekit-guide.md

from "cdppcorp/KESE-KIT"

Generate secure coding prompts and guides for AI tools (Claude, ChatGPT, Cursor, Copilot). Creates copy-paste ready prompts for KISA CII, AI security, robot security, space security, and SW supply chain security (SBOM, C-SCRM). Use when "security guide", "secure coding guide", "AI secure coding", "robot secure coding", "space secure coding", "satellite security guide", "supply chain guide", "SBOM guide", "공급망 가이드".

2026-04-08349

kesekit-check-ko.md

from "cdppcorp/KESE-KIT"

KISA 가이드라인 기반 배포 전 보안 컴플라이언스 체크리스트를 실행합니다. CII 컴플라이언스(70항목), AI 보안 체크리스트, 로봇 보안 체크리스트, 우주 보안 체크리스트(12분야 53항목)를 지원합니다. "배포 전 점검", "컴플라이언스 체크", "보안 체크리스트", "우주 보안 점검", "위성 보안 체크" 시 사용하세요.

2026-04-03349

kesekit-fix-ko.md

from "cdppcorp/KESE-KIT"

보안 취약점 자동 수정 및 하드닝 스크립트를 생성합니다. CII(Unix/Windows/웹서버/DB), AI, 로봇, 우주 시스템(위성/GSaaS/지상국/공급망)의 취약점을 수정합니다. KISA/CMMC/NIS2 가이드라인에 따른 보안 설정을 적용합니다. "취약점 수정", "서버 하드닝", "우주 보안 수정", "위성 하드닝" 시 사용하세요.

2026-04-03349

kesekit-guide-ko.md

from "cdppcorp/KESE-KIT"

AI 도구(Claude, ChatGPT, Cursor, Copilot)용 시큐어 코딩 프롬프트와 가이드를 생성합니다. KISA CII, CWE 매핑, AI 보안, 로봇 보안, 우주 보안(CCSDS/위성 프로토콜/GSaaS/공급망) 가이드를 지원합니다. "보안 가이드 생성", "시큐어코딩 가이드", "우주 시큐어코딩", "위성 보안 가이드" 시 사용하세요.

2026-04-03349

package.json

"author": "cdppcorp"

"repository": "cdppcorp/KESE-KIT"

فتح مستودع GitHub عرض مستودعات المنشئ

$ install --global

$ download --local

تشغيل في Manus

$ useful --forSOC

محللو أمن المعلوماتمهن الحاسوب والرياضيات15-1212L4

name

kesekit-start

description

Run a security vulnerability assessment based on KISA guidelines. Supports CII (560+ items), AI Security Guide, Robot Security (103 items), Space Security (satellite/GSaaS/supply chain, 12 domains, 53 items), Secure Coding (46 CWE), Zero Trust (~396 items), and SW Supply Chain Security (SBOM, 29 items). Use when "security assessment", "vulnerability scan", "CII audit", "KISA assessment", "AI security", "robot security", "space security", "satellite security", "GSaaS security", "zero trust", "ZTA", "ZTNA", "supply chain", "SBOM", "공급망", "C-SCRM".

KESE Security Vulnerability Assessment

Perform comprehensive security vulnerability assessment based on KISA guidelines. Automatically selects the appropriate guideline based on user context.

Guideline Selection

#	Guideline	Description	Items
1	CII (Critical Information Infrastructure)	Technical(424)+Administrative(127)+Physical(18)	~560
2	AI Security	AI Developer/Service Provider/User requirements	~54
3	Robot Security	Industrial/Service/Medical robot checklist (11 categories)	~103
4	Space Security	Satellite/GSaaS/Supply chain checklist (12 domains)	53
5	Secure Coding	JavaScript/Python secure coding (7 categories, 46 CWE)	46
6	Zero Trust	Zero Trust maturity assessment (8 elements, 4 maturity levels)	~396
7	SW Supply Chain	SBOM-based supply chain security (5 phases, 29 items)	29

Auto-detection

Servers, networks, databases, web services, firewalls → CII
AI models, LLM, generative AI, machine learning, prompts → AI Security
Robots, industrial robots, service robots, medical robots, ROS/ROS2, PLC-linked robot systems → Robot Security
Satellites, ground stations, GSaaS, space systems, GNSS, VSAT, LEO constellation, space supply chain → Space Security
JavaScript, Python, web application code, secure coding, CWE, OWASP → Secure Coding
Zero Trust, ZTA, ZTNA, 제로트러스트, 마이크로세그멘테이션, microsegmentation, SDP, SASE, PEP/PDP, never trust always verify → Zero Trust
SBOM, supply chain, 공급망, C-SCRM, SCA, CycloneDX, SPDX, npm audit, pip-audit, software bill of materials, 소프트웨어 공급망 → SW Supply Chain

CII Branch

Read the appropriate reference file from templates/cii/ based on the target system.

System	Reference File	Items
Unix/Linux	`templates/cii/unix.md`	67
Windows Server	`templates/cii/windows.md`	64
Web Service	`templates/cii/web-service.md`	26
Security Equipment	`templates/cii/security-equip.md`	23
Network Equipment	`templates/cii/network.md`	38
Control System	`templates/cii/control-system.md`	46
PC	`templates/cii/pc.md`	18
DBMS	`templates/cii/database.md`	26
Mobile	`templates/cii/mobile.md`	4
Web Application	`templates/cii/webapp.md`	21
Virtualization	`templates/cii/virtualization.md`	25
Cloud	`templates/cii/cloud.md`	19
Administrative	`templates/cii/admin.md`	127
Physical	`templates/cii/physical.md`	18

Check commands available in scripts/cii/ directory.

Judgment Criteria

Pass: Security settings properly applied
Partial: Partially implemented, improvement needed
Fail: Vulnerability exists
N/A: Not applicable to the environment

AI Security Branch

Read from references/ai-security/ for overview and guidance, and templates/ai-security/ for assessment checklists.

Target	Reference File
Overview	`references/ai-security/overview.md`
AI Developer	`templates/ai-security/developer.md`
Service Provider	`references/ai-security/service-provider.md`
User	`references/ai-security/user-guide.md`

6-stage lifecycle: Planning → Data → Model Dev → Deploy → Monitoring → Decommission

Robot Security Branch

Read from templates/robot-security/ based on the target robot system or concern.

Topic	Reference File
Overview	`templates/robot-security/overview.md`
SSDF / secure software development	`templates/robot-security/ssdf.md`
Supply chain security	`templates/robot-security/supply-chain.md`
IEC 62443 controls (IA, UC, SI, DP, DFR, ER, RA)	`templates/robot-security/iec62443.md`
Cyber resilience	`templates/robot-security/cyber-resilience.md`
Wireless security	`templates/robot-security/wireless.md`

Assess the relevant categories for industrial, service, or medical robots and generate a dedicated reports/robot-security/ summary when robot security is selected.

Space Security Branch

Read from references/space-security/ for overview and supply chain guidance, and templates/space-security/ for assessment checklists.

Topic	Reference File
Overview	`references/space-security/overview.md`
Access Control & Authentication (AC, IA)	`templates/space-security/access-control.md`
System & Communication Security (SC, SI)	`templates/space-security/system-security.md`
Operations & Incident Response (SO, IR)	`templates/space-security/operations.md`
Governance, Personnel, Physical, Risk, Contingency (PS, PE, RA, SG, CP)	`templates/space-security/governance.md`
Supply Chain Management (SM) + Threat Scenarios	`references/space-security/supply-chain.md`

12 domains, 53 items. Standards: CMMC, K-RMF, NIS2, ISMS-P. Generate reports in reports/space-security/.

Secure Coding Branch

Read from references/secure-coding/ for overview and pseudo code patterns, and templates/secure-coding/ for language-specific assessment.

Topic	Reference File
Overview (7 categories, 49 CWE)	`references/secure-coding/overview.md`
Pseudo Code (46 items, language-agnostic)	`references/secure-coding/pseudocode.md`
JavaScript (Express.js, Node.js, Sequelize)	`templates/secure-coding/javascript.md`
Python (Django, Flask, SQLAlchemy)	`templates/secure-coding/python.md`

Judgment Criteria

Pass: Secure coding pattern applied correctly
Partial: Pattern partially applied, improvement needed
Fail: Vulnerable pattern detected (UNSAFE code present)
N/A: Not applicable to the codebase

Zero Trust Branch

Read from references/zero-trust/ for overview and maturity model, and templates/zero-trust/ for assessment checklists.

Topic	Reference File
Overview	`templates/zero-trust/overview.md`
Identity & Device	`templates/zero-trust/identity-device.md`
Network & System	`templates/zero-trust/network-system.md`
Application & Data	`templates/zero-trust/app-data.md`
Visibility & Automation	`templates/zero-trust/visibility-automation.md`
OT/ICS Environment	`templates/zero-trust/ot-environment.md`
ZT Architecture Reference	`references/zero-trust/overview.md`
Maturity Model Details	`references/zero-trust/maturity-model.md`
OT Deployment Guide	`references/zero-trust/ot-guide.md`

8 core elements, ~396 items across 4 maturity levels. Standards: KISA ZT Guideline 2.0, NIST SP 800-207, CISA ZT Maturity Model.

Assessment Flow

Determine target maturity level (Traditional/Initial/Advanced/Optimal)
Select relevant core elements based on system context
If OT/ICS detected, also load ot-environment.md
Assess items at or below target maturity level
Generate gap analysis report

SW Supply Chain Branch

Read from references/supply-chain/ for overview and threat scenarios, and templates/supply-chain/ for assessment checklists. Use scripts/supply-chain/ for SBOM generation and vulnerability scanning commands.

Topic	Reference File
Overview (C-SCRM, SBOM, Regulations)	`references/supply-chain/overview.md`
Assessment Overview (6 categories)	`templates/supply-chain/overview.md`
Self-Assessment Checklist (29 items)	`templates/supply-chain/sbom-checklist.md`
SBOM Generation Scripts	`scripts/supply-chain/sbom-generate.md`
Vulnerability Scanning Scripts	`scripts/supply-chain/sbom-vuln-scan.md`

5 phases: Design (5) → Development (11) → Supply (3) → Operations (7) → Maintenance (3). Standards: NIST SP 800-161r1 (C-SCRM), NIST SP 800-218 (SSDF), NTIA SBOM, NIS-SBOM.

Assessment Flow

Start with references/supply-chain/overview.md for context
Load templates/supply-chain/sbom-checklist.md for the 29-item checklist
Assess each phase (Design → Development → Supply → Operations → Maintenance)
Critical items (SC-10, SC-14, SC-15) must ALL pass
Use scripts/supply-chain/sbom-generate.md for SBOM creation commands
Use scripts/supply-chain/sbom-vuln-scan.md for vulnerability scanning

Notes

Do not modify files during assessment — read-only
Mark N/A for technologies not present
Provide specific remediation for each finding

kesekit-start

المزيد من هذا المستودع

KESE Security Vulnerability Assessment

Guideline Selection

Auto-detection

CII Branch

Judgment Criteria

AI Security Branch

Robot Security Branch

Space Security Branch

Secure Coding Branch

Judgment Criteria

Zero Trust Branch

Assessment Flow

SW Supply Chain Branch

Assessment Flow

Notes

KESE Security Vulnerability Assessment

Guideline Selection

Auto-detection

CII Branch

Judgment Criteria

AI Security Branch

Robot Security Branch

Space Security Branch

Secure Coding Branch

Judgment Criteria

Zero Trust Branch

Assessment Flow

SW Supply Chain Branch

Assessment Flow

Notes

المزيد من هذا المستودع