Skip to main content
Securitydvcrn

cyber-kev-triage

Prioritize vulnerability remediation using KEV-style exploitation context plus asset criticality. Use for CVE triage, patch order decisions, and remediation reporting.

Stars
15
Source
dvcrn/openclaw-skills-marketplace
Updated
2026-05-29
Slug
dvcrn--openclaw-skills-marketplace--cyber-kev-triage
View on GitHubRaw SKILL.md

// install — copy + paste into any project

mkdir -p .claude/skills && curl -fsSL https://raw.githubusercontent.com/dvcrn/openclaw-skills-marketplace/HEAD/plugins/0x-professor--cyber-kev-triage/skills/cyber-kev-triage/SKILL.md -o .claude/skills/cyber-kev-triage.md

Drops the SKILL.md into .claude/skills/cyber-kev-triage.md. Works with Claude Code, Cursor, and any agent that loads SKILL.md files from .claude/skills/.

Cyber KEV Triage

Overview

Create a patch-priority plan by combining vulnerability severity, exploitation status, and business criticality of affected assets.

Workflow

  1. Collect vulnerabilities with CVE, CVSS, exploitation indicator, and affected asset.
  2. Map each vulnerability to asset criticality.
  3. Score and rank vulnerabilities into patch priority tiers.
  4. Produce concise remediation summary and due-window guidance.

Use Bundled Resources

  • Run scripts/kev_triage.py for deterministic triage output.
  • Read references/triage-method.md for scoring rationale and review checks.

Guardrails

  • Keep output defensive and remediation-focused.
  • Do not generate exploit payloads or offensive execution steps.