annualreports

仓库: danielmiessler/personal_ai_infrastructure
安装量: 57
排名: #12972

安装

npx skills add https://github.com/danielmiessler/personal_ai_infrastructure --skill annualreports

Before executing, check for user customizations at: ~/.claude/skills/CORE/USER/SKILLCUSTOMIZATIONS/AnnualReports/

If this directory exists, load and apply any PREFERENCES.md, configurations, or resources found there. These override default behavior. If the directory does not exist, proceed with skill defaults.

AnnualReports - Security Report Aggregation

Aggregates and analyzes annual security reports from 570+ sources across the cybersecurity industry.

Source: awesome-annual-security-reports

Workflow Routing

  • UPDATE - Fetch latest report sources from GitHub -> Workflows/Update.md

  • ANALYZE - Analyze reports for trends and insights -> Workflows/Analyze.md

  • FETCH - Download specific reports -> Workflows/Fetch.md

Quick Reference

# Update sources from GitHub
bun run ~/.claude/skills/AnnualReports/Tools/UpdateSources.ts

# List all sources
bun run ~/.claude/skills/AnnualReports/Tools/ListSources.ts [category]

# Fetch a specific report
bun run ~/.claude/skills/AnnualReports/Tools/FetchReport.ts <vendor> <report-name>

Categories

Analysis Reports

  • Global Threat Intelligence (56 reports) - CrowdStrike, Microsoft, IBM, Mandiant, etc.

  • Regional Assessments (11 reports) - FBI, CISA, Europol, NCSC, etc.

  • Sector Specific Intelligence (13 reports) - Healthcare, Finance, Energy, Transport

  • Application Security (21 reports) - OWASP, Veracode, Snyk, GitGuardian

  • Cloud Security (11 reports) - Google Cloud, AWS, Wiz, Datadog

  • Vulnerabilities (14 reports) - Rapid7, VulnCheck, Edgescan

  • Ransomware (9 reports) - Veeam, Zscaler, Palo Alto

  • Data Breaches (6 reports) - Verizon DBIR, IBM Cost of Breach

  • Physical Security (6 reports) - Dragos, Nozomi, Waterfall

  • AI and Emerging Technologies (11 reports) - Anthropic, Google, Zimperium

Survey Reports

  • Industry Trends (68 reports) - WEF, ISACA, Splunk, Gartner

  • Executive Perspectives (7 reports) - CISO reports, Deloitte, Proofpoint

  • Workforce and Culture (5 reports) - ISC2, KnowBe4, CompTIA

  • Market and Investment Research (5 reports) - IT Harvest, Recorded Future

  • Application Security (9 reports) - Checkmarx, Snyk, Traceable

  • Cloud Security (7 reports) - Palo Alto, ISC2, Fortinet

  • Identity Security (19 reports) - CyberArk, Okta, SailPoint

  • Penetration Testing (5 reports) - HackerOne, Cobalt, Bugcrowd

  • Privacy and Data Protection (8 reports) - Cisco, Proofpoint, Drata

  • Ransomware (6 reports) - Sophos, Delinea, Semperis

  • AI and Emerging Technologies (12 reports) - Darktrace, Wiz, HiddenLayer

Data Files

  • Data/sources.json - All report sources with metadata

  • Reports/ - Downloaded report files (PDFs, markdown)

Examples

Example 1: Update sources from upstream

User: "Update the annual reports"
-> Invokes UPDATE workflow
-> Fetches latest README from GitHub
-> Parses and updates sources.json
-> Reports new/changed entries

Example 2: Find threat intelligence reports

User: "What threat reports are available?"
-> Lists Global Threat Intelligence category
-> Shows 56 reports from major vendors
-> Provides direct URLs

Example 3: Analyze ransomware trends

User: "Analyze ransomware reports"
-> Invokes ANALYZE workflow
-> Fetches relevant reports
-> Synthesizes findings across vendors
-> Produces trend analysis
返回排行榜