MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-26 16:57:18 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix scripts for nobile and pre attack attack pattern

Browse source
This commit is contained in:
Deborah Servili 2018-05-19 13:09:30 +02:00
parent f6d7291e7a
commit d82a76c08f
6 changed files with 4001 additions and 4001 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

188
clusters/mitre-mobile-attack-attack-pattern.json
View file

@ -20,7 +20,7 @@
], ],
"external_id": "MOB-T1057", "external_id": "MOB-T1057",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:exploit-via-cellular-network" "mitre-mobile-attack:mobile-attack:exploit-via-cellular-network"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -41,7 +41,7 @@
], ],
"external_id": "APP-1", "external_id": "APP-1",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:general-network-based" "mitre-mobile-attack:mobile-attack:general-network-based"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -63,7 +63,7 @@
], ],
"external_id": "EMM-5", "external_id": "EMM-5",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:defense-evasion" "mitre-mobile-attack:mobile-attack:defense-evasion"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -82,7 +82,7 @@
], ],
"external_id": "MOB-T1022", "external_id": "MOB-T1022",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:discovery" "mitre-mobile-attack:mobile-attack:discovery"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -101,7 +101,7 @@
], ],
"external_id": "MOB-T1051", "external_id": "MOB-T1051",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:effects" "mitre-mobile-attack:mobile-attack:effects"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -121,7 +121,7 @@
], ],
"external_id": "ECO-1", "external_id": "ECO-1",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:cloud-based" "mitre-mobile-attack:mobile-attack:cloud-based"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -141,8 +141,8 @@
], ],
"external_id": "APP-13", "external_id": "APP-13",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:collection", "mitre-mobile-attack:mobile-attack:collection",
"mitre-mobile-attack:enterprise-attack:credential-access" "mitre-mobile-attack:mobile-attack:credential-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -162,7 +162,7 @@
], ],
"external_id": "PHY-2", "external_id": "PHY-2",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:lateral-movement" "mitre-mobile-attack:mobile-attack:lateral-movement"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -180,7 +180,7 @@
], ],
"external_id": "MOB-T1019", "external_id": "MOB-T1019",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:credential-access" "mitre-mobile-attack:mobile-attack:credential-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -202,7 +202,7 @@
], ],
"external_id": "AUT-10", "external_id": "AUT-10",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:credential-access" "mitre-mobile-attack:mobile-attack:credential-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"iOS" "iOS"
@ -220,7 +220,7 @@
], ],
"external_id": "APP-32", "external_id": "APP-32",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:lateral-movement" "mitre-mobile-attack:mobile-attack:lateral-movement"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -241,8 +241,8 @@
], ],
"external_id": "APP-27", "external_id": "APP-27",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:defense-evasion", "mitre-mobile-attack:mobile-attack:defense-evasion",
"mitre-mobile-attack:enterprise-attack:persistence" "mitre-mobile-attack:mobile-attack:persistence"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -262,7 +262,7 @@
], ],
"external_id": "MOB-T1029", "external_id": "MOB-T1029",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:discovery" "mitre-mobile-attack:mobile-attack:discovery"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -280,7 +280,7 @@
], ],
"external_id": "MOB-T1026", "external_id": "MOB-T1026",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:discovery" "mitre-mobile-attack:mobile-attack:discovery"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -299,7 +299,7 @@
], ],
"external_id": "APP-13", "external_id": "APP-13",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:collection" "mitre-mobile-attack:mobile-attack:collection"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -324,7 +324,7 @@
], ],
"external_id": "ECO-22", "external_id": "ECO-22",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:app-delivery-via-authorized-app-store" "mitre-mobile-attack:mobile-attack:app-delivery-via-authorized-app-store"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -343,7 +343,7 @@
], ],
"external_id": "CEL-22", "external_id": "CEL-22",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:exploit-via-internet" "mitre-mobile-attack:mobile-attack:exploit-via-internet"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -362,7 +362,7 @@
], ],
"external_id": "MOB-T1045", "external_id": "MOB-T1045",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:app-delivery-via-authorized-app-store" "mitre-mobile-attack:mobile-attack:app-delivery-via-authorized-app-store"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -382,7 +382,7 @@
], ],
"external_id": "CEL-22", "external_id": "CEL-22",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:exploit-via-internet" "mitre-mobile-attack:mobile-attack:exploit-via-internet"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -402,7 +402,7 @@
], ],
"external_id": "ECO-13", "external_id": "ECO-13",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:app-delivery-via-other-means" "mitre-mobile-attack:mobile-attack:app-delivery-via-other-means"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -422,8 +422,8 @@
], ],
"external_id": "APP-29", "external_id": "APP-29",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:command-and-control", "mitre-mobile-attack:mobile-attack:command-and-control",
"mitre-mobile-attack:enterprise-attack:exfiltration" "mitre-mobile-attack:mobile-attack:exfiltration"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -441,7 +441,7 @@
], ],
"external_id": "MOB-T1023", "external_id": "MOB-T1023",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:discovery" "mitre-mobile-attack:mobile-attack:discovery"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -458,7 +458,7 @@
], ],
"external_id": "MOB-T1050", "external_id": "MOB-T1050",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:effects" "mitre-mobile-attack:mobile-attack:effects"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -476,7 +476,7 @@
], ],
"external_id": "APP-19", "external_id": "APP-19",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:collection" "mitre-mobile-attack:mobile-attack:collection"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -494,7 +494,7 @@
], ],
"external_id": "MOB-T1076", "external_id": "MOB-T1076",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:supply-chain" "mitre-mobile-attack:mobile-attack:supply-chain"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -517,7 +517,7 @@
], ],
"external_id": "APP-21", "external_id": "APP-21",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:defense-evasion" "mitre-mobile-attack:mobile-attack:defense-evasion"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -540,7 +540,7 @@
], ],
"external_id": "APP-31", "external_id": "APP-31",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:credential-access" "mitre-mobile-attack:mobile-attack:credential-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -562,7 +562,7 @@
], ],
"external_id": "STA-19", "external_id": "STA-19",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:exploit-via-cellular-network" "mitre-mobile-attack:mobile-attack:exploit-via-cellular-network"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -581,7 +581,7 @@
], ],
"external_id": "MOB-T1027", "external_id": "MOB-T1027",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:discovery" "mitre-mobile-attack:mobile-attack:discovery"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -599,7 +599,7 @@
], ],
"external_id": "APP-22", "external_id": "APP-22",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:persistence" "mitre-mobile-attack:mobile-attack:persistence"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -618,7 +618,7 @@
], ],
"external_id": "ECO-21", "external_id": "ECO-21",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:app-delivery-via-other-means" "mitre-mobile-attack:mobile-attack:app-delivery-via-other-means"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -636,8 +636,8 @@
], ],
"external_id": "MOB-T1015", "external_id": "MOB-T1015",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:collection", "mitre-mobile-attack:mobile-attack:collection",
"mitre-mobile-attack:enterprise-attack:credential-access" "mitre-mobile-attack:mobile-attack:credential-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -656,7 +656,7 @@
], ],
"external_id": "APP-28", "external_id": "APP-28",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:effects" "mitre-mobile-attack:mobile-attack:effects"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -675,7 +675,7 @@
], ],
"external_id": "ECO-23", "external_id": "ECO-23",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:app-delivery-via-other-means" "mitre-mobile-attack:mobile-attack:app-delivery-via-other-means"
], ],
"mitre_platforms": [ "mitre_platforms": [
"iOS" "iOS"
@ -694,7 +694,7 @@
], ],
"external_id": "MOB-T1025", "external_id": "MOB-T1025",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:discovery" "mitre-mobile-attack:mobile-attack:discovery"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -712,8 +712,8 @@
], ],
"external_id": "APP-30", "external_id": "APP-30",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:command-and-control", "mitre-mobile-attack:mobile-attack:command-and-control",
"mitre-mobile-attack:enterprise-attack:exfiltration" "mitre-mobile-attack:mobile-attack:exfiltration"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -732,7 +732,7 @@
], ],
"external_id": "MOB-T1024", "external_id": "MOB-T1024",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:discovery" "mitre-mobile-attack:mobile-attack:discovery"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -750,7 +750,7 @@
], ],
"external_id": "MOB-T1062", "external_id": "MOB-T1062",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:exploit-via-physical-access" "mitre-mobile-attack:mobile-attack:exploit-via-physical-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -773,8 +773,8 @@
], ],
"external_id": "APP-27", "external_id": "APP-27",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:credential-access", "mitre-mobile-attack:mobile-attack:credential-access",
"mitre-mobile-attack:enterprise-attack:privilege-escalation" "mitre-mobile-attack:mobile-attack:privilege-escalation"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -794,7 +794,7 @@
], ],
"external_id": "LPN-0", "external_id": "LPN-0",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:general-network-based" "mitre-mobile-attack:mobile-attack:general-network-based"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -814,7 +814,7 @@
], ],
"external_id": "EMM-7", "external_id": "EMM-7",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:cloud-based" "mitre-mobile-attack:mobile-attack:cloud-based"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -834,7 +834,7 @@
], ],
"external_id": "MOB-T1063", "external_id": "MOB-T1063",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:exploit-via-physical-access" "mitre-mobile-attack:mobile-attack:exploit-via-physical-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -857,8 +857,8 @@
], ],
"external_id": "GPS-0", "external_id": "GPS-0",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:cellular-network-based", "mitre-mobile-attack:mobile-attack:cellular-network-based",
"mitre-mobile-attack:enterprise-attack:general-network-based" "mitre-mobile-attack:mobile-attack:general-network-based"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -877,8 +877,8 @@
], ],
"external_id": "APP-35", "external_id": "APP-35",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:collection", "mitre-mobile-attack:mobile-attack:collection",
"mitre-mobile-attack:enterprise-attack:credential-access" "mitre-mobile-attack:mobile-attack:credential-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -897,7 +897,7 @@
], ],
"external_id": "APP-13", "external_id": "APP-13",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:collection" "mitre-mobile-attack:mobile-attack:collection"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -918,7 +918,7 @@
], ],
"external_id": "ECO-17", "external_id": "ECO-17",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:app-delivery-via-authorized-app-store" "mitre-mobile-attack:mobile-attack:app-delivery-via-authorized-app-store"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -937,8 +937,8 @@
], ],
"external_id": "MOB-T1013", "external_id": "MOB-T1013",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:collection", "mitre-mobile-attack:mobile-attack:collection",
"mitre-mobile-attack:enterprise-attack:credential-access" "mitre-mobile-attack:mobile-attack:credential-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -957,8 +957,8 @@
], ],
"external_id": "AUT-0", "external_id": "AUT-0",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:collection", "mitre-mobile-attack:mobile-attack:collection",
"mitre-mobile-attack:enterprise-attack:credential-access" "mitre-mobile-attack:mobile-attack:credential-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -979,8 +979,8 @@
], ],
"external_id": "APP-27", "external_id": "APP-27",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:defense-evasion", "mitre-mobile-attack:mobile-attack:defense-evasion",
"mitre-mobile-attack:enterprise-attack:persistence" "mitre-mobile-attack:mobile-attack:persistence"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -999,8 +999,8 @@
], ],
"external_id": "CEL-3", "external_id": "CEL-3",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:cellular-network-based", "mitre-mobile-attack:mobile-attack:cellular-network-based",
"mitre-mobile-attack:enterprise-attack:general-network-based" "mitre-mobile-attack:mobile-attack:general-network-based"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1018,7 +1018,7 @@
], ],
"external_id": "MOB-T1075", "external_id": "MOB-T1075",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:effects" "mitre-mobile-attack:mobile-attack:effects"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1037,7 +1037,7 @@
], ],
"external_id": "MOB-T1005", "external_id": "MOB-T1005",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:persistence" "mitre-mobile-attack:mobile-attack:persistence"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -1054,8 +1054,8 @@
], ],
"external_id": "MOB-T1039", "external_id": "MOB-T1039",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:command-and-control", "mitre-mobile-attack:mobile-attack:command-and-control",
"mitre-mobile-attack:enterprise-attack:exfiltration" "mitre-mobile-attack:mobile-attack:exfiltration"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1073,7 +1073,7 @@
], ],
"external_id": "MOB-T1055", "external_id": "MOB-T1055",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:effects" "mitre-mobile-attack:mobile-attack:effects"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1092,7 +1092,7 @@
], ],
"external_id": "APP-13", "external_id": "APP-13",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:collection" "mitre-mobile-attack:mobile-attack:collection"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1113,7 +1113,7 @@
], ],
"external_id": "EMM-7", "external_id": "EMM-7",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:cloud-based" "mitre-mobile-attack:mobile-attack:cloud-based"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1136,7 +1136,7 @@
], ],
"external_id": "CEL-37", "external_id": "CEL-37",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:cellular-network-based" "mitre-mobile-attack:mobile-attack:cellular-network-based"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1158,8 +1158,8 @@
], ],
"external_id": "APP-27", "external_id": "APP-27",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:defense-evasion", "mitre-mobile-attack:mobile-attack:defense-evasion",
"mitre-mobile-attack:enterprise-attack:persistence" "mitre-mobile-attack:mobile-attack:persistence"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1178,8 +1178,8 @@
], ],
"external_id": "MOB-T1056", "external_id": "MOB-T1056",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:collection", "mitre-mobile-attack:mobile-attack:collection",
"mitre-mobile-attack:enterprise-attack:credential-access" "mitre-mobile-attack:mobile-attack:credential-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -1198,7 +1198,7 @@
], ],
"external_id": "APP-6", "external_id": "APP-6",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:supply-chain" "mitre-mobile-attack:mobile-attack:supply-chain"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1221,7 +1221,7 @@
], ],
"external_id": "APP-20", "external_id": "APP-20",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:defense-evasion" "mitre-mobile-attack:mobile-attack:defense-evasion"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1244,7 +1244,7 @@
], ],
"external_id": "CEL-38", "external_id": "CEL-38",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:cellular-network-based" "mitre-mobile-attack:mobile-attack:cellular-network-based"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1263,8 +1263,8 @@
], ],
"external_id": "MOB-T1020", "external_id": "MOB-T1020",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:collection", "mitre-mobile-attack:mobile-attack:collection",
"mitre-mobile-attack:enterprise-attack:credential-access" "mitre-mobile-attack:mobile-attack:credential-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1283,7 +1283,7 @@
], ],
"external_id": "APP-26", "external_id": "APP-26",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:privilege-escalation" "mitre-mobile-attack:mobile-attack:privilege-escalation"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1304,7 +1304,7 @@
], ],
"external_id": "ECO-4", "external_id": "ECO-4",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:app-delivery-via-authorized-app-store" "mitre-mobile-attack:mobile-attack:app-delivery-via-authorized-app-store"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -1322,7 +1322,7 @@
], ],
"external_id": "MOB-T1006", "external_id": "MOB-T1006",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:persistence" "mitre-mobile-attack:mobile-attack:persistence"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android" "Android"
@ -1341,8 +1341,8 @@
], ],
"external_id": "MOB-T1021", "external_id": "MOB-T1021",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:defense-evasion", "mitre-mobile-attack:mobile-attack:defense-evasion",
"mitre-mobile-attack:enterprise-attack:discovery" "mitre-mobile-attack:mobile-attack:discovery"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1362,7 +1362,7 @@
], ],
"external_id": "MOB-T1064", "external_id": "MOB-T1064",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:exploit-via-physical-access" "mitre-mobile-attack:mobile-attack:exploit-via-physical-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1384,7 +1384,7 @@
], ],
"external_id": "STA-22", "external_id": "STA-22",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:cellular-network-based" "mitre-mobile-attack:mobile-attack:cellular-network-based"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1403,7 +1403,7 @@
], ],
"external_id": "APP-24", "external_id": "APP-24",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:collection" "mitre-mobile-attack:mobile-attack:collection"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1425,7 +1425,7 @@
], ],
"external_id": "PHY-1", "external_id": "PHY-1",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:exploit-via-physical-access" "mitre-mobile-attack:mobile-attack:exploit-via-physical-access"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1445,7 +1445,7 @@
], ],
"external_id": "APP-1", "external_id": "APP-1",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:general-network-based" "mitre-mobile-attack:mobile-attack:general-network-based"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1465,7 +1465,7 @@
], ],
"external_id": "CEL-7", "external_id": "CEL-7",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:cellular-network-based" "mitre-mobile-attack:mobile-attack:cellular-network-based"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1485,8 +1485,8 @@
], ],
"external_id": "APP-14", "external_id": "APP-14",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:app-delivery-via-authorized-app-store", "mitre-mobile-attack:mobile-attack:app-delivery-via-authorized-app-store",
"mitre-mobile-attack:enterprise-attack:app-delivery-via-other-means" "mitre-mobile-attack:mobile-attack:app-delivery-via-other-means"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1506,7 +1506,7 @@
], ],
"external_id": "APP-28", "external_id": "APP-28",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:effects" "mitre-mobile-attack:mobile-attack:effects"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",
@ -1525,7 +1525,7 @@
], ],
"external_id": "MOB-T1065", "external_id": "MOB-T1065",
"kill_chain": [ "kill_chain": [
"mitre-mobile-attack:enterprise-attack:supply-chain" "mitre-mobile-attack:mobile-attack:supply-chain"
], ],
"mitre_platforms": [ "mitre_platforms": [
"Android", "Android",

348
clusters/mitre-pre-attack-attack-pattern.json
View file

File diff suppressed because it is too large Load diff

2
tools/mitre-cti/v2.0/create_mitre-mobile-attack-attack-pattern_galaxy.py
View file

@ -32,7 +32,7 @@ for element in os.listdir('.'):
value['meta']['external_id'] = reference['external_id'] value['meta']['external_id'] = reference['external_id']
value['meta']['kill_chain'] = [] value['meta']['kill_chain'] = []
for killchain in temp['kill_chain_phases']: for killchain in temp['kill_chain_phases']:
value['meta']['kill_chain'].append(killchain['kill_chain_name'] + ':enterprise-attack:' + killchain['phase_name']) value['meta']['kill_chain'].append(killchain['kill_chain_name'] + ':mobile-attack:' + killchain['phase_name'])
if 'x_mitre_data_sources' in temp: if 'x_mitre_data_sources' in temp:
value['meta']['mitre_data_sources'] = temp['x_mitre_data_sources'] value['meta']['mitre_data_sources'] = temp['x_mitre_data_sources']
if 'x_mitre_platforms' in temp: if 'x_mitre_platforms' in temp:

2
tools/mitre-cti/v2.0/create_mitre-pre-attack-attack-pattern_galaxy.py
View file

@ -32,7 +32,7 @@ for element in os.listdir('.'):
value['meta']['external_id'] = reference['external_id'] value['meta']['external_id'] = reference['external_id']
value['meta']['kill_chain'] = [] value['meta']['kill_chain'] = []
for killchain in temp['kill_chain_phases']: for killchain in temp['kill_chain_phases']:
value['meta']['kill_chain'].append(killchain['kill_chain_name'] + ':enterprise-attack:' + killchain['phase_name']) value['meta']['kill_chain'].append(killchain['kill_chain_name'] + ':pre-attack:' + killchain['phase_name'])
if 'x_mitre_data_sources' in temp: if 'x_mitre_data_sources' in temp:
value['meta']['mitre_data_sources'] = temp['x_mitre_data_sources'] value['meta']['mitre_data_sources'] = temp['x_mitre_data_sources']
if 'x_mitre_platforms' in temp: if 'x_mitre_platforms' in temp: