Commit graph

3247 commits

Author SHA1 Message Date
Jürgen Löhel
9db5d18114
chg: [android] Adds Vulture
Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
2022-05-17 14:16:21 -05:00
0d4187c370
Merge pull request #715 from r0ny123/crime
Add EXOTIC LILY, TA578, TA579
2022-05-15 09:18:01 +02:00
Rony
2721522e82
chg: [threat-actor] add exotic lily, ta578, ta579 2022-05-14 20:52:15 +05:30
9777f40b58
Merge pull request #713 from jloehel/BPFDoor
chg: [backdoors] Adds BPFDoor
2022-05-12 06:43:58 +02:00
Jürgen Löhel
45da13ce5e chg: [backdoors] Adds BPFDoor
Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
2022-05-11 19:06:19 -05:00
fcdc6c86e6
chg: [threat-actor] add TG2003 synomym to Elephant Beetle 2022-05-09 14:24:28 +02:00
9130365e2e
chg: [threat-actor] Elephant Beetle added
Fix #708
2022-05-09 14:23:12 +02:00
bb434b11cf
chg: [threat-actor] ModifiedElephant added
Fix #709
2022-05-09 14:16:01 +02:00
06550a7945
chg: [threat-actor] fix refs field -> it's always an array 2022-05-09 13:46:16 +02:00
2042fde3ff
Merge branch 'adammchugh-threatactor-cosmiclynx-add' into main 2022-05-09 13:43:58 +02:00
b67e3ed3f8
Merge branch 'threatactor-cosmiclynx-add' of https://github.com/adammchugh/MISP-Galaxy-Updates into adammchugh-threatactor-cosmiclynx-add 2022-05-09 13:43:44 +02:00
1b93f32c52
Merge pull request #712 from r0ny123/patch-1
Update to Chinese Actors
2022-05-08 15:19:28 +02:00
Rony
c0be6677c2
chg: [threat-actor] added actor Red Menshen
https://www.pwc.com/gx/en/issues/cybersecurity/cyber-threat-intelligence/cyber-year-in-retrospect/yir-cyber-threats-report-download.pdf
2022-05-07 15:44:10 +05:30
Rony
11eca69ebc
chg: [threat-actor] added Curious Gorge 2022-05-07 12:40:35 +05:30
a315483a22
Merge pull request #711 from danielplohmann/patch-17
Update threat-actor.json
2022-05-06 10:42:39 +02:00
Daniel Plohmann
26c1850377
Update threat-actor.json
adding Red Dev 4 as alias for GALLIUM as used by PwC.
2022-05-06 09:47:48 +02:00
c03e82ad18
Merge pull request #710 from danielplohmann/patch-16
Update threat-actor.json
2022-05-04 20:38:12 +02:00
Daniel Plohmann
06c293072c
Update threat-actor.json
adding UNC3524 to the actor galaxy cluster.
2022-05-04 13:21:56 +02:00
Christophe Vandeplas
87c1e34ce8
Merge pull request #707 from 3c7/ta/saintbear
Added SaintBear to the Threat Actor cluster
2022-04-28 10:03:07 +02:00
3c7
0ad65fbe9f
Forgot to jq all the things 2022-04-28 09:42:25 +02:00
3c7
dfb6c0668e
Added SaintBear 2022-04-28 09:36:25 +02:00
Christophe Vandeplas
33476bec81 chg: [mitre] bump to MITRE ATT&CK v11.0 2022-04-25 18:29:57 +02:00
664f6d80cc
chg: [threat-actor] Killnet description added 2022-04-21 15:05:50 +02:00
1e383e2452
chg: [threat-actor] version updated 2022-04-21 14:53:14 +02:00
8905fafe1b
Merge pull request #706 from Mathieu4141/add-killnet
[actors] Add killnet
2022-04-21 14:51:49 +02:00
Mathieu Beligon
c8455a6c4d [actors] Add killnet 2022-04-21 14:06:28 +02:00
Adam McHugh
53a0fc56d3 Added Cosmic Lynx Threat Actor from Agari Whitepaper advisory 2022-04-18 10:16:26 +09:30
bca7381f33
fix: [ransomware] refs are within meta 2022-04-17 15:43:23 +02:00
eb7c5ebaf1
fix: [ransom] remove empty ref 2022-04-17 15:39:02 +02:00
bc696b43f4
chg: [ransomware] jq all the things 2022-04-17 15:35:50 +02:00
00d33fd292
Merge pull request #701 from adammchugh/ransomware-conti-update
Ammended Conti ransomware entry with ACSC 2021-010 advisory data
2022-04-17 15:35:25 +02:00
66744a4cd0
Merge pull request #704 from adammchugh/cryptominers-bluemockingbird-add
Added Cryptominer Blue Mockingbird from RedCanary advisory.
2022-04-17 14:43:59 +02:00
14907e3eef
Merge pull request #703 from adammchugh/threatactor-copypaste-add
Added Copy-Paste Threat Actor from ACSC Advisory 2020-008
2022-04-17 14:43:37 +02:00
0060322818
Merge pull request #702 from adammchugh/ransomware-blackcat-update
Ammended Blackcat ransomware entry with ACSC 2022-004 advisory data
2022-04-17 14:43:13 +02:00
Adam McHugh
84eac4b102 Added Cosmic Lynx Threat Actor from Agari Whitepaper advisory 2022-04-17 19:50:08 +09:30
Adam McHugh
f00e80ae7e Added Cryptominer Blue Mockingbird from RedCanary advisory. 2022-04-17 19:44:42 +09:30
Adam McHugh
cff8a38c5f Added Copy-Paste Threat Actor from ACSC Advisory 2020-008 2022-04-17 19:37:26 +09:30
Adam McHugh
622c0502aa Ammended Conti ransomware entry with ACSC 2021-010 advisory data 2022-04-17 19:23:11 +09:30
Adam McHugh
99caab201f Ammended Blackcat ransomware entry with ACSC 2022-004 advisory data 2022-04-17 18:05:24 +09:30
93b260f3c6
Merge pull request #700 from nyx0/main
upd: [cluster] add Threat Actor BladeHawk.
2022-04-13 08:58:24 +02:00
Thomas Dupuy
bd05eb0bba upd: [cluster] add Threat Actor BladeHawk. 2022-04-11 17:03:19 +00:00
5b68aaebd0
Merge pull request #699 from nyx0/main
upd: [clusters] add ref and synonyms for Energetic Bear.
2022-04-07 22:56:20 +02:00
Thomas Dupuy
209391f110 upd: [cluster] add ref and synonyms for Energetic Bear. 2022-04-07 18:26:58 +00:00
c673360afa
chg: [tools] add skip list in index generation (to focus on intelligence/cyber) 2022-04-04 11:21:46 +02:00
5045af93ca
chg: [doc] index updated 2022-04-04 11:21:38 +02:00
21478c0d8d
chg: [adoc] updated with the non-cyber releated lists 2022-04-04 11:17:40 +02:00
b649057a5a
chg: [handicap] fixed more fields 2022-04-04 11:09:30 +02:00
aff4345074
chg: [handicap] more cleanup 2022-04-04 11:01:38 +02:00
269f91ad75
chg: [handicap] more clean-up of uuid values 2022-04-04 10:56:29 +02:00
d3d4e7186b
chg: [handicap] fix name of the clusters 2022-04-04 10:43:56 +02:00