Commit graph

2849 commits

Author SHA1 Message Date
298bc784da
chg: [doc] README clean-up - list automatically generated 2022-01-07 13:05:56 +01:00
d51eecdab8
new: [tools] Generate markdown index 2022-01-07 12:55:50 +01:00
adb467743e
chg: [tools] add a reference to the relationship graph 2022-01-06 19:01:40 +01:00
b1e388c815
Merge pull request #672 from danielplohmann/patch-11
adding Mandiant's FIN13.
2022-01-03 09:43:45 +01:00
Daniel Plohmann
3094283252
adding Mandiant's FIN13. 2022-01-03 09:32:43 +01:00
Raphaël Vinot
174a812cef chg: Use pytest instead of nose 2021-12-20 11:06:33 +01:00
eba1b2839f
chg: [concordia] CMTMF killchain typo fixed 2021-12-20 10:41:00 +01:00
Raphaël Vinot
b4d518d4f0 fix: cmtmf-attack-pattern had multiple duplicate UUIDs 2021-12-17 17:58:29 +01:00
12617ff627
chg: [concordia] fix name inconsistencies 2021-12-17 17:41:00 +01:00
b2cc6277cf
chg: [concordia] set a mobile icon 2021-12-17 17:36:48 +01:00
69b582f9ba
chg: [concordia] duplicate removed 2021-12-17 17:31:38 +01:00
bc3ab62917
chg: [concordia] duplicate removed 2021-12-17 17:26:04 +01:00
ee2a3c83f4
chg: [concordia] duplicate techniques removed 2021-12-17 17:21:00 +01:00
01d23b61b7
chg: [concordia] typo fixed 2021-12-17 17:15:43 +01:00
01f2ce68d4
chg: [misp-galaxy] duplicate modify trusted environment and also different technique ID? 2021-12-17 17:13:57 +01:00
5becac98e4
chg: [concordia] duplicates removed 2021-12-17 16:51:11 +01:00
18a44d372b
chg: [cmtmf-attack-pattern] update 2021-12-17 16:32:20 +01:00
dd210c5d14
Merge pull request #671 from MISP/BennSaturn-concordia_mtmf
Benn saturn concordia mtmf
2021-12-17 16:18:00 +01:00
ce79aba48c
new: [CMTMF] fix the galaxy definition 2021-12-17 16:14:19 +01:00
ae7b7bd47d
chg: [cmtmf-attack-pattern] various fixes to make JSON ok 2021-12-17 16:08:07 +01:00
7b587710b1
Merge branch 'concordia_mtmf' of https://github.com/BennSaturn/misp-galaxy into BennSaturn-concordia_mtmf 2021-12-17 15:55:03 +01:00
a0b65dd42c
Merge pull request #670 from jloehel/darkwatchman
Adds DarkWatchman RAT
2021-12-17 15:24:00 +01:00
Jürgen Löhel
b81ac7f01d Adds DarkWatchman RAT
Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
2021-12-17 07:20:58 -06:00
Delta-Sierra
b8960393a4 add Milan Rat, Shark tool and Lyceum synonyms 2021-11-29 16:00:40 +01:00
Delta-Sierra
bb92427b65 add Lyceum synonyms/sources 2021-11-29 12:05:51 +01:00
f98996bfc6
Merge pull request #669 from Delta-Sierra/main
add ESPecter Bootkit
2021-11-19 16:35:02 +01:00
Delta-Sierra
78a8cf4ad2 add ESPecter Bootkit 2021-11-19 16:30:57 +01:00
Delta-Sierra
c89623e945 add ESPecter bootkit 2021-11-16 08:17:37 +01:00
Christophe Vandeplas
aeb5719448 chg: [att&ck] update to ATT&CK v10 2021-10-22 14:34:25 +02:00
ab41df7282
chg: [malpedia] remove duplicate 2021-10-20 12:24:12 +02:00
e517787e7c
chg: [malpedia] duplicates removed 2021-10-20 12:21:05 +02:00
69f878c86f
fix: [malpedia] remove duplicate urls 2021-10-20 12:16:22 +02:00
87f9b0d029
Merge branch 'marjatech-main' into main 2021-10-20 10:23:25 +02:00
da91f2abc2
chg: [malpedia] updated 2021-10-20 10:21:03 +02:00
marjatech
d74fdb3e43
update malpedia 2021-10-19 16:21:19 +02:00
Bernardo Santos
e74fcfe268 Update cmtmf-attack-pattern.json
- update version
2021-10-13 10:06:00 +02:00
Bernardo Santos
5f19983ba3 Update cmtmf-attack-pattern.json
- Changes to cluster type
- Fix typo for privilege escalation tactic
2021-10-13 09:57:03 +02:00
Bernardo Santos
49dfcca563 CONCORDIA MTMF - Initial version
Initial version of the CONCORDIA Mobile Threat Modelling Framework for the CONCORDIA Project: https://www.concordia-h2020.eu/
2021-10-12 10:54:06 +02:00
Bernardo Santos
d09681b011 CONCORDIA MTMF - Initial version
Initial version of the CONCORDIA Mobile Threat Modelling Framework for the CONCORDIA Project: https://www.concordia-h2020.eu/
2021-10-12 10:45:03 +02:00
20f14c0090
Merge pull request #666 from Wachizungu/add-common-raven
Add threat actor common raven
2021-10-04 17:45:17 +02:00
Jeroen Pinoy
9ec76ae185
Add threat actor common raven 2021-10-03 23:30:20 +02:00
fccefddc48
Merge pull request #665 from thomaspatzke/main
Added O365 techniques
2021-09-18 23:40:37 +02:00
Thomas Patzke
26f0c344a1 Added O365 techniques
Source:
https://www.inversecos.com/2021/09/office365-attacks-bypassing-mfa.html
2021-09-18 23:27:38 +02:00
6b279d3b33
Merge pull request #664 from nyx0/main
Adding TA and Tool
2021-08-27 11:01:31 +02:00
Thomas Dupuy
1985de4d44 Add BLUELIGHT tool. 2021-08-27 10:28:06 +02:00
Thomas Dupuy
89a3f986ba Add InkySquid synonym. 2021-08-24 16:29:34 +02:00
60cc6dd536
Merge pull request #663 from danielplohmann/patch-10
fixed typo in actor name (CLOCKWORD -> CLOCKWORK SPIDER)
2021-08-19 06:36:43 +02:00
Daniel Plohmann
3272960a14
fixed typo in actor name (CLOCKWORD -> CLOCKWORK SPIDER) 2021-08-19 06:02:40 +02:00
959b919dc6
Merge pull request #662 from r0ny123/patch-1
Add origin country to UNC2452 & HAFNIUM
2021-08-04 08:17:09 +02:00
Rony
5dd0c7d8b3
chg: [threat-actor] add origin country to UNC2452 & HAFNIUM
addressed https://github.com/MISP/misp-galaxy/pull/660#issuecomment-884475015
2021-08-02 22:30:05 +05:30