Commit graph

2847 commits

Author SHA1 Message Date
Mathieu4141
e464c0c5c2 [threat-actors] Add RipperSec 2024-11-01 10:43:26 -07:00
Mathieu4141
2b94de3f18 [threat-actors] Add Shahid Hemmat 2024-11-01 10:43:26 -07:00
Mathieu4141
5c0ec348c9 [threat-actors] Add Asnarök 2024-11-01 10:43:26 -07:00
Mathieu4141
540c4e542e [threat-actors] Add Anonymous64 2024-11-01 10:43:26 -07:00
Daniel Plohmann
6c4c2696b6
add APT37 alias used by AhnLab (TA-RedAnt) 2024-10-25 14:08:53 +02:00
Daniel Plohmann
9337227db7
added Unit42 name for Kimsuky (Sparkling Pisces) 2024-10-21 08:48:56 +02:00
2594c91864
chg: [cluster] updated 2024-10-17 13:55:15 +02:00
73847f1cc1
chg: [ransomware] updated to the latest version 2024-10-17 13:44:21 +02:00
f50ce73d12
chg: [ransomware] updated 2024-10-10 20:37:16 +02:00
a4d1cdc1ce
chg: [producer] updated
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-10-10 09:33:12 +02:00
e2985c3686
fix: [producer] must be an array 2024-10-10 06:40:15 +02:00
4c58ed03b0
fix: [producer] refs are arrays 2024-10-10 06:37:03 +02:00
rectifyq
e7ac294850 chg: [producer] added Recorded Future, Cyble, Cyfirma, SentinelOne, Fortinet, Zscaler, Splunk and Huntress. 2024-10-09 12:57:36 +00:00
Mathieu4141
8c9ee3b293 [threat-actors] Add TaskMasters 2024-10-07 03:58:02 -07:00
Mathieu4141
2137a86586 [threat-actors] Add SongXY 2024-10-07 03:58:02 -07:00
Mathieu4141
182102f738 [threat-actors] Add CeranaKeeper 2024-10-07 03:58:02 -07:00
Mathieu4141
dfe6e6dfab [threat-actors] Add Awaken Likho 2024-10-07 03:58:02 -07:00
Mathieu4141
d6ade514bc [threat-actors] Add SkidSec 2024-10-07 03:58:02 -07:00
52d06097eb
chg: [threat-actor] version updated
Some checks failed
Python application / build (3.10) (push) Has been cancelled
Python application / build (3.8) (push) Has been cancelled
Python application / build (3.9) (push) Has been cancelled
2024-10-03 14:46:19 +02:00
bd95dfbc07
Merge pull request #1024 from Mathieu4141/threat-actors/d848c04e-d8f4-4b71-bf82-f8d841bda778
[threat actors] Add 8 actors and 1 alias
2024-10-03 14:34:21 +02:00
59a0d9a986
chg: [tidal] updated to the latest version
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-10-03 08:40:13 +02:00
a3fd555efe
chg: [sigma] updated to the latest version 2024-10-03 08:38:18 +02:00
86e2757610
chg: [ransomware] updated 2024-10-03 08:21:33 +02:00
Mathieu4141
aa21df1b3f [threat-actors] Add UNC1860 2024-10-02 02:04:56 -07:00
Mathieu4141
cbdca883d6 [threat-actors] Add Storm-1567 aliases 2024-10-02 02:04:56 -07:00
Mathieu4141
e6072c5823 [threat-actors] Add CosmicBeetle 2024-10-02 02:04:56 -07:00
Mathieu4141
50b2ad7c23 [threat-actors] Add Storm-0501 2024-10-02 02:04:56 -07:00
Mathieu4141
3b57092dd1 [threat-actors] Add Handala 2024-10-02 02:04:56 -07:00
Mathieu4141
84ca613198 [threat-actors] Add AzzaSec 2024-10-02 02:04:56 -07:00
Mathieu4141
0c0817ab7e [threat-actors] Add VICE SPIDER 2024-10-02 02:04:55 -07:00
Mathieu4141
f39dcbdb73 [threat-actors] Add DragonRank 2024-10-02 02:04:55 -07:00
Mathieu4141
710bcf6bd9 [threat-actors] Add Storm-0494 2024-10-02 02:04:55 -07:00
Delta-Sierra
e6cb8732c9 Merge https://github.com/MISP/misp-galaxy 2024-09-30 08:17:02 +02:00
Delta-Sierra
70b0823947 SloppyLemming relationsships 2024-09-27 14:23:01 +02:00
Rony
e6db8c579a
chg: [threat-actor] added a relationship between Earth Estries and GhostEmperor 2024-09-26 18:21:38 +00:00
Rony
aeab78b95e
chg: [threat-actor] GhostEmperor updated 2024-09-26 17:12:54 +00:00
f6f6ab550f
chg: [ransomware] updated
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-09-26 17:36:42 +02:00
60340edb22
chg: [threat-actor] SloppyLemming added
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-09-26 08:34:37 +02:00
24a228d731
chg: [producer] updated with cloudflare and one description fixed 2024-09-26 08:19:26 +02:00
Rony
483f532613
chg: [threat-actor] fix typo 2024-09-24 05:07:30 +00:00
Rony
8108d2b1fe
chg: [threat-actor] add earth baxia 2024-09-24 05:06:44 +00:00
53a65b17d2
chg: [ransomware] updated to the latest version 2024-09-19 11:45:32 +02:00
c57a99cd23
chg: [doc] updated 2024-09-19 11:11:43 +02:00
8417d9899a
Merge branch 'main' of github.com:MISP/misp-galaxy 2024-09-19 10:57:27 +02:00
Tom
1049d230d7 chg: [producer] added some security companies. 2024-09-09 12:40:42 -04:00
Mathieu4141
0d3143ab2a [threat-actors] Add HikkI-Chan 2024-09-09 08:18:23 -07:00
Mathieu4141
1725fd3b1b [threat-actors] Add UTG-Q-010 2024-09-09 08:18:23 -07:00
Mathieu4141
63bcac4ed9 [threat-actors] Add Fail0verflow 2024-09-09 08:18:23 -07:00
Mathieu4141
6cb21d39a7 [threat-actors] Add Storm-1679 2024-09-09 08:18:23 -07:00
Mathieu4141
c68dd13772 [threat-actors] Add UAT-5394 2024-09-09 08:18:23 -07:00
Mathieu4141
40dc998b9b [threat-actors] Add RaHDit 2024-09-09 08:18:23 -07:00
Mathieu4141
af9d183371 [threat-actors] Add IRLeaks 2024-09-09 08:18:23 -07:00
Mathieu4141
4fc5c37d08 [threat-actors] Add UAC-0154 2024-09-09 08:18:23 -07:00
Mathieu4141
47983fed20 [threat-actors] Add UNC4536 2024-09-09 08:18:23 -07:00
Mathieu4141
d8ee3beada [threat-actors] Add SILKFIN AGENCY 2024-09-09 08:18:22 -07:00
Mathieu4141
0d8e535b88 [threat-actors] Add UNC2970 2024-09-09 08:18:22 -07:00
Mathieu4141
5dcf22e4ef [threat-actors] Add ZeroSevenGroup 2024-09-09 08:18:22 -07:00
Mathieu4141
63566220af [threat-actors] Add Actor240524 2024-09-09 08:18:22 -07:00
Mathieu4141
164222d3c6 [threat-actors] Add TIDRONE 2024-09-09 08:18:22 -07:00
Mathieu4141
d935c1e62a [threat-actors] Add UNC4540 2024-09-09 08:18:22 -07:00
Mathieu4141
f3fe0d59d3 [threat-actors] Add CL-STA-0043 aliases 2024-09-09 08:18:22 -07:00
2efef14a46
Merge pull request #1015 from Delta-Sierra/main
alternate/modified script to generate first csirt services framework galaxy
2024-09-02 10:59:28 +02:00
d0b2e3e456
chg: [tidal] updated 2024-09-02 10:41:59 +02:00
1640effc6a
chg: [ransomware] updated 2024-09-02 10:30:47 +02:00
7258dd683c
chg: [sigma] updated to the latest version
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-09-02 10:16:50 +02:00
Delta-Sierra
2e6fe8ea16 alternate/modified script to generate first csirt services framework galaxy 2024-08-30 09:45:34 +02:00
Jean-Louis Huynen
1882171086
add: [first-csirt] implement @Delta-Sierra comments 2024-08-23 15:36:38 +02:00
Jean-Louis Huynen
a89eceab29
Merge branch 'MISP:main' into main 2024-08-23 15:05:05 +02:00
50b3fe1b73
chg: [ransomware] jq all the things
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-08-23 09:17:52 +02:00
933365fb42
chg: [ransomware] updated 2024-08-23 09:16:08 +02:00
9004c387c0
chg: [ransomware] update the description of ransomware galaxy which is now fully maintained by MISP project 2024-08-23 09:12:26 +02:00
Jean-Louis Huynen
e39ef72be2
add: [first-csirt] with correct cluster file 2024-08-22 16:51:23 +02:00
Jean-Louis Huynen
5cb42e796e
add: [first-csirt] Initial commit for FIRST CSIRT Services Framework 2024-08-22 16:46:56 +02:00
47b6fca308
chg: [sigma-rules] updated to the latest version 2024-08-20 13:57:51 +02:00
cfe1814509
chg: [threat-actor] updated 2024-08-19 18:07:20 +02:00
07a5c68b35
Merge branch 'threat-actors/ba010e21-3184-4bdc-87e0-872f16b95338' of https://github.com/Mathieu4141/misp-galaxy into Mathieu4141-threat-actors/ba010e21-3184-4bdc-87e0-872f16b95338 2024-08-19 18:05:59 +02:00
Christophe Vandeplas
552d80dd9e
chg: [mitre] deprecated entities 2024-08-17 12:41:47 +02:00
Christophe Vandeplas
31227403d7
Merge branch 'main' of https://github.com/cvandeplas/misp-galaxy 2024-08-13 17:58:52 +02:00
dac054e536
chg: [ransomware] updated 2024-08-13 10:13:03 +02:00
251d6c5039
chg: [producer] improved producer list
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-08-13 07:40:29 +02:00
Tom
13c2cbe4a1 chg: [producer] added some security companies & CERTs. 2024-08-12 16:21:19 -04:00
Mathieu4141
1ebe75d3fe [threat-actors] Add Hive0137 2024-07-31 02:14:11 -07:00
Mathieu4141
7289782aae [threat-actors] Add UNC4393 2024-07-31 02:14:11 -07:00
Mathieu4141
a3e9e8c944 [threat-actors] Add SAMBASPIDER 2024-07-31 02:14:11 -07:00
Mathieu4141
ac6c63ba8a [threat-actors] Add Ghostwriter aliases 2024-07-31 02:14:11 -07:00
Mathieu4141
cd621af35c [threat-actors] Add Storm-0506 2024-07-31 02:14:11 -07:00
Mathieu4141
f5687c0162 [threat-actors] Add TA4903 2024-07-31 02:14:11 -07:00
Mathieu4141
793e4b9408 [threat-actors] Add APT45 2024-07-26 06:27:01 -07:00
Mathieu4141
90338e0e0f [threat-actors] Add UAC-0102 2024-07-26 06:27:01 -07:00
Mathieu4141
679a59e96d [threat-actors] Add Stargazer Goblin 2024-07-26 06:27:01 -07:00
Jean-Louis Huynen
fe01d6244d
add: [nist-nice] Initial commit for NIST NICE framework
Introduces galaxies for cybersecurity:
 - Work roles
 - Skills
 - Tasks
 - Knowledges
 - Competency areas
 - OPM codes
2024-07-24 14:29:49 +02:00
Mathieu4141
49093ecf16 [threat-actors] Add UAC-0063 2024-07-24 03:39:38 -07:00
Mathieu4141
d9af67d1df [threat-actors] Add Threat Actor 888 2024-07-24 03:39:38 -07:00
535a6c7c52
Merge branch 'main' of https://github.com/Delta-Sierra/misp-galaxy into Delta-Sierra-main 2024-07-23 08:30:12 +02:00
Rony
ebe621a58a
Update threat-actor.json
added original blog link, and removed unnecessary ones.
2024-07-23 00:33:25 +05:30
Mathieu4141
0bf9d66d14 [threat-actors] Add Nullbulge 2024-07-19 09:03:54 -07:00
Mathieu4141
1a7f2beb1a [threat-actors] Add Lifting Zmiy 2024-07-19 09:03:54 -07:00
409e3d7276
chg: [ransomware] groups updated 2024-07-18 09:57:47 +02:00
4fae9bc3df
chg: [producer] ESET added 2024-07-18 09:40:57 +02:00
112200d358
chg: [sigma] updated to the latest version
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-07-17 16:08:37 +02:00