Commit graph

589 commits

Author SHA1 Message Date
e6bae7165c
Merge pull request #224 from Delta-Sierra/master
add some clusters
2018-06-13 12:43:35 +02:00
Deborah Servili
4ac23483b9 add some tools 2018-06-13 11:54:50 +02:00
Deborah Servili
cef7d02622 update version 2018-06-13 11:06:31 +02:00
Deborah Servili
c17a2aa7cc add some clusters 2018-06-13 10:39:11 +02:00
Christophe Vandeplas
db81051154 minor layout corrections - validate_all 2018-06-12 11:03:09 +02:00
Christophe Vandeplas
d0d54b2751 merge pull request 222 2018-06-12 10:58:08 +02:00
Deborah Servili
508bb081c8 add BabaYaga Malware 2018-06-08 15:54:30 +02:00
Deborah Servili
2b447585b6 add PLEAD 2018-06-08 10:18:41 +02:00
Kafeine
25d21204fb
fix 2018-06-07 10:34:55 +01:00
Kafeine
52f0858ef5
+ Glazunov 2018-06-07 10:31:58 +01:00
Deborah Servili
a96a8a4a13 add sigrun ransomware's ransomnotes 2018-06-07 09:33:08 +02:00
Kafeine
178d5219c7
guuid & + VenomKit 2018-06-06 18:00:25 +01:00
Deborah Servili
e561e3e4f0 add Sigrun ransomwaremeta data 2018-06-06 16:29:24 +02:00
Deborah Servili
e2a25e165d add Sigrun ransomware 2018-06-06 16:12:31 +02:00
Deborah Servili
07f91bcca4 add another cryptomix variant 2018-06-06 15:44:32 +02:00
Deborah Servili
3e91466aea add Brambul worm 2018-06-06 15:07:30 +02:00
Deborah Servili
3e10d0957c add Joanap RAT 2018-06-06 14:34:42 +02:00
308774755c
add: Iron Backdoor 2018-06-03 18:39:37 +02:00
raw-data
388a2b25b3 [ADD] x2 new info/pwd stealers - Nocturnal Stealer, TeleGrab 2018-06-01 15:59:25 +01:00
raw-data
ba6892408b [ADD] NavRAT 2018-06-01 15:09:22 +01:00
raw-data
42bb2175e2 [ADD] DanaBot 2018-06-01 15:08:55 +01:00
6d5b8de216
Merge branch 'master' of github.com:MISP/misp-galaxy 2018-05-29 21:47:59 +02:00
c08c6af936
chg: Stalker Panda description added 2018-05-29 21:47:04 +02:00
raw-data
8726e0542d [ADD] VPNFilter in tool.json cluster 2018-05-26 23:49:59 +01:00
raw-data
b0396e5ea2 [ADD] Pontoeb, WICKED and Brain Food into botnet.json cluster 2018-05-24 16:39:24 +01:00
Raphaël Vinot
ca964d9d35 Merge branch 'master' of github.com:MISP/misp-galaxy 2018-05-19 17:58:23 -04:00
Raphaël Vinot
96f3bf1cb8 fix: Duplicate ELECTRUM entry
Fix #212
2018-05-19 17:57:51 -04:00
Deborah Servili
22cb1618a5
Merge pull request #214 from Delta-Sierra/master
update mitre galaxies - add external id and killchain
2018-05-19 13:21:18 +02:00
Deborah Servili
6c8edd3f61 jq 2018-05-19 13:09:50 +02:00
Deborah Servili
d82a76c08f fix scripts for nobile and pre attack attack pattern 2018-05-19 13:09:30 +02:00
Deborah Servili
f6d7291e7a jq 2018-05-19 12:57:20 +02:00
Deborah Servili
730353f63d update mitre galaxies - add external id and killchain 2018-05-19 12:56:20 +02:00
3a7c4e3c57
Merge pull request #211 from eCrimeLabs/master
Added links in relation to Threat-actor info from Dragos
2018-05-15 16:17:56 +02:00
9b888f238a
Merge pull request #209 from raw-data/master
[ADD] RadRAT, ARS VBS Loader and FlawedAmmyy into rat.json cluster
2018-05-15 16:17:18 +02:00
Dennis Rand
1ab4e4f4cf Added data related to Dragos Adverseries 2018-05-15 12:06:48 +00:00
Deborah Servili
3d5c697761 add Stalinlocker 2018-05-15 12:27:20 +02:00
Deborah Servili
5b22aa7225 add Mettle botnet 2018-05-14 12:00:22 +02:00
raw-data
0ba6233309 [ADD] RadRAT, ARS VBS Loader and FlawedAmmyy into rat.json cluster 2018-05-11 01:15:35 +01:00
Deborah Servili
5e0bd260d6 update some clusters 2018-05-09 16:12:02 +02:00
Deborah Servili
2b16c86687 add maikspy 2018-05-09 09:52:22 +02:00
Deborah Servili
d3f7f7b591 jq~ 2018-05-09 09:34:08 +02:00
Deborah Servili
360a4d4556 add reference for HNS botnet 2018-05-09 09:29:23 +02:00
Deborah Servili
0d745f6c93 add HNS bot net & HPE iLO 4 Ransomware/Wiper 2018-05-09 09:22:29 +02:00
Deborah Servili
394950379b add Kitty malware 2018-05-07 15:27:29 +02:00
Deborah Servili
1c783a1453 update version -oops- 2018-05-07 08:52:15 +02:00
Deborah Servili
9cf976b2c5 update - GandCrab v3 2018-05-07 08:46:31 +02:00
Deborah Servili
d6e4c166c5 add an unnamed ransomware 2018-05-04 15:59:37 +02:00
Deborah Servili
ba631f1b43 add spymaster pro as rat 2018-05-04 15:12:56 +02:00
Deborah Servili
58e3e5f5d6 add ZooPark campaign 2018-05-04 10:16:01 +02:00
6b1d7d2201
add: threat actors from Dragos Inc. (based on https://dragos.com/adversaries.html) 2018-05-03 21:22:09 +02:00
Deborah Servili
979c784640 jq 2018-05-03 16:08:27 +02:00
Deborah Servili
83581c62b0 add Rubella Macro Builder 2018-05-03 15:38:06 +02:00
Deborah Servili
434716df86 add GravityRAT 2018-05-03 14:35:20 +02:00
Deborah Servili
55504f93d6 add HOGFISH as APT10 synonym 2018-05-03 11:10:21 +02:00
Deborah Servili
9a800ebec1 add Henbox 2018-05-03 10:57:39 +02:00
Deborah Servili
11f0963468 add Orangeworm, Kwampirs, Iron ransomware and Ton ransomware 2018-04-24 10:20:11 +02:00
Deborah Servili
6bf2004bd5 add Muhstik botnet 2018-04-23 09:26:28 +02:00
Stefan Kelm
0b63cb683b NMCRYPT ransomware 2018-04-20 11:28:02 +02:00
Deborah Servili
f95f7b6057 Merge branch 'master' of https://github.com/Delta-Sierra/misp-galaxy 2018-04-20 10:27:54 +02:00
Deborah Servili
338eb7ab61 jq 2018-04-20 10:26:11 +02:00
Deborah Servili
6e2c0ea809
Update Ransomware galaxy version 2018-04-20 10:18:33 +02:00
Deborah Servili
f87da7a3a6 add Xiaoba 2018-04-20 10:13:52 +02:00
Deborah Servili
0e0c806e9e Merge https://github.com/MISP/misp-galaxy 2018-04-19 16:04:18 +02:00
Deborah Servili
473bf61fc7 add some ransomwares 2018-04-19 15:00:30 +02:00
Daniel Roethlisberger
8c861848f8 Add Comnie RAT. 2018-04-17 15:49:05 +02:00
StefanKelm
74610731ee
Added 'Chtonic' synonym 2018-04-16 15:37:23 +02:00
StefanKelm
eff4ace398
Remove Chthonic since it's a duplicate (banker.json) 2018-04-16 15:34:59 +02:00
Deborah Servili
c785ee6384 add some ransomwares & threat actors 2018-04-16 09:24:11 +02:00
Deborah Servili
1a18ffb3eb add Rovnix 2018-04-11 16:30:58 +02:00
Deborah Servili
e4b95abce3 add IcedID reference 2018-04-11 11:59:35 +02:00
Deborah Servili
c773597155 add GoScanSSH tool 2018-04-10 15:56:27 +02:00
Deborah Servili
113599bb24 add LockCrypt ransomware 2018-04-10 15:15:08 +02:00
Deborah Servili
a11bd66cf3 jq 2018-04-10 10:54:58 +02:00
Deborah Servili
ef8b428838 add PUBG ransomware 2018-04-10 10:54:36 +02:00
Deborah Servili
6f3921076a update matrix ransomware 2018-04-09 15:49:11 +02:00
Deborah Servili
20b1508e4b update version 2018-04-09 14:59:12 +02:00
Deborah Servili
e67a7b015d update matrix ransomware 2018-04-09 14:52:07 +02:00
Deborah Servili
8596ff3e10 update threat actor galaxy based on https://www.fireeye.com/content/dam/collateral/en/mtrends-2018.pdf 2018-04-09 11:52:12 +02:00
Deborah Servili
386349c607 add BlackRuby& WhiteRose ransomwares (+some fix) 2018-04-06 12:00:57 +02:00
Deborah Servili
47a0fbed8c merge the two Igexin clusters - fix #183 2018-04-05 13:47:09 +02:00
Deborah Servili
2bd3344eb6 add 2 -supposed- wipers 2018-04-05 11:51:13 +02:00
Deborah Servili
a0e8e45321 update ransomware galaxy versionC 2018-04-05 10:46:48 +02:00
Deborah Servili
7584c5f2a1 update cryptomix 2018-04-05 10:45:26 +02:00
Deborah Servili
b31f2632fd update botnet version 2018-04-05 09:49:57 +02:00
Deborah Servili
73e14c53eb complete hajime botnet 2018-04-04 16:22:50 +02:00
Deborah Servili
572404dcc7 add hajime botnet 2018-04-04 14:41:57 +02:00
Deborah Servili
a78972e0ac
Merge pull request #181 from Delta-Sierra/master
add external_id to values (MITRE galaxies)
2018-04-04 14:09:49 +02:00
Deborah Servili
8d4053741b jq 2018-04-04 12:54:04 +02:00
Deborah Servili
804fcedb5c add external_id to values 2018-04-03 15:53:17 +02:00
f4d7fe0166
add: SHARPKNOT 2018-03-29 16:31:05 +02:00
Kafeine
6c7d0f8684
+ThreadKit 2018-03-26 18:05:14 +01:00
Raphaël Vinot
24fa5b8b1b Merge branch 'master' of github.com:MISP/misp-galaxy 2018-03-23 10:40:32 +01:00
Raphaël Vinot
f6695f5b56 fix: Duplicate UUID in tools 2018-03-23 10:40:21 +01:00
Deborah Servili
0f14c2e563 Merge https://github.com/MISP/misp-galaxy 2018-03-23 08:28:20 +01:00
Deborah Servili
3ae0e5f113 add several tools 2018-03-23 08:27:14 +01:00
StefanKelm
cdf5344719
Update mitre-enterprise-attack-intrusion-set.json 2018-03-22 14:32:59 +01:00
StefanKelm
9add19ae7f
Update and rename mitre-entreprise-attack-tool.json to mitre-enterprise-attack-tool.json 2018-03-22 14:03:31 +01:00
StefanKelm
a1daa975aa
Update and rename mitre-entreprise-attack-relationship.json to mitre-enterprise-attack-relationship.json 2018-03-22 14:02:30 +01:00
StefanKelm
9d612ba3d9
Update and rename mitre-entreprise-attack-malware.json to mitre-enterprise-attack-malware.json 2018-03-22 14:01:27 +01:00
StefanKelm
b9aef43c73
Update and rename mitre-entreprise-attack-intrusion-set.json to mitre-enterprise-attack-intrusion-set.json 2018-03-22 14:00:20 +01:00