Commit graph

2799 commits

Author SHA1 Message Date
Mathieu4141
6cb21d39a7 [threat-actors] Add Storm-1679 2024-09-09 08:18:23 -07:00
Mathieu4141
c68dd13772 [threat-actors] Add UAT-5394 2024-09-09 08:18:23 -07:00
Mathieu4141
40dc998b9b [threat-actors] Add RaHDit 2024-09-09 08:18:23 -07:00
Mathieu4141
af9d183371 [threat-actors] Add IRLeaks 2024-09-09 08:18:23 -07:00
Mathieu4141
4fc5c37d08 [threat-actors] Add UAC-0154 2024-09-09 08:18:23 -07:00
Mathieu4141
47983fed20 [threat-actors] Add UNC4536 2024-09-09 08:18:23 -07:00
Mathieu4141
d8ee3beada [threat-actors] Add SILKFIN AGENCY 2024-09-09 08:18:22 -07:00
Mathieu4141
0d8e535b88 [threat-actors] Add UNC2970 2024-09-09 08:18:22 -07:00
Mathieu4141
5dcf22e4ef [threat-actors] Add ZeroSevenGroup 2024-09-09 08:18:22 -07:00
Mathieu4141
63566220af [threat-actors] Add Actor240524 2024-09-09 08:18:22 -07:00
Mathieu4141
164222d3c6 [threat-actors] Add TIDRONE 2024-09-09 08:18:22 -07:00
Mathieu4141
d935c1e62a [threat-actors] Add UNC4540 2024-09-09 08:18:22 -07:00
Mathieu4141
f3fe0d59d3 [threat-actors] Add CL-STA-0043 aliases 2024-09-09 08:18:22 -07:00
2efef14a46
Merge pull request #1015 from Delta-Sierra/main
alternate/modified script to generate first csirt services framework galaxy
2024-09-02 10:59:28 +02:00
d0b2e3e456
chg: [tidal] updated 2024-09-02 10:41:59 +02:00
1640effc6a
chg: [ransomware] updated 2024-09-02 10:30:47 +02:00
7258dd683c
chg: [sigma] updated to the latest version
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-09-02 10:16:50 +02:00
Delta-Sierra
2e6fe8ea16 alternate/modified script to generate first csirt services framework galaxy 2024-08-30 09:45:34 +02:00
Jean-Louis Huynen
1882171086
add: [first-csirt] implement @Delta-Sierra comments 2024-08-23 15:36:38 +02:00
Jean-Louis Huynen
a89eceab29
Merge branch 'MISP:main' into main 2024-08-23 15:05:05 +02:00
50b3fe1b73
chg: [ransomware] jq all the things
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-08-23 09:17:52 +02:00
933365fb42
chg: [ransomware] updated 2024-08-23 09:16:08 +02:00
9004c387c0
chg: [ransomware] update the description of ransomware galaxy which is now fully maintained by MISP project 2024-08-23 09:12:26 +02:00
Jean-Louis Huynen
e39ef72be2
add: [first-csirt] with correct cluster file 2024-08-22 16:51:23 +02:00
Jean-Louis Huynen
5cb42e796e
add: [first-csirt] Initial commit for FIRST CSIRT Services Framework 2024-08-22 16:46:56 +02:00
47b6fca308
chg: [sigma-rules] updated to the latest version 2024-08-20 13:57:51 +02:00
cfe1814509
chg: [threat-actor] updated 2024-08-19 18:07:20 +02:00
07a5c68b35
Merge branch 'threat-actors/ba010e21-3184-4bdc-87e0-872f16b95338' of https://github.com/Mathieu4141/misp-galaxy into Mathieu4141-threat-actors/ba010e21-3184-4bdc-87e0-872f16b95338 2024-08-19 18:05:59 +02:00
Christophe Vandeplas
552d80dd9e
chg: [mitre] deprecated entities 2024-08-17 12:41:47 +02:00
Christophe Vandeplas
31227403d7
Merge branch 'main' of https://github.com/cvandeplas/misp-galaxy 2024-08-13 17:58:52 +02:00
dac054e536
chg: [ransomware] updated 2024-08-13 10:13:03 +02:00
251d6c5039
chg: [producer] improved producer list
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-08-13 07:40:29 +02:00
Tom
13c2cbe4a1 chg: [producer] added some security companies & CERTs. 2024-08-12 16:21:19 -04:00
Mathieu4141
1ebe75d3fe [threat-actors] Add Hive0137 2024-07-31 02:14:11 -07:00
Mathieu4141
7289782aae [threat-actors] Add UNC4393 2024-07-31 02:14:11 -07:00
Mathieu4141
a3e9e8c944 [threat-actors] Add SAMBASPIDER 2024-07-31 02:14:11 -07:00
Mathieu4141
ac6c63ba8a [threat-actors] Add Ghostwriter aliases 2024-07-31 02:14:11 -07:00
Mathieu4141
cd621af35c [threat-actors] Add Storm-0506 2024-07-31 02:14:11 -07:00
Mathieu4141
f5687c0162 [threat-actors] Add TA4903 2024-07-31 02:14:11 -07:00
Mathieu4141
793e4b9408 [threat-actors] Add APT45 2024-07-26 06:27:01 -07:00
Mathieu4141
90338e0e0f [threat-actors] Add UAC-0102 2024-07-26 06:27:01 -07:00
Mathieu4141
679a59e96d [threat-actors] Add Stargazer Goblin 2024-07-26 06:27:01 -07:00
Jean-Louis Huynen
fe01d6244d
add: [nist-nice] Initial commit for NIST NICE framework
Introduces galaxies for cybersecurity:
 - Work roles
 - Skills
 - Tasks
 - Knowledges
 - Competency areas
 - OPM codes
2024-07-24 14:29:49 +02:00
Mathieu4141
49093ecf16 [threat-actors] Add UAC-0063 2024-07-24 03:39:38 -07:00
Mathieu4141
d9af67d1df [threat-actors] Add Threat Actor 888 2024-07-24 03:39:38 -07:00
535a6c7c52
Merge branch 'main' of https://github.com/Delta-Sierra/misp-galaxy into Delta-Sierra-main 2024-07-23 08:30:12 +02:00
Rony
ebe621a58a
Update threat-actor.json
added original blog link, and removed unnecessary ones.
2024-07-23 00:33:25 +05:30
Mathieu4141
0bf9d66d14 [threat-actors] Add Nullbulge 2024-07-19 09:03:54 -07:00
Mathieu4141
1a7f2beb1a [threat-actors] Add Lifting Zmiy 2024-07-19 09:03:54 -07:00
409e3d7276
chg: [ransomware] groups updated 2024-07-18 09:57:47 +02:00
4fae9bc3df
chg: [producer] ESET added 2024-07-18 09:40:57 +02:00
112200d358
chg: [sigma] updated to the latest version
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-07-17 16:08:37 +02:00
Mathieu4141
a944be0d25 [threat-actors] Add CRYSTALRAY 2024-07-15 08:06:23 -07:00
Mathieu4141
d77d3398ab [threat-actors] Add Void Banshee 2024-07-15 08:06:23 -07:00
Delta-Sierra
dcf00b320b fix version 2024-07-12 14:34:03 +02:00
Delta-Sierra
6e0e8ad416 Merge https://github.com/MISP/misp-galaxy 2024-07-12 14:31:22 +02:00
Delta-Sierra
91333c699b create nace galaxy 2024-07-12 14:12:02 +02:00
b57d77a663
chg: [ransomware] updated
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-07-10 22:54:08 +02:00
3ea10c319c
chg: [ransomware] updated ransomlook 2024-07-08 14:19:53 +02:00
Mathieu4141
9321234588 [threat-actors] Add Scattered Spider aliases 2024-07-08 02:28:35 -07:00
Mathieu4141
68d61732d1 [threat-actors] Add Water Sigbin 2024-07-08 02:28:35 -07:00
Mathieu4141
d8e7fbaa79 [threat-actors] Add CloudSorcerer 2024-07-08 02:28:35 -07:00
Mathieu4141
f7cb975c54 [threat-actors] Add Chamelgang aliases 2024-07-08 02:28:35 -07:00
Mathieu4141
c82f1a4dc8 [threat-actors] Add Boolka 2024-06-28 02:17:32 -07:00
Mathieu4141
da77ee6a61 [threat-actors] Add Dragonbridge 2024-06-28 02:17:32 -07:00
Christophe Vandeplas
886a0e6e1b
Merge pull request #994 from cvandeplas/atrm
Some checks failed
Python application / build (3.10) (push) Has been cancelled
Python application / build (3.8) (push) Has been cancelled
Python application / build (3.9) (push) Has been cancelled
chg: [atrm, tmss] migration to PyMISPGalaxies
2024-06-25 16:15:24 +02:00
Christophe Vandeplas
030e4029fb
fix: [tmss] fix sorting 2024-06-25 14:56:38 +02:00
Christophe Vandeplas
b00d7edaad
chg: [mitre-d3fend] PyMISPGalaxies and sorting 2024-06-25 14:51:29 +02:00
Mathieu4141
05f449dae3 [threat-actors] Add IntelBroker 2024-06-25 05:17:03 -07:00
Mathieu4141
c6fc6f248b [threat-actors] Add HellHounds 2024-06-25 05:17:02 -07:00
Christophe Vandeplas
1128f9ffe7
chg: [atrm] add external_ref and chg to PyMISPGalaxies 2024-06-25 13:21:16 +02:00
Christophe Vandeplas
bbbd2ca36b
chg: [tmss] migration to PyMISPGalaxies 2024-06-25 13:21:10 +02:00
Mathieu4141
0ad87ccef4 [threat-actors] Add BlueHornet 2024-06-24 02:35:58 -07:00
Mathieu4141
5347bcb95c [threat-actors] Add ALTDOS 2024-06-24 02:35:58 -07:00
Mathieu4141
a16cff8e44 [threat-actors] Add SneakyChef 2024-06-24 02:35:58 -07:00
Mathieu4141
13fc125694 [threat-actors] Add RedJuliett 2024-06-24 02:35:57 -07:00
Mathieu4141
4d94ff0c12 [threat-actors] Add JuiceLedger 2024-06-24 02:35:57 -07:00
Mathieu4141
09bd93f488 [threat-actors] Add Adrastea 2024-06-24 02:35:57 -07:00
Mathieu4141
965f1f5be4 [threat-actors] Add Markopolo 2024-06-24 02:35:57 -07:00
Mathieu4141
879ae26c55 [threat-actors] Add Void Arachne 2024-06-24 02:35:57 -07:00
dded13d5c2
chg: [threat-actor] version updated
Some checks failed
Python application / build (3.10) (push) Has been cancelled
Python application / build (3.8) (push) Has been cancelled
Python application / build (3.9) (push) Has been cancelled
2024-06-21 10:24:39 +02:00
400983eccd
chg: [sigma] updated
Some checks are pending
Python application / build (3.10) (push) Waiting to run
Python application / build (3.8) (push) Waiting to run
Python application / build (3.9) (push) Waiting to run
2024-06-19 16:24:13 +02:00
d8ac54d7d6
chg: [ransomware] aligned with ransomlook.io 2024-06-19 10:45:09 +02:00
Christophe Vandeplas
f3c8ccc032
Merge pull request #992 from Mathieu4141/threat-actors/fix-stone-panda-typo
[threat actors] fix stone panda typo
2024-06-19 10:20:17 +02:00
Mathieu Beligon
1e63bfca1b [threat actors] fix stone panda typo 2024-06-19 11:11:40 +03:00
Christophe Vandeplas
6f4b3b1387
fix: fixes CaSe InSenSiTiVe duplicates 2024-06-18 16:58:38 +02:00
Christophe Vandeplas
6341ffce68
fix: [fight] fix duplicates 2024-06-18 16:06:33 +02:00
Christophe Vandeplas
ca3cd1d0fb
fix: [Ransomware] remove Freeme / FreeMe duplicate 2024-06-18 15:54:58 +02:00
Christophe Vandeplas
da2a9c2fa7
fix: [Ransomware] remove Freeme / FreeMe duplicate 2024-06-18 15:54:28 +02:00
25d7755f89
chg: [threat-actor] version updated 2024-06-18 15:43:48 +02:00
Christophe Vandeplas
3dc4075233
chg: [fight] swiched to using PyMISPGalaxies 2024-06-18 14:30:39 +02:00
Mathieu4141
950a6bfa4e [threat-actors] Add TraderTraitor aliases 2024-06-18 04:51:30 -07:00
Mathieu4141
4cabbe3bc9 [threat-actors] Add UAC-0020 2024-06-18 04:51:30 -07:00
Mathieu4141
c8e623e84c [threat-actors] Add Bondnet 2024-06-18 04:51:30 -07:00
Mathieu4141
93cc634d1c [threat-actors] Add TA571 2024-06-18 04:51:29 -07:00
Mathieu4141
8ba48b446a [threat-actors] Add Sp1d3r 2024-06-18 04:51:29 -07:00
Mathieu4141
e7bb6de04a [threat-actors] Add UNC5537 2024-06-18 04:51:29 -07:00
Mathieu4141
b317c4ff6b [threat-actors] Add Gitloker 2024-06-18 04:51:29 -07:00
Mathieu4141
fb177f95db [threat-actors] Add UTG-Q-008 2024-06-18 04:51:29 -07:00
Christophe Vandeplas
5ca2dc6ff7
fix: [fight] ugly workaround for duplicate entries 2024-06-17 15:18:55 +02:00