misp-galaxy/vocabularies/threat-actor/intended-effect.json
2017-07-25 17:39:06 +02:00

101 lines
3.5 KiB
JSON
Raw Permalink Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

{
"values": [
{
"value": "Advantage",
"description": "The intended effect of the incident was for the attacker to obtain some advantage over the target."
},
{
"value": "Advantage - Economic",
"description": "The intended effect of the incident was for the attacker to obtain some economic advantage over the target."
},
{
"value": "Advantage - Military",
"description": "The intended effect of the incident was for the attacker to obtain some military advantage over the target."
},
{
"value": "Advantage - Political",
"description": "The intended effect of the incident was for the attacker to obtain some political advantage over the target."
},
{
"value": "Theft",
"description": "The intended effect of the incident was to perpetrate a non-specific theft."
},
{
"value": "Theft - Intellectual Property",
"description": "The intended effect of the incident was to perpetrate a theft of intellectual property."
},
{
"value": "Theft - Credential Theft",
"description": "The intended effect of the incident was to perpetrate a theft of credentials."
},
{
"value": "Theft - Identity Theft",
"description": "The intended effect of the incident was to perpetrate a theft of the targets identity."
},
{
"value": "Theft - Theft of Proprietary Information",
"description": "The intended effect of the incident was to perpetrate a theft of proprietary information."
},
{
"value": "Account Takeover",
"description": "The intended effect of the incident was for the attacker to obtain control over an account (financial, etc)."
},
{
"value": "Brand Damage",
"description": "The intended effect of the incident was for the attacker to cause some brand damage on the target."
},
{
"value": "Competitive Advantage",
"description": "The intended effect of the incident was for the attacker to obtain some non-specific competitive advantage over the target."
},
{
"value": "Degradation of Service",
"description": "The intended effect of the incident was reducing the level of services provided by the target."
},
{
"value": "Denial and Deception",
"description": ""
},
{
"value": "Destruction",
"description": "The intended effect of the incident was to cause the destruction of a software or hardware system."
},
{
"value": "Disruption"
},
{
"value": "Embarrassment",
"description": "The intended effect of the incident was to expose a socially unacceptable action by the target."
},
{
"value": "Exposure"
},
{
"value": "Extortion",
"description": "The intended effect of the incident was force the payment of some sort to prevent the attacker from taking some action."
},
{
"value": "Fraud"
},
{
"value": "Harassment",
"description": "The intended effect of the incident was to pressure or intimidate the target."
},
{
"value": "ICS Control"
},
{
"value": "Traffic Diversion"
},
{
"value": "Unauthorized Access"
}
],
"version" : 2,
"description": "The IntendedEffectVocab is the default STIX vocabulary for expressing the intended effect of a threat actor",
"source": "STIX 1.0",
"author": ["STIX"],
"uuid": "b6975c96-296a-48cf-9006-034ed102bc85",
"stix": "1.2.1",
"type": "threat-actor-intended-effect-vocabulary"
}