MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-26 16:57:18 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
misp-galaxy/clusters
History
Daniel Plohmann ca66fcd93a
merge COVELLITE into Lazarus Group 
I would propose to move COVELLITE as tracked by Dragos as an alias into Lazarus Group and merge the references. 
Dragos' own description states that it refers to the same group as "Lazarus" and "Hidden Cobra" in that infrastructure and tools are the same: https://www.dragos.com/threat-activity-groups/ - the entry in MISP's threat actor library also reflects that.
2021-01-17 15:07:26 +01:00
..
android.json fix: UUID issues 2019-05-07 12:09:39 +02:00
attck4fraud.json chg: [attck4fraud] jq all the things 2019-10-20 20:07:29 +02:00
backdoor.json add BazarBackdoor 2020-12-09 16:42:32 +01:00
banker.json chg: [jq] JSON fixed 2020-04-27 15:03:25 +02:00
bhadra-framework.json fix: small fixes to the bhadra framework 2020-05-19 16:45:40 +02:00
botnet.json Added a new cryptominer galaxy and additional missing recent families to various clusters 2020-10-29 14:40:22 -06:00
branded_vulnerability.json chg: [branded_vulnerability] version updated 2019-05-25 08:41:33 +02:00
cert-eu-govsector.json chg: [cert-eu-govsector] version fixed 2019-02-21 07:19:04 +01:00
china-defence-universities.json chg: [dev] jq 2020-08-22 13:06:42 -04:00
country.json chg: [country] jq all 2020-03-23 13:09:14 +01:00
cryptominers.json chg: [cryptominer] updated 2020-10-30 09:48:08 +01:00
election-guidelines.json fix: Wrong (duplicate) value. 2019-03-09 06:29:26 +01:00
exploit-kit.json Added misp info 2020-04-27 15:16:33 +03:00
malpedia.json add Conti Ransomware 2020-08-15 22:10:49 +02:00
microsoft-activity-group.json jq 2020-10-30 16:14:02 +01:00
misinfosec-amitt-misinformation-pattern.json fix: [misinfosec] fixes inconsistent filename 2019-10-20 18:53:02 +02:00
mitre-attack-pattern.json chg: [att&ck] update to latest MITRE ATT&CK version 2020-11-25 07:45:48 +01:00
mitre-course-of-action.json chg: [att&ck] update to latest MITRE ATT&CK version 2020-11-25 07:45:48 +01:00
mitre-enterprise-attack-attack-pattern.json chg: further categorization of galaxies 2018-10-19 14:15:20 +02:00
mitre-enterprise-attack-course-of-action.json chg: [att&ck] July ATT&CK release included in MISP galaxy 2019-08-01 15:51:03 +02:00
mitre-enterprise-attack-intrusion-set.json fix: Duplicate values, typos. 2019-05-06 17:17:16 +02:00
mitre-enterprise-attack-malware.json jq 2018-10-19 10:23:09 +02:00
mitre-enterprise-attack-tool.json Added misp info 2020-04-27 15:16:33 +03:00
mitre-ics-assets.json fixes issues in attack-ics 2020-10-02 16:54:21 +02:00
mitre-ics-groups.json MITRE ATT&CK for ICS fixes #586 2020-10-01 20:42:40 +02:00
mitre-ics-levels.json MITRE ATT&CK for ICS fixes #586 2020-10-01 20:42:40 +02:00
mitre-ics-software.json MITRE ATT&CK for ICS fixes #586 2020-10-01 20:42:40 +02:00
mitre-ics-tactics.json MITRE ATT&CK for ICS fixes #586 2020-10-01 20:42:40 +02:00
mitre-ics-techniques.json fixes issues in attack-ics 2020-10-02 16:54:21 +02:00
mitre-intrusion-set.json chg: [att&ck] update to latest MITRE ATT&CK version 2020-11-25 07:45:48 +01:00
mitre-malware.json chg: [att&ck] update to latest MITRE ATT&CK version 2020-11-25 07:45:48 +01:00
mitre-mobile-attack-attack-pattern.json chg: [att&ck] July ATT&CK release included in MISP galaxy 2019-08-01 15:51:03 +02:00
mitre-mobile-attack-course-of-action.json chg: [att&ck] July ATT&CK release included in MISP galaxy 2019-08-01 15:51:03 +02:00
mitre-mobile-attack-intrusion-set.json fix: Duplicate values, typos. 2019-05-06 17:17:16 +02:00
mitre-mobile-attack-malware.json chg: [att&ck] July ATT&CK release included in MISP galaxy 2019-08-01 15:51:03 +02:00
mitre-mobile-attack-tool.json jq 2018-10-19 10:23:09 +02:00
mitre-pre-attack-attack-pattern.json chg: [att&ck] July ATT&CK release included in MISP galaxy 2019-08-01 15:51:03 +02:00
mitre-pre-attack-intrusion-set.json chg: [att&ck] July ATT&CK release included in MISP galaxy 2019-08-01 15:51:03 +02:00
mitre-tool.json chg: [att&ck] update to latest MITRE ATT&CK version 2020-11-25 07:45:48 +01:00
o365-exchange-techniques.json fix: o365-exchange-techniques (duplicate values, duplicate UUIDs) 2019-05-13 11:15:38 +02:00
preventive-measure.json chg: [preventive-measure] packet filtering added 2020-05-27 10:02:16 +02:00
ransomware.json chg: [ransomware] Babuk Ransomware added 2021-01-05 19:11:28 +01:00
rat.json Update rat.json to include Iperius Remote 2020-11-09 23:45:16 -05:00
region.json new galaxy - Region based on UN M49 2019-09-26 13:01:41 +02:00
sector.json fix: UUID issues 2019-05-07 12:09:39 +02:00
social-dark-patterns.json add: [dark-pattern] add a source 2019-12-03 17:09:57 +01:00
sod-matrix.json fix: Name of SoD Matrix cluster to match galaxy. 2020-07-22 11:52:27 +02:00
stealer.json Add Ave Maria Stealer 2019-04-13 17:01:31 +02:00
surveillance-vendor.json add clusters to surveillance-vendor galaxy 2019-12-05 12:06:10 +01:00
target-information.json add refs 2020-09-16 10:08:31 +02:00
tds.json zTDS 2018-12-22 11:51:40 +01:00
tea-matrix.json chg: [rename] tea matrix 2020-10-23 15:57:13 +02:00
threat-actor.json merge COVELLITE into Lazarus Group 2021-01-17 15:07:26 +01:00
tool.json Add ConfuserEx and Beds Protector .NET packers to tools.json cluster 2020-11-11 23:09:03 -05:00