misp-galaxy/vocabularies/common/ttp-category.json

{
  "values": [
    {
      "description": "Cover vulnerabilities exploit (0day, 1day, nday), exploit kit",
      "value": "Exploits"
    },
    {
      "description": "Deep-Dark Web forum, marketplace, hosting, etc",
      "value": "Infrastructure"
    },
    {
      "description": "Malware family",
      "value": "Malware"
    },
    {
      "description": "Legitimate SW or HW repurposed for malicious use",
      "value": "Tools"
    },
    {
      "description": "Does not belong to any of the other category",
      "value": "Other"
    },
    {
      "description": "Undetermined category",
      "value": "Unknown"
    },
    {
      "description": "Specific attack patterns (specific to a technology, to an author, not widely used, etc)",
      "value": "Attack Patterns (S)"
    },
    {
      "description": "Generic attack pattern, mehod, technique",
      "value": "Attack Patterns (G)"
    },
    {
      "description": "Non-technical description of threat actor activities (information war, destruction, hybrid, etc)",
      "value": "Tactic"
    },
    {
      "description": "Asset being targeted (MacOS, Android, ICS, IoT, Cryptocurrency, ect)",
      "value": "Targeting"
    }
  ],
  "version" : 2,
  "description": "ttp category vocab as defined by Cert EU.",
  "source": "Cert EU",
  "author": ["Cert EU"],
  "uuid": "54e405b6-b017-11e7-b2f7-df581d1a8587",
  "type": "ttp-category-vocabulary"
}
add cert-eu based vocabularies 2017-10-20 11:13:26 +02:00			`{`
			`"values": [`
			`{`
add ttp-categories descripiions 2017-10-27 10:46:49 +02:00			`"description": "Cover vulnerabilities exploit (0day, 1day, nday), exploit kit",`
add cert-eu based vocabularies 2017-10-20 11:13:26 +02:00			`"value": "Exploits"`
			`},`
			`{`
add ttp-categories descripiions 2017-10-27 10:46:49 +02:00			`"description": "Deep-Dark Web forum, marketplace, hosting, etc",`
add cert-eu based vocabularies 2017-10-20 11:13:26 +02:00			`"value": "Infrastructure"`
			`},`
			`{`
add ttp-categories descripiions 2017-10-27 10:46:49 +02:00			`"description": "Malware family",`
add cert-eu based vocabularies 2017-10-20 11:13:26 +02:00			`"value": "Malware"`
			`},`
			`{`
add ttp-categories descripiions 2017-10-27 10:46:49 +02:00			`"description": "Legitimate SW or HW repurposed for malicious use",`
add cert-eu based vocabularies 2017-10-20 11:13:26 +02:00			`"value": "Tools"`
			`},`
			`{`
add ttp-categories descripiions 2017-10-27 10:46:49 +02:00			`"description": "Does not belong to any of the other category",`
add cert-eu based vocabularies 2017-10-20 11:13:26 +02:00			`"value": "Other"`
			`},`
			`{`
add ttp-categories descripiions 2017-10-27 10:46:49 +02:00			`"description": "Undetermined category",`
add cert-eu based vocabularies 2017-10-20 11:13:26 +02:00			`"value": "Unknown"`
			`},`
			`{`
add ttp-categories descripiions 2017-10-27 10:46:49 +02:00			`"description": "Specific attack patterns (specific to a technology, to an author, not widely used, etc)",`
add cert-eu based vocabularies 2017-10-20 11:13:26 +02:00			`"value": "Attack Patterns (S)"`
			`},`
			`{`
add ttp-categories descripiions 2017-10-27 10:46:49 +02:00			`"description": "Generic attack pattern, mehod, technique",`
add cert-eu based vocabularies 2017-10-20 11:13:26 +02:00			`"value": "Attack Patterns (G)"`
			`},`
			`{`
add ttp-categories descripiions 2017-10-27 10:46:49 +02:00			`"description": "Non-technical description of threat actor activities (information war, destruction, hybrid, etc)",`
add cert-eu based vocabularies 2017-10-20 11:13:26 +02:00			`"value": "Tactic"`
			`},`
			`{`
add ttp-categories descripiions 2017-10-27 10:46:49 +02:00			`"description": "Asset being targeted (MacOS, Android, ICS, IoT, Cryptocurrency, ect)",`
add cert-eu based vocabularies 2017-10-20 11:13:26 +02:00			`"value": "Targeting"`
			`}`
			`],`
add ttp-categories descripiions 2017-10-27 10:46:49 +02:00			`"version" : 2,`
add cert-eu based vocabularies 2017-10-20 11:13:26 +02:00			`"description": "ttp category vocab as defined by Cert EU.",`
			`"source": "Cert EU",`
			`"author": ["Cert EU"],`
			`"uuid": "54e405b6-b017-11e7-b2f7-df581d1a8587",`
			`"type": "ttp-category-vocabulary"`
			`}`