mirror of https://github.com/MISP/misp-galaxy
Description added + stix version reference
parent
088d105f5d
commit
34b3592934
|
|
@ -2,72 +2,84 @@
|
|||
"values": [
|
||||
{
|
||||
"value": "Advantage",
|
||||
"description": "The intended effect of the incident was for the attacker to obtain some advantage over the target"
|
||||
"description": "The intended effect of the incident was for the attacker to obtain some advantage over the target."
|
||||
},
|
||||
{
|
||||
"value": "Advantage - Economic",
|
||||
"description": "The intended effect of the incident was for the attacker to obtain some economic advantage over the target"
|
||||
"description": "The intended effect of the incident was for the attacker to obtain some economic advantage over the target."
|
||||
},
|
||||
{
|
||||
"value": "Advantage - Military",
|
||||
"description": "The intended effect of the incident was for the attacker to obtain some military advantage over the target"
|
||||
"description": "The intended effect of the incident was for the attacker to obtain some military advantage over the target."
|
||||
},
|
||||
{
|
||||
"value": "Advantage - Political",
|
||||
"description": "The intended effect of the incident was for the attacker to obtain some political advantage over the target"
|
||||
"description": "The intended effect of the incident was for the attacker to obtain some political advantage over the target."
|
||||
},
|
||||
{
|
||||
"value": "Theft",
|
||||
"description": "The intended effect of the incident was to perpetrate a non-specific theft"
|
||||
"description": "The intended effect of the incident was to perpetrate a non-specific theft."
|
||||
},
|
||||
{
|
||||
"value": "Theft - Intellectual Property",
|
||||
"description": "The intended effect of the incident was to perpetrate a theft of intellectual property"
|
||||
"description": "The intended effect of the incident was to perpetrate a theft of intellectual property."
|
||||
},
|
||||
{
|
||||
"value": "Theft - Credential Theft"
|
||||
"value": "Theft - Credential Theft",
|
||||
"description": "The intended effect of the incident was to perpetrate a theft of credentials."
|
||||
},
|
||||
{
|
||||
"value": "Theft - Identity Theft"
|
||||
"value": "Theft - Identity Theft",
|
||||
"description": "The intended effect of the incident was to perpetrate a theft of the target’s identity."
|
||||
},
|
||||
{
|
||||
"value": "Theft - Theft of Proprietary Information"
|
||||
"value": "Theft - Theft of Proprietary Information",
|
||||
"description": "The intended effect of the incident was to perpetrate a theft of proprietary information."
|
||||
},
|
||||
{
|
||||
"value": "Account Takeover"
|
||||
"value": "Account Takeover",
|
||||
"description": "The intended effect of the incident was for the attacker to obtain control over an account (financial, etc)."
|
||||
},
|
||||
{
|
||||
"value": "Brand Damage"
|
||||
"value": "Brand Damage",
|
||||
"description": "The intended effect of the incident was for the attacker to cause some brand damage on the target."
|
||||
},
|
||||
{
|
||||
"value": "Competitive Advantage"
|
||||
"value": "Competitive Advantage",
|
||||
"description": "The intended effect of the incident was for the attacker to obtain some non-specific competitive advantage over the target."
|
||||
},
|
||||
{
|
||||
"value": "Degradation of Service"
|
||||
"value": "Degradation of Service",
|
||||
"description": "The intended effect of the incident was reducing the level of services provided by the target."
|
||||
},
|
||||
{
|
||||
"value": "Denial and Deception"
|
||||
"value": "Denial and Deception",
|
||||
"description": ""
|
||||
},
|
||||
{
|
||||
"value": "Destruction"
|
||||
"value": "Destruction",
|
||||
"description": "The intended effect of the incident was to cause the destruction of a software or hardware system."
|
||||
},
|
||||
{
|
||||
"value": "Disruption"
|
||||
},
|
||||
{
|
||||
"value": "Embarrassment"
|
||||
"value": "Embarrassment",
|
||||
"description": "The intended effect of the incident was to expose a socially unacceptable action by the target."
|
||||
},
|
||||
{
|
||||
"value": "Exposure"
|
||||
},
|
||||
{
|
||||
"value": "Extortion"
|
||||
"value": "Extortion",
|
||||
"description": "The intended effect of the incident was force the payment of some sort to prevent the attacker from taking some action."
|
||||
},
|
||||
{
|
||||
"value": "Fraud"
|
||||
},
|
||||
{
|
||||
"value": "Harassment"
|
||||
"value": "Harassment",
|
||||
"description": "The intended effect of the incident was to pressure or intimidate the target."
|
||||
},
|
||||
{
|
||||
"value": "ICS Control"
|
||||
|
|
@ -82,5 +94,6 @@
|
|||
"version" : 1,
|
||||
"description": "The IntendedEffectVocab is the default STIX vocabulary for expressing the intended effect of a threat actor",
|
||||
"author": "STIX",
|
||||
"stix": "1.2.1",
|
||||
"type": "threat-actor-intended-effect-vocabulary"
|
||||
}
|
||||
|
|
|
|||
Loading…
Reference in New Issue