Merge pull request #289 from cvandeplas/master

chg: further categorization of galaxies
2018-10-19 14:22:39 +02:00 · 2018-10-19 14:22:39 +02:00 · 48bd5af507
parent f7eb48b0fb 4232f0b737
commit 48bd5af507
12 changed files with 13 additions and 1 deletions
--- a/clusters/branded_vulnerability.json
+++ b/clusters/branded_vulnerability.json
@ -2,6 +2,7 @@
  "authors": [
    "Unknown"
  ],
+  "category": "vulnerability",
  "description": "List of known vulnerabilities and attacks with a branding",
  "name": "Branded Vulnerability",
  "source": "Open Sources",
--- a/clusters/cert-eu-govsector.json
+++ b/clusters/cert-eu-govsector.json
@ -2,6 +2,7 @@
  "authors": [
    "Various"
  ],
+  "category": "sector",
  "description": "Cert EU GovSector",
  "name": "Cert EU GovSector",
  "source": "CERT-EU",
--- a/clusters/mitre-attack-pattern.json
+++ b/clusters/mitre-attack-pattern.json
@ -2,6 +2,7 @@
  "authors": [
    "MITRE"
  ],
+  "category": "attack-pattern",
  "description": "ATT&CK tactic",
  "name": "Attack Pattern",
  "source": "https://github.com/mitre/cti",
--- a/clusters/mitre-course-of-action.json
+++ b/clusters/mitre-course-of-action.json
@ -2,6 +2,7 @@
  "authors": [
    "MITRE"
  ],
+  "category": "course-of-action",
  "description": "ATT&CK Mitigation",
  "name": "Course of Action",
  "source": "https://github.com/mitre/cti",
--- a/clusters/mitre-enterprise-attack-attack-pattern.json
+++ b/clusters/mitre-enterprise-attack-attack-pattern.json
@ -2,6 +2,7 @@
  "authors": [
    "MITRE"
  ],
+  "category": "attack-pattern",
  "description": "ATT&CK tactic",
  "name": "Enterprise Attack - Attack Pattern",
  "source": "https://github.com/mitre/cti",
--- a/clusters/mitre-enterprise-attack-course-of-action.json
+++ b/clusters/mitre-enterprise-attack-course-of-action.json
@ -2,6 +2,7 @@
  "authors": [
    "MITRE"
  ],
+  "category": "course-of-action",
  "description": "ATT&CK Mitigation",
  "name": "Enterprise Attack - Course of Action",
  "source": "https://github.com/mitre/cti",
--- a/clusters/mitre-mobile-attack-attack-pattern.json
+++ b/clusters/mitre-mobile-attack-attack-pattern.json
@ -2,6 +2,7 @@
  "authors": [
    "MITRE"
  ],
+  "category": "attack-pattern",
  "description": "ATT&CK tactic",
  "name": "Mobile Attack - Attack Pattern",
  "source": "https://github.com/mitre/cti",
--- a/clusters/mitre-mobile-attack-course-of-action.json
+++ b/clusters/mitre-mobile-attack-course-of-action.json
@ -2,6 +2,7 @@
  "authors": [
    "MITRE"
  ],
+  "category": "course-of-action",
  "description": "ATT&CK Mitigation",
  "name": "Mobile Attack - Course of Action",
  "source": "https://github.com/mitre/cti",
--- a/clusters/mitre-pre-attack-attack-pattern.json
+++ b/clusters/mitre-pre-attack-attack-pattern.json
@ -2,6 +2,7 @@
  "authors": [
    "MITRE"
  ],
+  "category": "attack-pattern",
  "description": "ATT&CK tactic",
  "name": "Pre Attack - Attack Pattern",
  "source": "https://github.com/mitre/cti",
--- a/clusters/preventive-measure.json
+++ b/clusters/preventive-measure.json
@ -2,6 +2,7 @@
  "authors": [
    "Various"
  ],
+  "category": "measure",
  "description": "Preventive measures based on the ransomware document overview as published in https://docs.google.com/spreadsheets/d/1TWS238xacAto-fLKh1n5uTsdijWdCEsGIM0Y0Hvmc5g/pubhtml# . The preventive measures are quite generic and can fit any standard Windows infrastructure and their security measures.",
  "name": "Preventive Measure",
  "source": "MISP Project",
--- a/clusters/sector.json
+++ b/clusters/sector.json
@ -2,6 +2,7 @@
  "authors": [
    "Various"
  ],
+  "category": "sector",
  "description": "Activity sectors",
  "name": "Sector",
  "source": "CERT-EU",
--- a/schema_clusters.json
+++ b/schema_clusters.json
@ -157,6 +157,7 @@
    "uuid",
    "values",
    "authors",
-    "source"
+    "source",
+    "category"
  ]
 }