Commit Graph

2649 Commits (65c9490b775ba95a505bdb7a94582dc9fb84ba70)

Author SHA1 Message Date
Alexandre Dulaunoy b838f38e2f
Merge pull request #716 from jloehel/vulture
chg: [android] Adds Vulture
2022-05-18 08:16:47 +02:00
Jürgen Löhel 1be9a10ef9
chg: [cryptominers] Adds Krane
Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
2022-05-17 14:47:29 -05:00
Jürgen Löhel 9db5d18114
chg: [android] Adds Vulture
Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
2022-05-17 14:16:21 -05:00
Alexandre Dulaunoy 0d4187c370
Merge pull request #715 from r0ny123/crime
Add EXOTIC LILY, TA578, TA579
2022-05-15 09:18:01 +02:00
Rony 2721522e82
chg: [threat-actor] add exotic lily, ta578, ta579 2022-05-14 20:52:15 +05:30
Alexandre Dulaunoy 9777f40b58
Merge pull request #713 from jloehel/BPFDoor
chg: [backdoors] Adds BPFDoor
2022-05-12 06:43:58 +02:00
Jürgen Löhel 45da13ce5e chg: [backdoors] Adds BPFDoor
Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
2022-05-11 19:06:19 -05:00
Alexandre Dulaunoy fcdc6c86e6
chg: [threat-actor] add TG2003 synomym to Elephant Beetle 2022-05-09 14:24:28 +02:00
Alexandre Dulaunoy 9130365e2e
chg: [threat-actor] Elephant Beetle added
Fix #708
2022-05-09 14:23:12 +02:00
Alexandre Dulaunoy bb434b11cf
chg: [threat-actor] ModifiedElephant added
Fix #709
2022-05-09 14:16:01 +02:00
Alexandre Dulaunoy 06550a7945
chg: [threat-actor] fix refs field -> it's always an array 2022-05-09 13:46:16 +02:00
Alexandre Dulaunoy 2042fde3ff
Merge branch 'adammchugh-threatactor-cosmiclynx-add' into main 2022-05-09 13:43:58 +02:00
Alexandre Dulaunoy b67e3ed3f8
Merge branch 'threatactor-cosmiclynx-add' of https://github.com/adammchugh/MISP-Galaxy-Updates into adammchugh-threatactor-cosmiclynx-add 2022-05-09 13:43:44 +02:00
Alexandre Dulaunoy 1b93f32c52
Merge pull request #712 from r0ny123/patch-1
Update to Chinese Actors
2022-05-08 15:19:28 +02:00
Rony c0be6677c2
chg: [threat-actor] added actor Red Menshen
https://www.pwc.com/gx/en/issues/cybersecurity/cyber-threat-intelligence/cyber-year-in-retrospect/yir-cyber-threats-report-download.pdf
2022-05-07 15:44:10 +05:30
Rony 11eca69ebc
chg: [threat-actor] added Curious Gorge 2022-05-07 12:40:35 +05:30
Alexandre Dulaunoy a315483a22
Merge pull request #711 from danielplohmann/patch-17
Update threat-actor.json
2022-05-06 10:42:39 +02:00
Daniel Plohmann 26c1850377
Update threat-actor.json
adding Red Dev 4 as alias for GALLIUM as used by PwC.
2022-05-06 09:47:48 +02:00
Alexandre Dulaunoy c03e82ad18
Merge pull request #710 from danielplohmann/patch-16
Update threat-actor.json
2022-05-04 20:38:12 +02:00
Daniel Plohmann 06c293072c
Update threat-actor.json
adding UNC3524 to the actor galaxy cluster.
2022-05-04 13:21:56 +02:00
Christophe Vandeplas 87c1e34ce8
Merge pull request #707 from 3c7/ta/saintbear
Added SaintBear to the Threat Actor cluster
2022-04-28 10:03:07 +02:00
3c7 0ad65fbe9f
Forgot to jq all the things 2022-04-28 09:42:25 +02:00
3c7 dfb6c0668e
Added SaintBear 2022-04-28 09:36:25 +02:00
Christophe Vandeplas 33476bec81 chg: [mitre] bump to MITRE ATT&CK v11.0 2022-04-25 18:29:57 +02:00
Alexandre Dulaunoy 664f6d80cc
chg: [threat-actor] Killnet description added 2022-04-21 15:05:50 +02:00
Alexandre Dulaunoy 1e383e2452
chg: [threat-actor] version updated 2022-04-21 14:53:14 +02:00
Alexandre Dulaunoy 8905fafe1b
Merge pull request #706 from Mathieu4141/add-killnet
[actors] Add killnet
2022-04-21 14:51:49 +02:00
Mathieu Beligon c8455a6c4d [actors] Add killnet 2022-04-21 14:06:28 +02:00
Adam McHugh 53a0fc56d3 Added Cosmic Lynx Threat Actor from Agari Whitepaper advisory 2022-04-18 10:16:26 +09:30
Alexandre Dulaunoy bca7381f33
fix: [ransomware] refs are within meta 2022-04-17 15:43:23 +02:00
Alexandre Dulaunoy eb7c5ebaf1
fix: [ransom] remove empty ref 2022-04-17 15:39:02 +02:00
Alexandre Dulaunoy bc696b43f4
chg: [ransomware] jq all the things 2022-04-17 15:35:50 +02:00
Alexandre Dulaunoy 00d33fd292
Merge pull request #701 from adammchugh/ransomware-conti-update
Ammended Conti ransomware entry with ACSC 2021-010 advisory data
2022-04-17 15:35:25 +02:00
Alexandre Dulaunoy 66744a4cd0
Merge pull request #704 from adammchugh/cryptominers-bluemockingbird-add
Added Cryptominer Blue Mockingbird from RedCanary advisory.
2022-04-17 14:43:59 +02:00
Alexandre Dulaunoy 14907e3eef
Merge pull request #703 from adammchugh/threatactor-copypaste-add
Added Copy-Paste Threat Actor from ACSC Advisory 2020-008
2022-04-17 14:43:37 +02:00
Alexandre Dulaunoy 0060322818
Merge pull request #702 from adammchugh/ransomware-blackcat-update
Ammended Blackcat ransomware entry with ACSC 2022-004 advisory data
2022-04-17 14:43:13 +02:00
Adam McHugh 84eac4b102 Added Cosmic Lynx Threat Actor from Agari Whitepaper advisory 2022-04-17 19:50:08 +09:30
Adam McHugh f00e80ae7e Added Cryptominer Blue Mockingbird from RedCanary advisory. 2022-04-17 19:44:42 +09:30
Adam McHugh cff8a38c5f Added Copy-Paste Threat Actor from ACSC Advisory 2020-008 2022-04-17 19:37:26 +09:30
Adam McHugh 622c0502aa Ammended Conti ransomware entry with ACSC 2021-010 advisory data 2022-04-17 19:23:11 +09:30
Adam McHugh 99caab201f Ammended Blackcat ransomware entry with ACSC 2022-004 advisory data 2022-04-17 18:05:24 +09:30
Alexandre Dulaunoy 93b260f3c6
Merge pull request #700 from nyx0/main
upd: [cluster] add Threat Actor BladeHawk.
2022-04-13 08:58:24 +02:00
Thomas Dupuy bd05eb0bba upd: [cluster] add Threat Actor BladeHawk. 2022-04-11 17:03:19 +00:00
Alexandre Dulaunoy 5b68aaebd0
Merge pull request #699 from nyx0/main
upd: [clusters] add ref and synonyms for Energetic Bear.
2022-04-07 22:56:20 +02:00
Thomas Dupuy 209391f110 upd: [cluster] add ref and synonyms for Energetic Bear. 2022-04-07 18:26:58 +00:00
Alexandre Dulaunoy c673360afa
chg: [tools] add skip list in index generation (to focus on intelligence/cyber) 2022-04-04 11:21:46 +02:00
Alexandre Dulaunoy 5045af93ca
chg: [doc] index updated 2022-04-04 11:21:38 +02:00
Alexandre Dulaunoy 21478c0d8d
chg: [adoc] updated with the non-cyber releated lists 2022-04-04 11:17:40 +02:00
Alexandre Dulaunoy b649057a5a
chg: [handicap] fixed more fields 2022-04-04 11:09:30 +02:00
Alexandre Dulaunoy aff4345074
chg: [handicap] more cleanup 2022-04-04 11:01:38 +02:00