Mathieu Beligon
|
e1407c3c3f
|
[threat-actors] Add SLIPPY SPIDER alias to LAPSUS
|
2023-03-02 10:29:29 -08:00 |
Mathieu Beligon
|
4bbee8c1e7
|
[threat-actors] Add PROPHET SPIDER
|
2023-03-02 10:19:24 -08:00 |
Mathieu Beligon
|
61cb24a3fc
|
[threat-actors] Add Nemesis Kitten
|
2023-03-01 16:37:42 -08:00 |
Mathieu Beligon
|
84faa3c92b
|
[threat-actors] Add Karakurt
|
2023-03-01 16:34:03 -08:00 |
Mathieu Beligon
|
7d371b4c80
|
[threat-actors] Add CYBORG SPIDER alias to GOCLD BURLAP
|
2023-03-01 15:45:41 -08:00 |
Mathieu Beligon
|
fa57354471
|
[threat-actors] Add Chamelgang
|
2023-03-01 15:40:23 -08:00 |
Mathieu Beligon
|
bff978e4d1
|
[threat-actors] Add TA453
|
2023-03-01 15:24:55 -08:00 |
Mathieu Beligon
|
3406ad3aa9
|
[threat-actors] Add APT42
|
2023-03-01 15:18:53 -08:00 |
Mathieu Beligon
|
2567d6f1f8
|
[threat-actors] Add TA406
|
2023-03-01 15:01:22 -08:00 |
Alexandre Dulaunoy
|
aaf944a11c
|
Merge pull request #822 from r0ny123/patch-1
add other actor synonyms from Google's report https://services.google.com/fh/files/blogs/google_fog_of_war_research_report.pdf
|
2023-02-25 23:22:17 +01:00 |
Rony
|
50624af741
|
add DEV-0147 https://twitter.com/MsftSecIntel/status/1625181255754039318
|
2023-02-25 20:18:09 +00:00 |
Rony
|
cf727f034c
|
add other actor synonyms from Google's report https://services.google.com/fh/files/blogs/google_fog_of_war_research_report.pdf
|
2023-02-26 01:05:50 +05:30 |
Alexandre Dulaunoy
|
f4f1f38f3b
|
Merge pull request #821 from Delta-Sierra/main
add/update ransomware based on ransomlook
|
2023-02-24 06:34:51 +01:00 |
Delta-Sierra
|
27f4c9fcdc
|
synonyms must be an array
|
2023-02-23 14:26:20 +01:00 |
Delta-Sierra
|
0ca7675a5f
|
Merge https://github.com/MISP/misp-galaxy
|
2023-02-23 14:16:00 +01:00 |
Delta-Sierra
|
55725c771e
|
add/update ransomware based on ransomlook
|
2023-02-23 14:15:09 +01:00 |
Alexandre Dulaunoy
|
aad2e33b80
|
Merge pull request #820 from tomking2/bug/mitre-attack-external-id-parsing
[fix] Mitre ATT&CK parsing to pull correct external_id value and update cluster
|
2023-02-21 11:45:20 +01:00 |
Tom King
|
e52eefa0e7
|
chg: [mitre] updated with correct ID parsing
|
2023-02-21 10:36:37 +00:00 |
Christophe Vandeplas
|
9f73ff73ac
|
fix: [first-dns] corrected typo
|
2023-02-21 10:54:30 +08:00 |
Christophe Vandeplas
|
8aadd13bb9
|
chg: [doc] update README
|
2023-02-21 10:45:54 +08:00 |
Christophe Vandeplas
|
e2f2026fea
|
chg: [first-dns] Adds FIRST DNS Abuse Techniques Matrix
|
2023-02-21 10:26:46 +08:00 |
Christophe Vandeplas
|
a6a9a73ae5
|
chg: [360net] updated to latest online version
|
2023-02-20 20:03:36 +08:00 |
Alexandre Dulaunoy
|
6460fde2e4
|
chg: [threat-actor] version updated
|
2023-02-16 14:43:45 +01:00 |
Alexandre Dulaunoy
|
d609ff16c0
|
Merge pull request #819 from danielplohmann/patch-29
adding Google names for RU threat actors
|
2023-02-16 14:43:05 +01:00 |
Daniel Plohmann
|
91255413d8
|
adding Google names for RU threat actors
https://blog.google/threat-analysis-group/fog-of-war-how-the-ukraine-conflict-transformed-the-cyber-threat-landscape/
|
2023-02-16 14:30:05 +01:00 |
Alexandre Dulaunoy
|
73bd7d0983
|
Merge pull request #818 from Mathieu4141/threat-actors/proofpoint-aliases
[threat actors] Adding some actors from ProofPoint
|
2023-02-14 06:40:22 +01:00 |
Mathieu Beligon
|
9f09699047
|
[threat-actors] Fix: country was in the wrong place
|
2023-02-13 16:47:38 -08:00 |
Mathieu Beligon
|
ac067a236e
|
[threat-actors] fix: Add missing uuids
|
2023-02-13 16:36:41 -08:00 |
Mathieu Beligon
|
a792115dd8
|
fix
|
2023-02-13 16:26:10 -08:00 |
Alexandre Dulaunoy
|
df2dd16e77
|
Merge pull request #817 from danielplohmann/patch-28
adding Broadcom name for SaintBear.
|
2023-02-13 23:20:38 +01:00 |
Mathieu Beligon
|
8193b05e14
|
[threat-actors] bump version
|
2023-02-13 14:18:58 -08:00 |
Mathieu Beligon
|
d34e894d2d
|
[threat-actors] Add TA2536
|
2023-02-13 13:45:41 -08:00 |
Mathieu Beligon
|
20c31a5d10
|
[threat-actors] Add TA577
|
2023-02-13 13:32:24 -08:00 |
Mathieu Beligon
|
e836a4a63c
|
[threat-actors] Add TA575
|
2023-02-13 12:02:32 -08:00 |
Mathieu Beligon
|
c52ac53765
|
[threat-actors] Add TA570
|
2023-02-13 11:54:47 -08:00 |
Mathieu Beligon
|
5f274f58c9
|
[threat-actors] Add Moskalvzapoe
|
2023-02-13 11:44:59 -08:00 |
Daniel Plohmann
|
62256854bc
|
adding Broadcom name for SaintBear.
|
2023-02-13 14:05:35 +01:00 |
Alexandre Dulaunoy
|
f6c83d3bfc
|
Merge pull request #816 from Mathieu4141/threat-actors/noname057-aliases
[threat-actors] Add more information about NoName057(16)
|
2023-02-12 13:23:24 +01:00 |
Mathieu Beligon
|
33ff650327
|
[threat-actors] Add more information about NoName057(16)
|
2023-02-10 14:14:52 -08:00 |
Alexandre Dulaunoy
|
9645b9348b
|
chg: [tools] TgToxic added
|
2023-02-09 16:24:45 +01:00 |
Alexandre Dulaunoy
|
385826063b
|
chg: [sigma] updated to the latest version
|
2023-02-05 11:26:16 +01:00 |
Alexandre Dulaunoy
|
bb965e67bd
|
Merge pull request #815 from danielplohmann/patch-27
new APT29 name used by Recorded Future
|
2023-02-02 15:15:29 +01:00 |
Daniel Plohmann
|
9710e09e17
|
new APT29 name used by Recorded Future
cf. https://go.recordedfuture.com/hubfs/reports/cta-2023-0127.pdf
|
2023-02-02 11:46:50 +01:00 |
Alexandre Dulaunoy
|
3d6ec1b187
|
chg: [sigma] updated to the latest version
|
2023-02-02 11:25:19 +01:00 |
Alexandre Dulaunoy
|
80be580f3c
|
Merge pull request #814 from jloehel/album
chg: [stealer] Adds Album Stealer
|
2023-02-02 06:39:40 +01:00 |
Jürgen Löhel
|
cf492d9931
|
chg: [stealer] Adds Album Stealer
Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
|
2023-02-01 17:30:56 -06:00 |
Alexandre Dulaunoy
|
033895b052
|
Merge pull request #812 from jloehel/boldmove
chg: [backdoor] Adds BOLDMOVE
|
2023-01-31 06:24:59 +01:00 |
Alexandre Dulaunoy
|
f509c45d74
|
Merge pull request #813 from jloehel/darkcloud
chg: [stealer] Adds DarkCloud
|
2023-01-31 06:24:24 +01:00 |
Jürgen Löhel
|
c7c2b8441a
|
chg: [stealer] Removes BluStealer
The BluStealer is already in the malpedia cluster.
Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
|
2023-01-30 18:35:28 -06:00 |
Jürgen Löhel
|
ca635cc3fc
|
chg: [stealer] Adds DarkCloud and BluStealer
Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
|
2023-01-30 18:29:25 -06:00 |