MISP
/
misp-galaxy
mirror of https://github.com/MISP/misp-galaxy
2
0
Fork 0
Code Issues Releases Wiki Activity
2,006 Commits
6 Branches
47 Tags
73 MiB
Commit Graph

1320 Commits (b0f0bbae33caf5ff6295bcd93ee25abe7eb8d6f5)

Author SHA1 Message Date
rmkml dfc6321e0c Add AsyncRAT 2019-09-07 19:43:08 +02:00
Deborah Servili 718ea55dd7
Merge branch 'master' into master 2019-09-04 14:42:47 +02:00
Deborah Servili 9e3a998dfc
aff SectorJ04 group 2019-09-03 15:51:21 +02:00
Alexandre Dulaunoy 9690d070ab
Merge pull request from rmkml/master 
Add Buran Ransomware
 2019-09-02 07:39:19 +02:00
rmkml 28ec696272 Add Buran Ransomware 2019-09-01 21:20:28 +02:00
Daniel Plohmann f40b7dd132
'SectorJ04 Group' as alias introduced by NSHC for TA505 
Not explicitly mentioned in the blog post but it looks like we just got an alias for TA505... https://threatrecon.nshc.net/2019/08/29/sectorj04-groups-increased-activity-in-2019/
 2019-09-01 15:46:36 +02:00
Alexandre Dulaunoy 9920461294
Merge pull request from rmkml/master 
Add Nemty Ransomware
 2019-08-31 21:27:50 +02:00
rmkml e79310c861 Add Nemty Ransomware 2019-08-31 21:08:50 +02:00
Alexandre Dulaunoy c7e6a17a31
Merge pull request from Delta-Sierra/target-location-galaxy 
improve more clusters
 2019-08-30 16:37:39 +02:00
Deborah Servili 5504c10e3d
improve more clusters 2019-08-30 16:32:02 +02:00
Alexandre Dulaunoy b986f06cb4
Merge pull request from wagner-certat/tool-empty-strings 
Add test for empty strings
 2019-08-30 11:10:16 +02:00
Alexandre Dulaunoy 0966e58da6
Merge branch 'master' of github.com:MISP/misp-galaxy 2019-08-30 11:06:29 +02:00
Alexandre Dulaunoy f5056ff02e
chg: [threat-actor] add machete-apt synonyms as reported in 2019-08-30 11:03:30 +02:00
Deborah Servili 2c248db419
Merge pull request from Delta-Sierra/target-location-galaxy 
More clusters improved
 2019-08-30 10:15:56 +02:00
Sebastian Wagner e13087a9c4
target-information: fix territory-type for China 2019-08-30 10:08:19 +02:00
StefanKelm 49f8f60a85
Update threat-actor.json 
Add ITG08 as synonym for FIN6
 2019-08-29 13:13:00 +02:00
Alexandre Dulaunoy 8d78a2a108
chg: [threat-actor] jq all 2019-08-29 08:31:10 +02:00
Alexandre Dulaunoy 791c88f2eb
Merge branch 'master' of https://github.com/Delta-Sierra/misp-galaxy into Delta-Sierra-master 2019-08-29 08:30:41 +02:00
Deborah Servili 395dd93e0f
add Asruex Backdoor 2019-08-28 15:40:03 +02:00
Alexandre Dulaunoy 9926ea8826
chg: [threat-actor] LYCEUM added - 443 #fixed 2019-08-28 14:35:12 +02:00
Deborah Servili ea68336b96
add ref for Gamaredon 2019-08-27 08:28:58 +02:00
Deborah Servili 300e3c2bfb
More clusters improved 2019-08-26 17:50:20 +02:00
Alexandre Dulaunoy 775b6d1a09
Merge pull request from Delta-Sierra/target-location-galaxy 
Target location galaxy
 2019-08-23 16:29:23 +02:00
Deborah Servili fcded146c2
More clusters improved 2019-08-23 16:01:12 +02:00
Deborah Servili bae47241f0
More clusters improved 2019-08-23 11:14:14 +02:00
Alexandre Dulaunoy a68577a967
Merge pull request from Delta-Sierra/target-location-galaxy 
Target location galaxy
 2019-08-22 16:24:57 +02:00
Deborah Servili a579c041d2
More clusters improved 2019-08-22 15:59:11 +02:00
Deborah Servili b7a97d1baf
More clusters improved 2019-08-22 11:49:09 +02:00
Deborah Servili 6944236943
more countries 2019-08-20 15:24:16 +02:00
Sebastian Wagner 38aebbf42a
remove empty strings 2019-08-19 17:04:07 +02:00
Deborah Servili 93ca9a3123
Merge pull request from Delta-Sierra/target-location-galaxy 
Target location galaxy
 2019-08-19 08:57:48 +02:00
Deborah Servili 754f8f2a48
complete more cluster + country is now an array 2019-08-14 16:30:28 +02:00
Deborah Servili 3e651e2d74
target-informatione - add membership member-of attribute - Example:member-of NATO 2019-08-13 15:36:10 +02:00
Alexandre Dulaunoy 6ca4e4cb17
Merge pull request from Delta-Sierra/target-location-galaxy 
Target location galaxy
 2019-08-13 15:17:41 +02:00
Deborah Servili e00f139fa2
jq 2019-08-13 13:01:36 +02:00
Deborah Servili 9accc832e3
change attribute name 2019-08-13 12:08:03 +02:00
Deborah Servili 389a82701a
jq 2019-08-13 11:57:28 +02:00
Deborah Servili e946ce66db
complete some clusters 2019-08-13 11:55:18 +02:00
Alexandre Dulaunoy d48d2ccd3e
Merge pull request from hackunagi/master 
Adding Amavaldo Banking Trojan
 2019-08-10 18:53:05 +02:00
Alexandre Dulaunoy 3841447e16
Merge pull request from r0ny123/patch-1 
added microsoft naming for the groups
 2019-08-10 18:52:26 +02:00
Thomas Dupuy df5c9057a1 add synonyme for Turla 2019-08-09 17:34:22 -04:00
Carlos Borges d96dc39c5a
Adding Amavaldo Banking Trojan 2019-08-09 18:00:37 -03:00
Rony feac39db6b
added microsoft naming for the groups 2019-08-09 22:19:09 +05:30
Thomas Dupuy 320e298549 update victims 2019-08-09 10:45:10 -04:00
Thomas Dupuy 1988662ee5 add APT41 2019-08-09 10:24:06 -04:00
Deborah Servili e239619d15
jq 2019-08-06 15:42:20 +02:00
Deborah Servili 53df0908c7
update version 2019-08-06 15:34:23 +02:00
Deborah Servili 4bef48b33e
add Amavaldo 2019-08-06 13:28:32 +02:00
Nils Kuhnert 17925f3e10
Remove local file link :) 2019-08-03 18:55:00 +02:00
Deborah Servili 21318cdf3d
fix building mistakes 2019-08-02 16:28:32 +02:00
Alexandre Dulaunoy 7913adad61
chg: [threat-actor] rollback as discussed by chat with Andras until version 2.0 2019-08-02 16:08:40 +02:00
Andras Iklody 984be50396
lowercased value field for DarkHotel 2019-08-02 15:40:31 +02:00
Alexandre Dulaunoy 17452d31a7
chg: [att&ck] July ATT&CK release included in MISP galaxy 2019-08-01 15:51:03 +02:00
Alexandre Dulaunoy a401ff7405
Merge branch 'master' into patch-13 2019-08-01 08:52:27 +02:00
Daniel Plohmann 0367e16ce0
adding secureworks actor names for energetic bear and teamspy 2019-07-31 14:35:09 +02:00
Daniel Plohmann a4a72d0698
adding Proofpoint's TA428 2019-07-31 14:08:50 +02:00
Deborah Servili 08f713cb7d add tld 
Signed-off-by: Deborah Servili <deborah.servili@gmail.com>
 2019-07-26 16:22:45 +02:00
Deborah Servili 427b424cf7
rename galaxy target-location -> target-information 2019-07-19 13:49:43 +02:00
Deborah Servili 294a8bf6a2
new galaxy target-location [DRAFT] 2019-07-19 10:30:47 +02:00
Deborah Servili 2861d2d78c
jq 2019-07-16 10:13:10 +02:00
Deborah Servili ea4d8a2d42
add SWEED threat actor 2019-07-16 10:03:07 +02:00
Deborah Servili ca45f0deec
jq 2019-06-24 10:22:38 +02:00
Deborah Servili 32ffc98e5d
add Felipe Trojan 2019-06-24 10:20:29 +02:00
Alexandre Dulaunoy 9517c8b878
chg: [threat-actor] version updated 2019-06-20 17:58:35 +02:00
Alexandre Dulaunoy 8c90f7231c
chg: [threat-actor] duplicated refs removed 2019-06-20 17:35:35 +02:00
Alexandre Dulaunoy 5e9d075ae5
chg: [threat-actor] synonyms fixed 2019-06-20 17:30:01 +02:00
Alexandre Dulaunoy 195406cc6b
chg: [threat-actor] jq everything 2019-06-20 17:27:55 +02:00
Alexandre Dulaunoy d018519700
Merge branch 'master' of https://github.com/Delta-Sierra/misp-galaxy 2019-06-20 17:23:04 +02:00
Deborah Servili 30f042211b
fix duplicate 2019-06-20 16:35:49 +02:00
Deborah Servili a984786c8b
update threat actor galaxy 2019-06-20 16:25:23 +02:00
Rony 7afb9083b2
Update threat-actor.json 2019-06-19 23:29:35 +05:30
Deborah Servili 4bd37e2b2d
update threat actor galaxy 2019-06-19 16:38:04 +02:00
Deborah Servili 52e51833de
update threat actor galaxy 2019-06-18 16:05:49 +02:00
Deborah Servili 431e7a36c1
update threat actor galaxy 2019-06-17 16:36:42 +02:00
Deborah Servili b966369933
##COMMA## 2019-06-14 16:35:55 +02:00
Deborah Servili 1e5292d999
fix duplicate 2019-06-14 16:21:33 +02:00
Deborah Servili ead217eb28
Update version 2019-06-14 16:11:02 +02:00
Deborah Servili 98f0572d51
update threat actor galaxy 2019-06-14 16:06:09 +02:00
Deborah Servili b040f9f57b
fix duplicate and links update (APT34) 2019-06-14 08:41:38 +02:00
Deborah Servili 2001652dae
fix duplicate 2019-06-14 08:28:44 +02:00
Deborah Servili 20e77afcc3
update threat actor galaxy 2019-06-13 16:19:21 +02:00
Deborah Servili 11c2f43c9f
tryto fix duplicate 2019-06-13 11:26:42 +02:00
Deborah Servili e4245ee991
update threat actor galaxy 2019-06-12 16:25:24 +02:00
Deborah Servili 5a3d7e816f
fix duplicate 2019-06-12 09:24:05 +02:00
Deborah Servili 01fade422f Merge branch 'master' of https://github.com/MISP/misp-galaxy 2019-06-12 09:20:38 +02:00
Deborah Servili 1ba7f19ca2
update threat actor galaxy 2019-06-11 16:14:58 +02:00
Deborah Servili 347ed5d529
jq 2019-06-11 15:57:21 +02:00
Deborah Servili 79f11de6db
update threat actor galaxy 2019-06-11 15:54:39 +02:00
Deborah Servili d6b458520b
update threat actor galaxy 2019-06-11 11:57:04 +02:00
Alexandre Dulaunoy 8c69da1fd9
Merge pull request from Delta-Sierra/master 
update threat actor galaxy
 2019-06-07 20:14:49 +02:00
Deborah Servili 1f2e59addb
update Threat actor galaxy 2019-06-07 16:34:43 +02:00
Deborah Servili 185763a63a
update threat actor 2019-06-06 16:34:09 +02:00
Deborah Servili b809b9cfbb
update threat actor darkhotel (nemim might be a typo) 2019-06-06 11:58:19 +02:00
Deborah Servili 189c3066a5
update threat actor 2019-06-04 16:32:39 +02:00
Alexandre Dulaunoy 3948cc24c1
Merge pull request from Delta-Sierra/master 
update threat actors and tools
 2019-06-04 09:56:47 +02:00
Deborah Servili 468800ed59
FlawedAmmy RAT 2019-06-04 09:10:44 +02:00
Deborah Servili a6c9d335ee
fix multiple refs 2019-06-04 08:52:34 +02:00
Deborah Servili b47863f1c1
update threat actors 2019-05-29 16:18:50 +02:00
Deborah Servili f48167ce77
update threat actors 2019-05-29 15:34:20 +02:00
Deborah Servili f4cf3464ce
update threat actors and tools 2019-05-28 16:05:54 +02:00
Alexandre Dulaunoy 9eac2a3923
Merge pull request from Delta-Sierra/master 
update threat-actor galaxy
 2019-05-28 09:37:14 +02:00
Deborah Servili bf19ed9d8d
fix merge mistakes 2019-05-28 09:26:24 +02:00
Deborah Servili 77d20739db
update threat actor 2019-05-28 09:24:29 +02:00
Deborah Servili 940762e0c5
update threat actor 2019-05-28 09:22:26 +02:00
Deborah Servili 0bb1420ab7
update threat-actor galaxy 2019-05-27 16:38:01 +02:00
Deborah Servili af6241fd20
update Anchor Panda Threat Actor 2019-05-27 11:47:05 +02:00
Alexandre Dulaunoy 555a87275f
Merge pull request from rmkml/master 
Add GetCrypt Ransomware
 2019-05-25 13:56:30 +02:00
rmkml de9cc6898a Add GetCrypt Ransomware 2019-05-25 13:30:15 +02:00
Alexandre Dulaunoy 3420e50bfd
Merge pull request from rmkml/master 
Add Phobos Ransomware
 2019-05-25 08:42:26 +02:00
Alexandre Dulaunoy 1ece51ed48
chg: [branded_vulnerability] version updated 2019-05-25 08:41:33 +02:00
rmkml 6f140ce358
Merge branch 'master' into master 2019-05-25 00:03:34 +02:00
Deborah Servili 0d97013022
add BlueKeep 2019-05-24 15:55:58 +02:00
Deborah Servili 9d8d5ce1c8
fix ransomware ransomnotes 2019-05-23 16:23:09 +02:00
Deborah Servili f5a7efaadc
jq 2019-05-23 12:39:53 +02:00
Deborah Servili b4e4d2e539
rework of ransomware galaxy 2019-05-23 12:39:33 +02:00
Daniel Plohmann 1cc0137c38
adding TA542 to MUMMY SPIDER (emotet) 2019-05-17 17:36:57 +02:00
Rony 380006ecbb
merging Pacifier & Turla 2019-05-16 23:57:49 +05:30
Alexandre Dulaunoy 32af463dd1
Merge pull request from Delta-Sierra/master 
add Reaver and probably related tools
 2019-05-16 17:04:14 +02:00
Deborah Servili 9f801122da
add Reaver and probably related tools 2019-05-16 15:45:03 +02:00
Daniel Plohmann a20f7fbe91
adding APT31/ZIRCONIUM 2019-05-15 22:43:33 +02:00
rmkml cd58833770 Add Phobos Ransomware 2019-05-15 21:02:32 +02:00
Raphaël Vinot 59869bf145 fix: o365-exchange-techniques (duplicate values, duplicate UUIDs) 2019-05-13 11:15:38 +02:00
Deborah Servili f8e356e042
Merge pull request from Delta-Sierra/master 
add Sodinokibi
 2019-05-13 08:50:26 +02:00
Alexandre Dulaunoy 678b2a5621
chg: [o365-exchange-techniques] Actions on Intent added (finalized) 2019-05-12 18:25:01 +02:00
Alexandre Dulaunoy 5d1565152c
chg: [o365-exchange-techniques] Expansion added (WiP) 2019-05-12 18:19:00 +02:00
Alexandre Dulaunoy ee0f793e49
chg: [o365-exchange-techniques] Persistence kill-chain added (WiP) 2019-05-12 17:54:53 +02:00
Alexandre Dulaunoy 3a75c6a3df
chg: [o365-exchange-techniques] Compromise row added (WiP) 2019-05-12 12:07:30 +02:00
Alexandre Dulaunoy a2df5c46d8
chg: [o365-exchange-techniques] [WiP] based on John Lambert matrix techniques 2019-05-12 09:51:41 +02:00
Rony 7c0ea4949a
Update threat-actor.json 2019-05-12 11:11:09 +05:30
Deborah Servili 5bbb0ab53d
add Sodinokibi 2019-05-08 15:54:37 +02:00
Raphaël Vinot 82ebbc6612 fix: UUID issues 2019-05-07 12:09:39 +02:00
Raphaël Vinot 988586fde0 fix: Duplicate values, typos. 2019-05-06 17:17:16 +02:00
Alexandre Dulaunoy 36f317b4a8
Merge pull request from Delta-Sierra/master 
add Scranos
 2019-05-03 16:22:20 +02:00
Deborah Servili ad00477c87
add Scarnos 2019-05-03 15:55:19 +02:00
Alexandre Dulaunoy 6aa7c39714
Merge pull request from StefanKelm/master 
Update threat-actor.json
 2019-05-02 16:50:25 +02:00
Alexandre Dulaunoy 20007e7b7c
Merge pull request from Delta-Sierra/master 
add AESDDoS Botnet and JasperLoader
 2019-05-02 16:48:55 +02:00
StefanKelm 7e329855b2
Update threat-actor.json 
Silent Librarian / COBALT DICKENS
 2019-05-02 15:34:19 +02:00
Alexandre Dulaunoy b77087d59e
chg: [malpedia] duplicates fixed 2019-05-02 14:48:17 +02:00
Alexandre Dulaunoy b706738d46
chg: [malpedia] jq all the things 2019-05-02 14:47:00 +02:00
Alexandre Dulaunoy 1ddb38341b
Merge branch 'master' of https://github.com/nao-sec/misp-galaxy into nao-sec-master 2019-05-02 14:46:34 +02:00
Deborah Servili dda2ede5f2
add JasperLoader 2019-05-02 13:02:00 +02:00
Deborah Servili f51f13e84b
add AESDDoS Botnet 2019-05-02 10:15:26 +02:00
Alexandre Dulaunoy 37da9bebdf
chg: [threat-actor] FIN4 updates 2019-05-01 17:41:03 +02:00
Rony 0afaf81438
Update threat-actor.json 2019-05-01 15:54:38 +05:30
Rony c565f61761
Update threat-actor.json 2019-05-01 15:51:56 +05:30
Rony 3b185d8435
Update threat-actor.json 2019-05-01 15:40:10 +05:30
Rony ed351b4eae
updated FIN4 2019-05-01 15:24:59 +05:30
Alexandre Dulaunoy 94466d8196
chg: [ATT&CK] updated to the latest version 2019-04-30 19:07:57 +02:00
Rintaro KOIKE 57735a5b5c
chg: [malpedia] updated to the latest version 
Ref: https://malpedia.caad.fkie.fraunhofer.de/api/get/misp
 2019-04-30 20:41:12 +09:00
Alexandre Dulaunoy f9a030ce54
chg: [exploit-kit] jq all the things 2019-04-28 19:12:06 +02:00
Alexandre Dulaunoy 82a85d1651
Merge branch 'master' of https://github.com/Kafeine/misp-galaxy into Kafeine-master 2019-04-28 19:11:20 +02:00
Kafeine 915b673b7a
+= Spelevo 2019-04-28 12:24:48 +02:00
Alexandre Dulaunoy 2405f1c59e
chg: [tool] Cowboy and KimJongRAT (Sorry Paul, we forgot ;-) 
ref: https://unit42.paloaltonetworks.com/babyshark-malware-part-two-attacks-continue-using-kimjongrat-and-pcrat/
 2019-04-27 09:33:55 +02:00
Alexandre Dulaunoy 094f0e0684
chg: [tool] jq all the things 2019-04-24 12:58:49 +02:00
Alexandre Dulaunoy 088e7477a6
chg: [tool] Karkoff tool added 2019-04-24 11:40:06 +02:00
Rony 292df2360a
more report on APT36 2019-04-22 11:05:21 +05:30
Deborah Servili 8ac7aec85c
add Sea Turtle campaign 2019-04-19 13:21:11 +02:00
Deborah Servili 39a416e9e7 Merge branch 'master' of https://github.com/MISP/misp-galaxy 2019-04-19 11:54:26 +02:00
Christophe Vandeplas ecc63cf166 chg; [threat-actor] validate + version bump 2019-04-17 21:01:55 +02:00
Christophe Vandeplas d5fd896bb0
Merge pull request from bartblaze/master 
Add Whitefly
 2019-04-17 20:53:15 +02:00
Deborah Servili 3abfe9fa48
merge 2019-04-17 16:06:50 +02:00
Bart e1cab68683
Add Whitefly 2019-04-17 12:27:18 +01:00
Deborah Servili 83b900ecc2
Merge pull request from r0ny123/patch-3 
fixed the broken link
 2019-04-17 08:27:09 +02:00
Deborah Servili d72ea0d83a
Merge pull request from rmkml/master 
Add BigBobRoss Ransomware
 2019-04-17 08:26:42 +02:00
Rony d98aefa186
fixed the broken link 2019-04-17 09:17:23 +05:30
rmkml d16cc2e184 Add Cr1ptt0r Ransomware 2019-04-14 20:49:36 +02:00
rmkml 271143519d Add SpelevoEK 2019-04-13 23:04:25 +02:00
rmkml 55f6d28388 Add Planetary Ransomware 2019-04-13 22:41:37 +02:00
rmkml 356c485459 Add BigBobRoss Ransomware 2019-04-13 22:06:53 +02:00
Alexandre Dulaunoy 9f20c7aac1
Merge pull request from rmkml/master 
Add Caesar RAT
 2019-04-13 22:02:40 +02:00
rmkml 747dd3f90d Add Caesar RAT 2019-04-13 21:47:24 +02:00
Alexandre Dulaunoy 30baec12e9
Merge pull request from rmkml/master 
Add Tellyouthepass Ransomware
 2019-04-13 20:01:30 +02:00
rmkml 9aa6244ed9 Add Ave Maria Stealer 2019-04-13 17:01:31 +02:00
rmkml 86323ca948 Add Tellyouthepass Ransomware 2019-04-13 16:38:46 +02:00
Alexandre Dulaunoy bc0949c357
Merge pull request from bartblaze/master 
Add DoNot team references
 2019-04-13 09:29:35 +02:00
Alexandre Dulaunoy 903612178f
Merge pull request from rmkml/master 
Add BlackWorm Ransomware
 2019-04-13 09:29:02 +02:00
rmkml f94e138b27 Add Vidar Stealer 2019-04-12 23:31:30 +02:00
rmkml 54cd80ee2d Add Brushaloader Malware 2019-04-12 22:42:57 +02:00
Bart 3256cca9e0
Add DoNot team references 2019-04-12 21:12:16 +01:00
rmkml 25597c24f7 Add BlackWorm Ransomware 2019-04-12 21:29:13 +02:00
Alexandre Dulaunoy d7b4908aa3
Merge branch 'patch-8' of https://github.com/danielplohmann/misp-galaxy into danielplohmann-patch-8 2019-04-12 05:58:47 +02:00
Daniel Plohmann 159225b6cf
Based on additional research, APT36 can actually be merged into Mythic Leopard 2019-04-11 22:29:49 +02:00
Rony 7987c8f023
Update threat-actor.json 2019-04-12 01:56:12 +05:30
Rony 2fc914b2f9
Update threat-actor.json 2019-04-12 01:06:50 +05:30
Rony 60e4a486a7
adding additional resources for APT36 2019-04-11 23:55:51 +05:30
rmkml eb90e99daf Add Globe Imposter Ransomware 2019-04-10 22:37:54 +02:00
rmkml 6467fe5849 Add Parasite HTTP RAT 2019-04-09 22:27:28 +02:00
Daniel Plohmann df5301eab5
adding FireEye's TMP.Lapis / APT36 2019-04-09 08:38:44 +02:00
Deborah Servili c69a18c723 Merge branch 'master' of https://github.com/MISP/misp-galaxy 2019-04-02 08:21:41 +02:00
Alexandre Dulaunoy a0234020bc
chg: [ransomware] various fixes 2019-04-01 19:49:00 +02:00
Alexandre Dulaunoy d23e533cdb
chg: [ransomware] jq all the things(tm) 2019-04-01 19:44:05 +02:00
Alexandre Dulaunoy 36895a2163
chg: [ransomware] fix the meta to payment-method 2019-04-01 19:40:30 +02:00
Alexandre Dulaunoy 0fa6cf25ba
Merge branch 'master' of https://github.com/ismasma/misp-galaxy into ismasma-master 2019-04-01 19:38:23 +02:00
Deborah Servili 272ea3ba4a
add ref for Ryuk and LockerGoga ransomwares 2019-03-28 15:58:00 +01:00
Alexandre Dulaunoy ac6276a906
Merge pull request from Delta-Sierra/master 
Add Operation ShadowHammer
 2019-03-26 22:25:22 +01:00
Deborah Servili 6027d546f2
Add Operation ShadowHammer 2019-03-26 10:40:29 +01:00
Deborah Servili 575dd64582
add relationship between Cardinal RAT and EVILNUM 2019-03-26 08:41:11 +01:00
Alexandre Dulaunoy 52f088efc9
Merge branch 'master' of https://github.com/Delta-Sierra/misp-galaxy into Delta-Sierra-master 2019-03-21 20:51:59 +01:00
Daniel Plohmann e0bb3d76a6
added APT-C-27 / GoldMouse 2019-03-21 18:06:03 +01:00
Deborah Servili d0383b460f
jq 2019-03-21 09:15:16 +01:00
Deborah Servili 0fd04fa619
Merge branch 'master' into master 2019-03-21 08:42:30 +01:00
Deborah Servili 3c207f69be
add Cardinal RAT ref 2019-03-20 16:11:50 +01:00
Deborah Servili f86c748b8c
add AOT-C-27 Goldmouse 2019-03-20 15:45:20 +01:00
Raphaël Vinot 6be42e6a1a fix: Make validate all happy 2019-03-20 12:58:18 +01:00
Alexandre Dulaunoy 04accabaab
chg: [mitre att&ck] updated with new version 2019-03-20 12:37:38 +01:00
Deborah Servili b2e1d5551f
add SPOILER vulnerability + other minor changes 2019-03-20 11:47:58 +01:00
Alexandre Dulaunoy b2538a1f8a
chg: [threat-actor] change attribution confidence to be a string by default 2019-03-19 16:51:41 +01:00
Alexandre Dulaunoy 095b0a4d81
chg: [attck4fraud] updated 2019-03-19 16:33:27 +01:00
Alexandre Dulaunoy 3cf53b670e
chg: [attck4fraud] completed 2019-03-19 16:02:08 +01:00
Alexandre Dulaunoy 2b619dd9b7
chg: [attck4fraud] Assets Transfer added 2019-03-19 15:52:33 +01:00
Alexandre Dulaunoy 75b4a3a951
chg: [attck4fraud] Obtain Fraudulent Assets added 2019-03-19 15:44:16 +01:00
Alexandre Dulaunoy bf6a605f6d
chg: [attck4fraud] Perform fraud added 2019-03-19 15:33:46 +01:00
Alexandre Dulaunoy e398cc3ef2
chg: [attck4fraud] Target compromise updated 2019-03-19 15:17:25 +01:00
Alexandre Dulaunoy e26918d749
chg: [attck4fraud] more techniques 2019-03-19 15:08:44 +01:00
Alexandre Dulaunoy 4f454493b7
chg: [threat-actor] BRONZE UNION is also uppercase 2019-03-19 14:47:03 +01:00
Alexandre Dulaunoy 9a6b597387
chg: [threat-actor] updated the version to avoid the past issue with 0 value for integer values 2019-03-19 14:44:49 +01:00
Alexandre Dulaunoy c2f10410f5
chg: [sector] typo fixed - reported in 2019-03-19 12:36:19 +01:00
Alexandre Dulaunoy e56cb33097
chg: [attck4fraud] fix the type issue 2019-03-19 10:03:33 +01:00
Alexandre Dulaunoy a80283672c
chg: [attck4fraud] uuid fixed 2019-03-19 08:39:08 +01:00
Alexandre Dulaunoy 2419a33807
chg: [attck4fraud] ATM Shimming added 2019-03-19 08:33:08 +01:00
Alexandre Dulaunoy 779bc4a6a0
chg: [attck4fraud] description fixed for FT1003 2019-03-19 08:11:33 +01:00
Alexandre Dulaunoy 3c067c42a8
Merge branch 'master' of github.com:MISP/misp-galaxy 2019-03-19 08:10:36 +01:00
Alexandre Dulaunoy 824465d879
add: [attck4fraud] initial attck-like matrix for fraud from https://github.com/burritoblue/attck4fraud (WiP) 2019-03-19 08:09:23 +01:00
Alexandre Dulaunoy 78b886b2f0
Merge pull request from Delta-Sierra/master 
add H-worm RAT
 2019-03-19 07:31:04 +01:00
Deborah Servili 3294091600
add H-worm RAT 2019-03-18 16:24:55 +01:00
Bart dff2a827d6
Update preventive-measure.json 
Add ACL
 2019-03-17 21:47:54 +00:00
Deborah Servili 5ce8aae89e
add Operation Comando - hit version 100 2019-03-15 15:04:29 +01:00
ismasma 379ed61c34
Add payment method and price 2019-03-14 17:12:42 +01:00
Alexandre Dulaunoy 5db30ba974
chg: [threat-actor] SandCat added 2019-03-14 06:18:10 +01:00
Thomas Dupuy 60d79b0153 add synonym, no need for uppercase in the name :) 2019-03-13 23:07:10 +01:00
Deborah Servili ecf76178e7
add attribution-confidence attribute to threat-actor 2019-03-11 11:18:12 +01:00
Deborah Servili 7576d0db02
relations between SLUB Backdoor 2019-03-11 09:01:12 +01:00
Deborah Servili a65688ec02 Merge branch 'master' of https://github.com/Delta-Sierra/misp-galaxy 2019-03-11 08:51:47 +01:00
Deborah Servili 33dbda1e1e Merge branch 'master' of https://github.com/MISP/misp-galaxy 2019-03-11 08:51:16 +01:00
Deborah Servili 59ee8a9f13
Merge branch 'master' into master 2019-03-11 08:40:38 +01:00
Deborah Servili ddab5f7006
Merge branch 'master' into master 2019-03-11 08:40:11 +01:00
Alexandre Dulaunoy 139e6c32ed
chg: [threat-actor] new attribution-confidence level introduced 2019-03-11 08:37:49 +01:00
Alexandre Dulaunoy eb665e2883
chg: [threat-actor] jq all the things 2019-03-10 11:15:13 +01:00
Alexandre Dulaunoy bebcc0eb5a
Merge branch 'master' of github.com:MISP/misp-galaxy 2019-03-10 10:48:31 +01:00
Alexandre Dulaunoy 6fb1303570
chg: [threat-actor] IRIDIUM added 
Ref: https://resecurity.com/blog/parliament_races/
 2019-03-10 10:47:34 +01:00
Raphaël Vinot 4f3e6335b5 fix: Wrong (duplicate) value. 2019-03-09 06:29:26 +01:00
Deborah Servili 2815e48610
add StealthWorker malware 2019-03-08 15:57:30 +01:00
Deborah Servili ee034babba
add SLUB backdoor 2019-03-08 14:39:34 +01:00
Alexandre Dulaunoy 769e0002ef
chg: [tools] jq all the things 2019-03-08 08:10:42 +01:00
Daniel Plohmann 1d8ada33a0
Update threat-actor.json 
another actor described by 360TIC.
 2019-03-07 17:50:46 +01:00
Alexandre Dulaunoy 63419046d4
Merge branch 'master' of github.com:MISP/misp-galaxy 2019-03-07 15:51:44 +01:00
Alexandre Dulaunoy 31ba566c18
chg: [tool] SLUB Backdoor added 2019-03-07 15:51:16 +01:00
Deborah Servili 7afd311abc
add Jokeroo RaaS 2019-03-07 15:23:30 +01:00
Daniel Plohmann cfb807861a
FireEye upgraded TEMP.Periscope to APT40 2019-03-07 14:34:14 +01:00
Deborah Servili eb0a33eab6
add operation Kabar Cobra 2019-03-06 15:52:49 +01:00