MISP
/
misp-galaxy
mirror of https://github.com/MISP/misp-galaxy
2
0
Fork 0
Code Issues Releases Wiki Activity
3,379 Commits
4 Branches
41 Tags
279 MiB
Commit Graph

1035 Commits (f0229fbdd2c066950c50cfa6522063d383456949)

Author SHA1 Message Date
Mathieu Beligon 7163ed2068 [threat-actors] Add UserSec 2023-11-07 14:47:12 +01:00
Mathieu Beligon c3b6878cf3 [threat-actors] Add IronHusky 2023-11-07 14:47:12 +01:00
Mathieu Beligon 1246088d76 [threat-actors] Add ShinyHunters 2023-11-07 14:47:12 +01:00
Mathieu Beligon 798cebc970 [threat-actors] Add ShroudedSnooper 2023-11-07 14:47:12 +01:00
Mathieu Beligon 2111f50968 [threat-actors] Add 1937CN 2023-11-07 14:47:12 +01:00
Mathieu Beligon 40fb100ff9 [threat-actors] Add Altahrea Team 2023-11-07 14:47:12 +01:00
Mathieu Beligon 4093632674 [threat-actors] Add Cyber Av3ngers 2023-11-07 14:47:12 +01:00
Mathieu Beligon 58fb9162b0 [threat-actors] Add KromSec 2023-11-07 14:47:12 +01:00
Mathieu Beligon d1f382602c [threat-actors] Add DustSquad 2023-11-07 14:47:11 +01:00
Mathieu Beligon bc8904110b [threat-actors] Add Guacamaya 2023-11-07 14:47:11 +01:00
Mathieu Beligon 10d27206a7 [threat-actors] Add SharpPanda 2023-11-07 14:47:11 +01:00
Mathieu Beligon ff9a8ddfe3 [threat-actors] Add BadRory 2023-11-07 14:47:11 +01:00
Alexandre Dulaunoy e24fecbd40
fix: [threat-actor] `synonyms` not `aliases` 2023-11-07 11:22:32 +01:00
Alexandre Dulaunoy b13eee558f
chg: [threat-actor] TA499 added 2023-11-07 11:12:35 +01:00
Alexandre Dulaunoy f2cc04fca8
chg: [threat-actor] version updated 2023-11-07 09:27:07 +01:00
Mathieu4141 5828ba1a9d [threat-actors] Add Storm-1133 2023-11-06 05:26:26 -08:00
Mathieu4141 4a3968e873 [threat-actors] Add REF2924 2023-11-06 05:26:26 -08:00
Mathieu4141 18811f8056 [threat-actors] Add REF5961 2023-11-06 05:26:26 -08:00
Mathieu4141 ee354d9d75 [threat-actors] Add HiddenArt 2023-11-06 05:26:26 -08:00
Mathieu4141 bfb03504a9 [threat-actors] Add OilAlpha 2023-11-06 05:26:26 -08:00
Mathieu4141 152ab38b10 [threat-actors] Add GhostSec 2023-11-06 05:26:26 -08:00
Mathieu4141 5a4a697e8c [threat-actors] Add IndigoZebra 2023-11-06 05:26:25 -08:00
Mathieu4141 971b17b79f [threat-actors] Add NB65 2023-11-06 05:26:25 -08:00
Mathieu4141 84fec96df9 [threat-actors] Add Witchetty 2023-11-06 05:26:25 -08:00
Mathieu4141 eb43d9faf2 [threat-actors] Add RedStinger 2023-11-06 05:26:25 -08:00
Mathieu Beligon 025345e1b6 [threat-actors] remove duplicate 2023-11-03 20:09:05 +01:00
Mathieu Beligon a65bb60d90 [threat-actors] Add UNC3890 2023-11-03 19:02:12 +01:00
Mathieu Beligon 84fda6ef72 [threat-actors] Add Carderbee 2023-11-03 19:02:12 +01:00
Mathieu Beligon 1343cdb35a [threat-actors] Add RansomVC 2023-11-03 19:02:12 +01:00
Mathieu Beligon ea227222ea [threat-actors] Add SiegedSec 2023-11-03 19:02:12 +01:00
Mathieu Beligon 44d7b3e88f [threat-actors] Add Metador 2023-11-03 19:02:12 +01:00
Mathieu Beligon 0133c023d2 [threat-actors] Add YoroTrooper 2023-11-03 19:02:12 +01:00
Mathieu Beligon 58e8dfef71 [threat-actors] Add Kasablanka 2023-11-03 19:02:12 +01:00
Mathieu Beligon 0f1777df92 [threat-actors] Add SparklingGoblin 2023-11-03 19:02:12 +01:00
Mathieu Beligon 419c62cea1 [threat-actors] Add Storm-0062 2023-11-03 19:02:12 +01:00
Mathieu Beligon 13c770f0a7 [threat-actors] Add LofyGang 2023-11-03 19:02:12 +01:00
Alexandre Dulaunoy 0b5b9ca5a3
chg: [threat-actor] version updated 2023-11-03 14:00:21 +01:00
Mathieu Beligon 9d6315346e [threat-actors] jq 2023-11-03 11:32:24 +01:00
Mathieu Beligon 9c502d0d1f [threat-actors] Add Lancefly 2023-11-03 11:13:11 +01:00
Mathieu Beligon 73c73606ff [threat-actors] Add GoldenJackal 2023-11-03 11:13:11 +01:00
Mathieu Beligon 64f0a87ed7 [threat-actors] Add Earth Estries 2023-11-03 11:13:11 +01:00
Mathieu Beligon 4a521eec3b [threat-actors] Add TetrisPhantom 2023-11-03 11:13:11 +01:00
Mathieu Beligon 78472ee3f5 [threat-actors] Add Redfly 2023-11-03 11:13:11 +01:00
Mathieu Beligon c9e85b4d16 [threat-actors] Add Earth Longzhi 2023-11-03 11:13:11 +01:00
Mathieu Beligon a91734af6c [threat-actors] Add UNC3886 2023-11-03 11:13:11 +01:00
Mathieu Beligon 7bb54037e8 [threat-actors] Add Winter Vivern 2023-11-03 11:13:11 +01:00
Mathieu Beligon 4bb6cce77d [threat-actors] Add Xiaoqiying 2023-11-03 11:13:11 +01:00
Mathieu Beligon f82b502df6 [threat-actors] Add Keksec 2023-11-03 11:13:11 +01:00
Mathieu4141 5b1af60db3 [threat-actors] Add Keksec 2023-11-02 06:29:30 -07:00
Mathieu Beligon be89fcd370 [threat-actors] jq 2023-11-02 13:25:13 +01:00
Mathieu Béligon 63b422c7d0
Merge branch 'main' into threat-actor/scarred-manticore-6a6965e2-0843-47b1-990d-d43016dd4dd1 2023-11-02 13:19:14 +01:00
Mathieu4141 9ced077269 [threat-actors] Add Scarred Manticore 2023-11-02 05:17:14 -07:00
Alexandre Dulaunoy e7ca55277c
new: [threat-actor] Storm-0558 added + Fix #880 2023-10-31 09:05:19 +01:00
Mathieu Beligon dcde706078 [threat-actors] Add Camaro Dragon 2023-10-26 13:20:54 +02:00
Alexandre Dulaunoy 416cd6706a
fix: [threat-actor] JQ all the things + version updated 2023-10-20 12:00:48 +02:00
jstnk9 ec9dc0f2e3 threat actors update 2023-10-20 11:51:13 +02:00
jstnk9 aa5a6eb062 threat actor updated 2023-10-19 12:39:37 +02:00
Christophe Vandeplas a4ae58afcb
chg: [threat-actor] increased version number 2023-10-17 11:29:52 +02:00
Christophe Vandeplas e9f884e3f3
Merge pull request #876 from Mathieu4141/threat-actors/cobalt-mirage 
[threat-actors] More aliases of Iranian apts
 2023-10-17 11:29:01 +02:00
Mathieu Beligon e086bee02e [threat-actors] More aliases of iranian apts 2023-10-17 11:21:48 +02:00
Mathieu Beligon 537ef08735 [threat-actors] Add Void Rabisu 2023-10-16 18:14:47 +02:00
Alexandre Dulaunoy 059b20e705
chg: [threat-actor] clean-up 2023-10-13 16:31:48 +02:00
jstnk9 faef21e15d Added information related to Wizard Spider 2023-10-13 12:02:20 +02:00
jstnk9 613e9feb12 added suspected victims to Gelsemium 2023-10-13 10:53:36 +02:00
Delta-Sierra 1bb336fdbe add AtlasCross 2023-10-10 09:17:25 +02:00
Delta-Sierra fd6bccae8b Merge https://github.com/MISP/misp-galaxy 2023-10-09 09:18:51 +02:00
Delta-Sierra 73d7c038b2 adding targeted sectors 2023-10-09 09:18:43 +02:00
Daniel Plohmann 1b33cad11d
adding aliases to ProphetSpider 2023-10-04 16:39:01 +01:00
Alexandre Dulaunoy 8760ea0c52
Merge branch 'main' of github.com:MISP/misp-galaxy into main 2023-10-04 10:49:56 +02:00
Alexandre Dulaunoy 89a193d315
fix: [threat-actor] version updated + jq all the things 2023-10-04 10:48:44 +02:00
Paul Stark ce7d54c96a chg [misp-galaxy] update Nigeria from name to 2-digit code 2023-10-03 11:56:45 -04:00
jstnk9 89ab7728b0 updated TA505 countries and industries affected 
updated TA505 countries and industries affected
 2023-10-03 12:44:44 +02:00
Mathieu Beligon e6266e8e59 fixes 2023-10-02 19:25:10 +02:00
Mathieu Beligon 081b2e619b fixes 2023-10-02 19:18:00 +02:00
Mathieu Beligon b2599deaae fixes 2023-10-02 19:17:47 +02:00
Mathieu Beligon 0fba8d3f27 [threat-actors] bump version 2023-10-02 15:19:20 +02:00
Mathieu Beligon b8f8fce4b6 [threa-actors] Add Scattered Spider 2023-10-02 15:17:40 +02:00
Mathieu Beligon e393780af8 [threa-actors] Add Scattered Canary 2023-10-02 15:11:10 +02:00
Alexandre Dulaunoy 5d78834520
Merge pull request #866 from Mathieu4141/actors/add-storm-0324 
[threat-actors] Add Storm-0324
 2023-09-16 11:02:33 +02:00
Mathieu Beligon e2fd005821 [threat-actors] Add Storm-0324 2023-09-15 16:29:45 +02:00
Delta-Sierra ac4d003c3e fix caps 2023-09-15 16:00:38 +02:00
Delta-Sierra 5efe483858 adding targeted sectors 2023-09-15 15:49:43 +02:00
Delta-Sierra db23d6eb4c adding targeted sectors 2023-09-15 10:21:44 +02:00
Delta-Sierra df0e103727 Add targeted sectors 2023-09-08 11:08:08 +02:00
Delta-Sierra dc498bd199 more targeted-sectors meta 2023-08-28 15:06:57 +02:00
Delta-Sierra 639686be75 Merge https://github.com/MISP/misp-galaxy 2023-08-24 09:13:58 +02:00
Delta-Sierra 090b501c4c add targeted sectors meta 2023-08-24 09:03:57 +02:00
Daniel Plohmann d978998a5d
RecordedFuture: RedHotel == EarthLusca 2023-08-23 14:02:15 +02:00
Daniel Plohmann (Saturn) e207218534 version bump 2023-08-15 12:34:06 +02:00
Daniel Plohmann (Saturn) 4127ce9694 replaced various broken links with reachable equivalents 2023-08-15 12:32:51 +02:00
Daniel Plohmann b083ae12bc
jq fix 2023-08-10 15:57:58 +02:00
Daniel Plohmann c1d3164ef6
adding MoustachedBouncer 2023-08-10 15:49:11 +02:00
Daniel Plohmann e228ffc432
alias Callisto -> BlueCharlie 
not sure, if you also want to have the Microsoft names in here (I think they are tracked separately?), otherwise, that would be Star Blizzard according to the article.
 2023-08-03 09:53:10 +02:00
Rony 9b9ce4777a chg: [threat-actor] added references, origin country, aliases to `Sea Turtle` 2023-07-28 11:04:11 +00:00
Thomas Dupuy 2dcd1d3544 upd: Add Worok TA and update APT-Q-12 to APT-C-60 as it was the first 
name mention in an article.
 2023-07-18 19:53:54 +00:00
Delta-Sierra c51d177abd add SmugX & RedDelta 2023-07-10 15:46:01 +02:00
Delta-Sierra 20d3b3780a merge 2023-06-19 08:35:48 +02:00
iglocska 14301a9c4c
chg: [threat actors] added Volt Typhoon 2023-05-25 07:29:48 +02:00
Delta-Sierra e87b7bbf73 complete VENOM SPIDER threat actor 2023-05-23 11:43:20 +02:00
Delta-Sierra 18ee466ae4 add Hagga threat actor 2023-05-22 15:44:18 +02:00
Delta-Sierra d202ed9f3f Merge https://github.com/MISP/misp-galaxy 2023-05-15 09:54:25 +02:00
Delta-Sierra a3fffacab3 add APT43 + tools 2023-05-15 08:41:17 +02:00
Daniel Plohmann 094d56057c
adding APT43 (Mandiant) for Kimsuky. 2023-05-09 14:35:41 +02:00
Sebastien Larinier ddc285581d Update threat-actor.json 2023-04-26 21:52:57 +02:00
Sebastien Larinier d60cca9302 Update threat-actor.json 
fix mistake
 2023-04-26 21:46:33 +02:00
Sebastien Larinier 142d4aeaef Update threat-actor.json 2023-04-26 14:26:48 +02:00
Jürgen Löhel 15297c7b5f
chg [threat-actors] Add RedGolf 
Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
 2023-04-24 16:59:18 -06:00
Christophe Vandeplas 79b80b0869
chg: [rels] more threat actor relations 2023-04-23 17:54:58 +02:00
Christophe Vandeplas 3c6c204f01
chg: [rels] more threat actor relations 2023-04-23 17:45:58 +02:00
Christophe Vandeplas 138c7c7ba8
chg: [rels] more relations on cluster "value" 2023-04-23 17:36:02 +02:00
Christophe Vandeplas bf7c5f1dd9
chg: [rels] threat-actor & MS activity group - on synonym 2023-04-23 11:56:41 +02:00
Christophe Vandeplas a5e7e0c95f
chg: [rels] threat-actor & MS activity group - on value 2023-04-23 11:55:57 +02:00
Sebastien Larinier 862badf2c9 Update threat-actor.json 2023-04-19 17:41:44 +02:00
Sebastien Larinier 1c751b1ea8 Update threat-actor.json 2023-04-19 17:34:50 +02:00
Sebastien Larinier 165ce70a28
Merge branch 'MISP:main' into main 2023-04-19 16:48:02 +02:00
Sebastien Larinier 87ef0a400e Update threat-actor.json 2023-04-19 15:42:14 +02:00
Sebastien Larinier a77dc82c0a Update threat-actor.json 
new apt30 group
 2023-04-19 15:35:36 +02:00
Delta-Sierra ecb7e79a6e Merge https://github.com/MISP/misp-galaxy 2023-04-19 15:06:51 +02:00
Sebastien Larinier 926035633f
Merge branch 'MISP:main' into main 2023-04-19 11:55:57 +02:00
Daniel Plohmann 41afab1c06
adding Trend Micro alias Earth Smilodon for APT27 2023-04-18 20:11:57 +02:00
Delta-Sierra 6b8994271e add relationships for HALFRIG & QUATTERRIG 2023-04-18 12:20:20 +02:00
Daniel Plohmann 02e23a9a47
adding Google alias HOODOO for APT41 2023-04-17 22:32:50 +02:00
Delta-Sierra 4a4fa6d16f fix versions 2023-04-17 11:32:51 +02:00
Delta-Sierra 233a066a03 Merge https://github.com/MISP/misp-galaxy 2023-04-17 11:16:23 +02:00
Delta-Sierra d4225c5469 add some SNOWYAMBER relationships 2023-04-17 11:16:21 +02:00
Daniel Plohmann a966b3ff88
adding Trend Micro alias Earth Preta for Mustang Panda 2023-04-12 16:59:36 +02:00
Sebdraven 8713618777 Update threat-actor.json 
add new ref for sidecopy
 2023-03-23 09:13:23 +01:00
Sebdraven f5d68aa08d Update threat-actor.json 
delete ref to APT30 for Naikon
 2023-03-23 08:49:17 +01:00
Sebdraven d5843d46e2 Update threat-actor.json 
add ref to Aoqin Dragon
 2023-03-21 18:40:10 +01:00
Mathieu Beligon d82ff1ecfb [threat-actors] Add Anonymous Sudan 2023-03-15 17:38:03 -05:00
Daniel Plohmann c39b46e9d5
Update threat-actor.json 
when value "Sofacy" was changed to "APT28", it seems Sofacy was not added to aliases, so it's missing right now.
 2023-03-15 14:55:25 +01:00
Jürgen Löhel 2d30785af5
chg [threat-actors] Add TA866 
Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
 2023-03-08 21:44:16 -06:00
Mathieu Beligon 395ffda94f [threat-actors] bump version 2023-03-02 10:29:52 -08:00
Mathieu Beligon e1407c3c3f [threat-actors] Add SLIPPY SPIDER alias to LAPSUS 2023-03-02 10:29:29 -08:00
Mathieu Beligon 4bbee8c1e7 [threat-actors] Add PROPHET SPIDER 2023-03-02 10:19:24 -08:00
Mathieu Beligon 61cb24a3fc [threat-actors] Add Nemesis Kitten 2023-03-01 16:37:42 -08:00
Mathieu Beligon 84faa3c92b [threat-actors] Add Karakurt 2023-03-01 16:34:03 -08:00
Mathieu Beligon 7d371b4c80 [threat-actors] Add CYBORG SPIDER alias to GOCLD BURLAP 2023-03-01 15:45:41 -08:00
Mathieu Beligon fa57354471 [threat-actors] Add Chamelgang 2023-03-01 15:40:23 -08:00
Mathieu Beligon bff978e4d1 [threat-actors] Add TA453 2023-03-01 15:24:55 -08:00
Mathieu Beligon 3406ad3aa9 [threat-actors] Add APT42 2023-03-01 15:18:53 -08:00
Mathieu Beligon 2567d6f1f8 [threat-actors] Add TA406 2023-03-01 15:01:22 -08:00
Rony 50624af741 add DEV-0147 https://twitter.com/MsftSecIntel/status/1625181255754039318 2023-02-25 20:18:09 +00:00
Rony cf727f034c
add other actor synonyms from Google's report https://services.google.com/fh/files/blogs/google_fog_of_war_research_report.pdf 2023-02-26 01:05:50 +05:30
Alexandre Dulaunoy 6460fde2e4
chg: [threat-actor] version updated 2023-02-16 14:43:45 +01:00
Daniel Plohmann 91255413d8
adding Google names for RU threat actors 
https://blog.google/threat-analysis-group/fog-of-war-how-the-ukraine-conflict-transformed-the-cyber-threat-landscape/
 2023-02-16 14:30:05 +01:00
Alexandre Dulaunoy 73bd7d0983
Merge pull request #818 from Mathieu4141/threat-actors/proofpoint-aliases 
[threat actors] Adding some actors from ProofPoint
 2023-02-14 06:40:22 +01:00
Mathieu Beligon 9f09699047 [threat-actors] Fix: country was in the wrong place 2023-02-13 16:47:38 -08:00
Mathieu Beligon ac067a236e [threat-actors] fix: Add missing uuids 2023-02-13 16:36:41 -08:00
Mathieu Beligon a792115dd8 fix 2023-02-13 16:26:10 -08:00