MISP
/
misp-taxonomies
mirror of https://github.com/MISP/misp-taxonomies
2
0
Fork 0
Code Issues Releases Wiki Activity

Adversary expanded with TDS and panel classification

pull/8/head
Alexandre Dulaunoy 2016-02-04 09:43:25 +01:00
parent b4ff7cec4c
commit 4004099cd1
1 changed files with 11 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
adversary/machinetag.json
View File

@ -1,7 +1,7 @@
{ {
"namespace": "adversary", "namespace": "adversary",
"description": "An overview and description of the adversary infrastructure", "description": "An overview and description of the adversary infrastructure",
"version": 1, "version": 2,
"predicates": [ "predicates": [
{ {
"value": "infrastructure-status", "value": "infrastructure-status",
@ -43,7 +43,7 @@
}, },
{ {
"value": "drop-zone", "value": "drop-zone",
"expanded": "Infrastructure used by the adversary to store information related to its campaigns" "expanded": "Infrastructure used by the adversary to store information related to his campaigns"
}, },
{ {
"value": "exploit-distribution-point", "value": "exploit-distribution-point",
@ -51,7 +51,15 @@
}, },
{ {
"value": "vpn", "value": "vpn",
"expanded": "Infrastructure used by an adversary as Virtual Private Network to hide activities and reduce the traffic analysis surface" "expanded": "Infrastructure used by the adversary as Virtual Private Network to hide activities and reduce the traffic analysis surface"
},
{
"value": "panel",
"expanded": "Panel used by the adversary to control or maintain hist infrastructure"
},
{
"value": "tds",
"expanded": "Traffic Redistribution Systems including exploit delivery or/and web monetization channels"
} }
] ]
} }