Commit Graph

947 Commits (5925cafb1a1006c42d548baa6ba1b8aea667a721)

Author SHA1 Message Date
Alexandre Dulaunoy a286c23d98 Typo fixed 2016-12-18 13:04:52 +01:00
Alexandre Dulaunoy f79edc8c1b TTI added 2016-12-18 13:03:42 +01:00
Alexandre Dulaunoy 51379e011a targeted-threat-index taxonomy added
The Targeted Threat Index is a metric for assigning an overall threat
ranking score to email messages that deliver malware to a victim’s
computer. The TTI metric was first introduced at SecTor 2013 by Seth
Hardy as part of the talk “RATastrophe: Monitoring a Malware Menagerie”
along with Katie Kleemola and Greg Wiseman.

ref: https://citizenlab.org/2013/10/targeted-threat-index/
2016-12-18 12:55:55 +01:00
Alexandre Dulaunoy b8e1584711 Galaxy removed 2016-12-08 17:00:53 +01:00
Alexandre Dulaunoy e9ae20f312 MISP galaxy removed as included by default via galaxy
https://github.com/MISP/MISP/issues/1731#issuecomment-265766291
2016-12-08 16:59:23 +01:00
Alexandre Dulaunoy 1d957da224 Reference added to the diamond model taxonomy 2016-12-07 06:58:39 +01:00
Alexandre Dulaunoy fe78b3e4a3 Merge branch 'master' of github.com:MISP/misp-taxonomies 2016-12-07 06:57:49 +01:00
Alexandre Dulaunoy a20227462b Merge pull request #52 from pstirparo/master
adding diamond model taxonomy
2016-12-07 06:57:34 +01:00
Pasquale Stirparo 3893213b1d adding diamond model taxonomy 2016-12-07 00:51:09 +01:00
Alexandre Dulaunoy aa6f01d192 Merge pull request #50 from cvandeplas/master
Updated misp-galaxy taxonomy
2016-12-06 15:46:51 +01:00
Alexandre Dulaunoy 19cb21b835 Merge pull request #51 from flmsc/master
Fixed some broken links in README.md
2016-12-06 15:44:50 +01:00
Florian Schuetz 40626bbab3 Fixed some broken links in README.md 2016-12-06 15:30:18 +01:00
Alexandre Dulaunoy cc4ee55fa5 Version for galaxy updated 2016-12-01 07:23:41 +01:00
Christophe Vandeplas 0cabf07e0d Updated misp-galaxy taxonomy 2016-11-28 13:52:48 +01:00
Alexandre Dulaunoy 8e78dab519 Merge pull request #49 from cvandeplas/master
Updated misp-galaxy taxonomy
2016-11-16 13:40:23 +01:00
Christophe Vandeplas 6743d4a28c Updated misp-galaxy taxonomy 2016-11-16 10:38:04 +01:00
Alexandre Dulaunoy aed6de88e5 Merge pull request #47 from cvandeplas/master
Updated misp-galaxy taxonomy
2016-11-10 12:15:56 +01:00
Christophe Vandeplas 6759fedbe4 Updated misp-galaxy taxonomy 2016-11-10 11:23:57 +01:00
Alexandre Dulaunoy 0ce745a12f Version updated 2016-10-31 20:14:39 +01:00
Alexandre Dulaunoy cfc094f7a0 Updated to the latest version of the MISP galaxy 2016-10-31 20:10:08 +01:00
Alexandre Dulaunoy 0bf4e2b566 Fixing the galaxy with the new clusters name 2016-10-31 20:09:16 +01:00
Alexandre Dulaunoy 9dbfac0722 Merge pull request #46 from Delta-Sierra/master
update mapping
2016-10-31 11:10:53 +01:00
Déborah Servili 323299ed73 update mapping 2016-10-31 10:55:35 +01:00
Alexandre Dulaunoy d3a85f3f6c Match taxonomy namespace 2016-10-29 11:46:00 +02:00
Alexandre Dulaunoy bed7f3004a stealth_malware to match taxonomy namespace 2016-10-29 11:45:37 +02:00
Alexandre Dulaunoy c4d4e75548 stealth-malware namespace added 2016-10-29 10:48:12 +02:00
Alexandre Dulaunoy 5ef89c4c70 Typo fixed 2016-10-29 10:45:02 +02:00
Alexandre Dulaunoy bd16ea1916 Merge pull request #44 from RichieB2B/ncsc-nl/stealth-malware
Add Stealth Malware Taxonomy as defined by Joanna Rutkowska
2016-10-28 11:40:55 +02:00
Richard van den Berg a2f7a9bc9f Add Stealth Malware Taxonomy as defined by Joanna Rutkowska 2016-10-28 11:07:24 +02:00
Alexandre Dulaunoy 16a41daa91 Merge pull request #43 from cvandeplas/master
Galaxy elements as taxonomies
2016-10-27 15:48:32 +02:00
Alexandre Dulaunoy b62d5e577d MISP mapping changed key as object to add optional fields like colour,
description.
2016-10-27 10:04:33 +02:00
Alexandre Dulaunoy e4b88466ba Merge branch 'master' of github.com:MISP/misp-taxonomies 2016-10-27 08:19:05 +02:00
Alexandre Dulaunoy d2b66e2389 New mapping taxonomy library added
A simple JSON format where a vernacular/common name describes
all the potential associated machine tags.

The format is a simple JSON object with a key for the common name
which references a list of potential associated machine tags.

The usage (in a first step) in MISP will be the following:

- The replacement in the index UI of the corresponding list of machine
  tags by the vernacular/common name.

- The ability to add automatically associated machine tags when tagging with the
  vernacular/common name.

Even if the machine tags is not enabled in MISP, the tag will be added.
2016-10-27 07:56:02 +02:00
Christophe Vandeplas 63a1055fc9 converted galaxy to taxonomy 2016-10-26 16:45:29 +02:00
Christophe Vandeplas 1810d6f87a script to convert galaxy to taxonomy 2016-10-26 16:38:42 +02:00
Alexandre Dulaunoy b74b1f0d4e Merge pull request #41 from cvandeplas/master
dynamically build taxonomies list
2016-10-24 18:21:35 +02:00
Christophe Vandeplas f7a0f46868 dynamically build taxonomies list
solves the problem to update the list constantly
2016-10-24 17:01:32 +02:00
Raphaël Vinot 7f63453c0f Explicitely set values to null if there are none 2016-10-14 12:01:56 +02:00
Raphaël Vinot 0a6549d886 Fix Typos in TLP & PAP 2016-10-12 16:30:56 +02:00
Alexandre Dulaunoy 2148de947b Version of MISP taxonomy updated 2016-10-09 15:47:28 +02:00
Alexandre Dulaunoy d5dd9c2b5d misp:should-not-sync added (to be used with feeds or other local event
which are not recommended to be synced)
2016-10-09 15:46:12 +02:00
Alexandre Dulaunoy c22a4c86ff Manifest fixed 2016-10-09 12:59:03 +02:00
Alexandre Dulaunoy 30fdffd899 Merge branch 'master' of github.com:MISP/misp-taxonomies
Conflicts:
	osint/machinetag.json
2016-10-09 12:57:43 +02:00
Alexandre Dulaunoy a71a784bd0 Filter or block list added to the OSINT taxonomy 2016-10-09 12:54:13 +02:00
Alexandre Dulaunoy 8e9a0f2688 Merge pull request #39 from cvandeplas/master
added OSINT source-type expansion
2016-10-07 10:56:48 +02:00
Christophe Vandeplas 365580b5f9 added OSINT source-type expansion 2016-10-07 10:04:02 +02:00
Raphaël Vinot 1868fe7b37 Fix inconsistencies between MANIFEST, directory names and taxonomies 2016-10-05 14:42:41 +02:00
Alexandre Dulaunoy 84a3f89cf5 Merge pull request #38 from michael-hamm/rt_event_status
Status of events used in Request Tracker.
2016-09-29 14:26:22 +02:00
Michael Hamm 3122ff269d Status of events used in Request Tracker. 2016-09-29 11:39:02 +02:00
Alexandre Dulaunoy e97c939a07 Merge pull request #37 from bradh/patch-1
Typo fix
2016-09-29 10:08:00 +02:00