Update README.md

README.md

@@ -1,16 +1,24 @@
-## Hi there 👋
+## Introduction
-
 <!--
-**ceios/ceios** is a ✨ _special_ ✨ repository because its `README.md` (this file) appears on your GitHub profile.
+This repository contains a database of cyber-enabled influence operations (CIOs). We propose a unified model to describe and visualise these CIOs. Our model combines the MITRE ATT&CK and DISARM frameworks, which denote cyberattack and influence components, respectively. The MITRE AttackFlow Builder application is modified to include DISARM framework objects and enable CIO modelling with the unified framework.
-
+-->
-Here are some ideas to get you started:
+
-
+## Cyber-Enabled Influence Operation Database
-- 🔭 I’m currently working on ...
+<!--
-- 🌱 I’m currently learning ...
+CIO Analysis: Background, Documentation, and Modelling of Cyber and Disinformation Components.
-- 👯 I’m looking to collaborate on ...
+
-- 🤔 I’m looking for help with ...
+Each documented CIO has associated with it:
-- 💬 Ask me about ...
+
-- 📫 How to reach me: ...
+-  A document which contains the following:
-- 😄 Pronouns: ...
+-  A brief summary of the operation
-- ⚡ Fun fact: ...
+-  Resources for the information on the operation
+-  Necessary contextual information and timeline of the operation. This includes identifying where tactics, techniques, and procedures are used.
+-  The operation textually modelled using the MITRE ATT&CK Framework and DISARM Framework.
+-  An Attack Flow '.afb' file. Here the operation is modelled using the Attack Flow Builder
+-  The resources for the data, captured in the state found when resesarching the operation.
+-->
+
+## Modified AttackFlow Builder Application: Disarm-AttackFlow Builder
+<!--
+The modified application integrates the DISARM framework's tactics and techniques into the AttackFlow Builder. This allows the user to easily model using the unified framework, and export the models in STIX format.
 -->