From be229fe0b19037a1a37ed10169ede914bf9c08e7 Mon Sep 17 00:00:00 2001
From: ceios <jim.a.morris01@gmail.com>
Date: Tue, 17 Sep 2024 09:06:00 +0930
Subject: [PATCH] Update README.md

---
 database/README.md | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/database/README.md b/database/README.md
index 7807f36..d171f37 100644
--- a/database/README.md
+++ b/database/README.md
@@ -10,6 +10,10 @@ Each documented cyber-influence operation has associated with it:
   2. An Attack Flow '.afb' file. Here the operation is modelled using the Attack Flow Builder
   3. The resources for the data, captured in the state found when resesarching the operation.
 
-See the modified Disarm-Attack Flow Builder here: https://github.com/Uni-JimMorris/disarm-attack-flow
+## The strongest examples of our database are:
+  1. APT 2017 French election campaign
+  2. GRU 2016 US election campaign
+  3. IRA 2016 FaceMusic Malware campaign
+
 
 See Mitre's Original Attack Flow builder here: https://center-for-threat-informed-defense.github.io/attack-flow/ui/