locsec/ceios
1
Форкнуть 0
зеркало из https://github.com/ceios/ceios.git synced 2025-10-28 19:54:14 +02:00
Код Задачи Пакеты Проекты Релизы Вики Активность
ceios/database
История
Jim Morris 3cb73195d6
Add files via upload
2025-06-06 14:15:52 +09:30
..
2016 Attacks Against Ukraine Financial and Treasury Services
Add files via upload
2024-09-17 12:36:01 +09:30
Al-Toufan 2022 Defacement of Bahraini and Israeli websites
Add files via upload
2024-09-17 12:54:26 +09:30
Anonymous Sudan 2023 DDoS Campaign Israel-Hamas Conflict
added APT 42, CyberAv3ngers and Anonymous Sudan models
2024-10-24 14:30:36 +10:30
APT 42 2024 Iran Influence In US Election
added APT 42, CyberAv3ngers and Anonymous Sudan models
2024-10-24 14:30:36 +10:30
APT 2017 French Election Campaign
Delete database/APT 2017 French Election Campaign/Resources/placeholder.txt
2024-09-17 06:20:28 +09:30
CyberAv3ngers 2023 Iranian Influence in Israel-Hamas Conflict
added APT 42, CyberAv3ngers and Anonymous Sudan models
2024-10-24 14:30:36 +10:30
GRU 2015 BlackEnergy Ukrainian Electricity Grid Disruption
Add files via upload
2024-09-17 13:56:30 +09:30
GRU 2016 Industroyer Malware on Ukrainian Entities/Resources
Create placeholder.txt
2024-09-17 06:37:05 +09:30
GRU 2017 NotPetya Disruption to Ukrainian Entities
Delete database/GRU 2017 NotPetya Disruption to Ukrainian Entities/Resources/placeholder.txt
2024-09-17 14:44:36 +09:30
GRU 2018 Winter Olympic Games Campaign
Add files via upload
2024-09-17 16:40:37 +09:30
GRU 2019 Various Georgian Entities Defaced
Add files via upload
2024-09-17 18:03:01 +09:30
GRU 2022 DDoS Campaign
Add files via upload
2024-09-17 06:30:49 +09:30
GRU & IRA 2016 US Election Campaign
Add files via upload
2025-04-01 16:14:32 +10:30
IRA 2016 FaceMusic Malware
Add files via upload
2025-06-06 14:15:52 +09:30
UNC1151 2018 Campaign
Add files via upload
2025-03-18 13:24:42 +10:30
UNC1151 2019 Campaign
add folders
2024-09-16 15:58:15 +09:30
.DS_Store
added APT 42, CyberAv3ngers and Anonymous Sudan models
2024-10-24 14:30:36 +10:30
Documentation Template.docx
add folders
2024-09-16 15:58:15 +09:30
README.md
Update README.md
2024-09-17 09:06:00 +09:30
Tactics and Techniques.afb
add folders
2024-09-16 15:58:15 +09:30

README.md

Cyber-Influence-Operation-Analysis

Cyber-Influence Operation Analysis: Background, Documentation, and Modelling of Cyber and Disinformation Components.

Each documented cyber-influence operation has associated with it:

  1. A document which contains the following:
    • A brief summary of the operation
    • Resources for the information on the operation
    • Necessary contextual information and timeline of the operation. This includes identifying where tactics, techniques, and procedures are used.
    • The operation textually modelled using the MITRE ATT&CK Framework and DISARM Framework.
  2. An Attack Flow '.afb' file. Here the operation is modelled using the Attack Flow Builder
  3. The resources for the data, captured in the state found when resesarching the operation.

The strongest examples of our database are:

  1. APT 2017 French election campaign
  2. GRU 2016 US election campaign
  3. IRA 2016 FaceMusic Malware campaign

See Mitre's Original Attack Flow builder here: https://center-for-threat-informed-defense.github.io/attack-flow/ui/