forked from MISP/misp-galaxy
-
Notifications
You must be signed in to change notification settings - Fork 0
/
intended-effect.json
101 lines (101 loc) · 3.49 KB
/
intended-effect.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
{
"values": [
{
"value": "Advantage",
"description": "The intended effect of the incident was for the attacker to obtain some advantage over the target."
},
{
"value": "Advantage - Economic",
"description": "The intended effect of the incident was for the attacker to obtain some economic advantage over the target."
},
{
"value": "Advantage - Military",
"description": "The intended effect of the incident was for the attacker to obtain some military advantage over the target."
},
{
"value": "Advantage - Political",
"description": "The intended effect of the incident was for the attacker to obtain some political advantage over the target."
},
{
"value": "Theft",
"description": "The intended effect of the incident was to perpetrate a non-specific theft."
},
{
"value": "Theft - Intellectual Property",
"description": "The intended effect of the incident was to perpetrate a theft of intellectual property."
},
{
"value": "Theft - Credential Theft",
"description": "The intended effect of the incident was to perpetrate a theft of credentials."
},
{
"value": "Theft - Identity Theft",
"description": "The intended effect of the incident was to perpetrate a theft of the target’s identity."
},
{
"value": "Theft - Theft of Proprietary Information",
"description": "The intended effect of the incident was to perpetrate a theft of proprietary information."
},
{
"value": "Account Takeover",
"description": "The intended effect of the incident was for the attacker to obtain control over an account (financial, etc)."
},
{
"value": "Brand Damage",
"description": "The intended effect of the incident was for the attacker to cause some brand damage on the target."
},
{
"value": "Competitive Advantage",
"description": "The intended effect of the incident was for the attacker to obtain some non-specific competitive advantage over the target."
},
{
"value": "Degradation of Service",
"description": "The intended effect of the incident was reducing the level of services provided by the target."
},
{
"value": "Denial and Deception",
"description": ""
},
{
"value": "Destruction",
"description": "The intended effect of the incident was to cause the destruction of a software or hardware system."
},
{
"value": "Disruption"
},
{
"value": "Embarrassment",
"description": "The intended effect of the incident was to expose a socially unacceptable action by the target."
},
{
"value": "Exposure"
},
{
"value": "Extortion",
"description": "The intended effect of the incident was force the payment of some sort to prevent the attacker from taking some action."
},
{
"value": "Fraud"
},
{
"value": "Harassment",
"description": "The intended effect of the incident was to pressure or intimidate the target."
},
{
"value": "ICS Control"
},
{
"value": "Traffic Diversion"
},
{
"value": "Unauthorized Access"
}
],
"version" : 1,
"description": "The IntendedEffectVocab is the default STIX vocabulary for expressing the intended effect of a threat actor",
"source": "STIX 1.0",
"author": "STIX",
"uuid": "b6975c96-296a-48cf-9006-034ed102bc85",
"stix": "1.2.1",
"type": "threat-actor-intended-effect-vocabulary"
}