Alexandre Dulaunoy issues

Results 396 issues of


                                            Alexandre Dulaunoy

DeTTACT - new galaxy

https://github.com/rabobank-cdc/DeTTACT/blob/master/sample-data/techniques-administration-endpoints.yaml

help wanted

topic: att&ck

new galaxy

S: stale

Review Iranian actors from the report - are we missing some in the MISP galaxy?

https://www.research-collection.ethz.ch/bitstream/id/5647001/20190507_MB_HS_IRNV1_rev.pdf?sequence=1

T: enhancement

S: stale

Origin of name per reference - threat-actor synonyms

T: enhancement

S: stale

Solving the issue of threat actor, activity group, campaign and operation

# threat-actor-classification meta field There is an old and persistence issue in attribution world and basically no-one really agrees on this. So we decided to start a specific metadata `threat-actor-classification`...

T: enhancement

S: stale

Verify threat-actor and malware reference from https://github.com/fugakango/MalwaRepo

T: enhancement

S: stale

Multiprocessing per queue is not supported

Multiprocessing per queue is not supported. If you have to process a huge dataset and only a single process is handling a queue, you are time bound with DNS resolution...

feature

architecture

performance

MISP warning lists?

Cool idea. It might be interesting to build a [MISP warning list](https://github.com/MISP/misp-warninglists) out of this list. To quickly spot in MISP events related with such network activity.

Add a search to the feed cache search (/feeds/searchCaches)

T: enhancement

S: needs change in MISP

Feed generator - if result of the index is empty, there is no exception handler

T: enhancement

S: stale

Including the result/numbers of warning-list to lower down the quality of the contribution

feature request