car
car copied to clipboard
mitre-attack
Cyber Analytics Repository
## T1547.002 - Registry Edit to Register a New LSA Authentication Package DLL Flags the modification of the "Authentication Packages" value "HKLM\SYSTEM\CurrentControlSet\Control\Lsa" Key. Attackers may append malicious DLL names (without...
I noticed there was a 404 error when trying to view https://car.mitre.org/data_model/http so I created it based off of the car/data_model/http.yml file There are also minor formatting fixes to line...
Bumps [pillow](https://github.com/python-pillow/Pillow) from 9.3.0 to 10.2.0. Release notes Sourced from pillow's releases. 10.2.0 https://pillow.readthedocs.io/en/stable/releasenotes/10.2.0.html Changes Add keep_rgb option when saving JPEG to prevent conversion of RGB colorspace #7553 [@bgilbert] Trim...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [jinja2](https://github.com/pallets/jinja) from 2.11.3 to 3.1.3. Release notes Sourced from jinja2's releases. 3.1.3 This is a fix release for the 3.1.x feature branch. Fix for GHSA-h5c8-rqwp-cp95. You are affected if...
From the README: This script queries four open-source detection repositories to calculate known and likely detectable MITRE ATT&CK techniques. It's inspired by and attempts to improve CAR's [coverage comparison website](https://car.mitre.org/coverage/)....
Bumps [requests](https://github.com/psf/requests) from 2.25.1 to 2.31.0. Release notes Sourced from requests's releases. v2.31.0 2.31.0 (2023-05-22) Security Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential forwarding of Proxy-Authorization...
The purpose of this issue is not to create a new CAR analytic, but add to an existing one (for which I do not see a template). Specifically, I propose...
I started to use https://car.mitre.org/coverage/ for a project, but I noticed the coverage chart has not been recently updated, and that results were presented without regard to operating system. In...
[CAR-2015-07-001](https://github.com/mitre-attack/car/blob/master/analytics/CAR-2015-07-001.yaml) and [CAR-2020-04-001](https://github.com/mitre-attack/car/blob/master/analytics/CAR-2020-04-001.yaml) do not have the field `coverage` even though [CONTRIBUTING.md](https://github.com/mitre-attack/car/blob/master/CONTRIBUTING.md) specified those fields as mandatory. [CAR-2020-04-001](https://github.com/mitre-attack/car/blob/master/analytics/CAR-2020-04-001.yaml) has been deprecated and should, in my opinion, be scheduled for deletion....
Bumps [pillow](https://github.com/python-pillow/Pillow) from 9.3.0 to 10.3.0. Release notes Sourced from pillow's releases. 10.3.0 https://pillow.readthedocs.io/en/stable/releasenotes/10.3.0.html Changes CVE-2024-28219: Use strncpy to avoid buffer overflow #7928 [@hugovk] Use functools.lru_cache for hopper() #7912 [@hugovk]...