valitydev/atomic-threat-coverage
14
0
Fork 0
mirror of https://github.com/valitydev/atomic-threat-coverage.git synced 2024-11-06 17:45:23 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
d2262f0730
atomic-threat-coverage/Atomic_Threat_Coverage/Response_Actions
History
yugoslavskiy 65509974dc visualisations release
2019-04-03 11:57:15 +02:00
..
RA_0001_identification_get_original_email.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0002_identification_extract_observables_from_email.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0003_identification_make_sure_email_is_a_phising.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0004_identification_analyse_obtained_indicators_of_compromise.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0005_identification_find_all_phising_attack_victims.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0006_containment_block_domain_on_email.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0007_containment_block_ip_on_border_firewall.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0008_containment_block_domain_on_dns.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0009_containment_block_url_on_proxy.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0010_eradication_delete_malicious_emails.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0011_eradication_revoke_compromised_credentials.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0012_eradication_report_phishing_attack_to_external_companies.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0013_lessons_learned_develop_incident_report.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0014_lessons_learned_conduct_lessons_learned_exercise.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0015_identification_analyse_domain_name.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0016_identification_analyse_filehash.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0017_identification_analyse_ip.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0018_identification_analyse_macos_macho.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0019_identification_analyse_ms_office_file.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0020_identification_analyse_pdf.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0021_identification_analyse_unix_elf.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0022_identification_analyse_uri.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0023_identification_analyse_windows_pe.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0024_identification_find_files_exetuced.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0025_identification_find_services_exetuced.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0026_identification_find_emails_opened.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0027_identification_find_registry_keys_modified.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0028_containment_block_threat_on_network_level.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0029_recovery_reinstall_host_from_golden_image.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0030_identification_find_all_hosts_communicated_with_domain.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0031_identification_find_all_hosts_communicated_with_ip.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0032_identification_find_all_hosts_communicated_with_url.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0033_identification_find_files_created.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0034_identification_find_all_victims_in_security_alerts.md Makefile updated, yamls2csv changed to work with customer entities, md files and analytics regenerated 2019-03-27 02:22:01 +01:00
RA_0035_containment_block_domain_on_ips.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0036_containment_block_domain_on_ngfw.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0037_containment_block_ip_on_ips.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0038_containment_block_ip_on_ngfw.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0039_containment_block_url_on_ngfw.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0040_identification_put_on_monitoring_compromised_accounts.md visualisations release 2019-04-03 11:57:15 +02:00
RA_0041_eradication_report_incident_to_external_companies.md visualisations release 2019-04-03 11:57:15 +02:00