Giters
mitre-attack
/
car
Cyber Analytics Repository
Geek Repo:
Geek Repo
Github PK Tool:
Github PK Tool
Stargazers:
877
Watchers:
63
Issues:
55
Forks:
297
mitre-attack/car Issues
fate 500
Updated
17 days ago
Fixing Analytics that do not have the required fields
Updated
2 months ago
Improve ATT&CK Coverage
Updated
3 months ago
Detect Access Token Manipulation (Token Impersonation/Theft)
Updated
6 months ago
Map Analytics to Existing Open Datasets for True Positives
Updated
7 months ago
Addition to CAR-2021-05-004: BITS Job Persistence
Updated
8 months ago
Can I contribute a script to generate a more precise Cyber Analytic Comparison?
Updated
10 months ago
lee
Closed
a year ago
CAR-2021-02-12: Common Windows Process Masquerading
Closed
3 years ago
Comments count
4
Add HTTP Data Model Markdown
Closed
2 years ago
Comments count
5
T1547.002 - Registry Edit to Register a New LSA Authentication Package DLL
Updated
2 years ago
incompatible charset when opening yaml file
Closed
2 years ago
Look at Jupyter Notebooks for Visualizations
Closed
2 years ago
create script to generate data model object from yaml
Closed
2 years ago
Comments count
2
Add Navigator Layer w/ Analytics Links
Closed
2 years ago
Create Analytic Template
Updated
2 years ago
Rework Analytic by Technique Table
Closed
2 years ago
Create Top-level Page for BZAR
Updated
2 years ago
Create Analytic Checklist
Closed
2 years ago
CAR-2020-11-001
Closed
2 years ago
Comments count
2
CAR Analytic Submission - T1574.001 - Creation of SafeDllSearchMode
Closed
2 years ago
Comments count
3
Add Splunk Security Content
Closed
3 years ago
Tag Analytics w/ MITRE D3fend
Closed
3 years ago
Comments count
1
mobile
Closed
3 years ago
[Bug] Links between analytics are broken
Closed
3 years ago
Comments count
1
List Analytics by Newest
Closed
3 years ago
Comments count
1
Create Data Model YAML -> MD Script
Closed
3 years ago
Comments count
1
Process Tree with Web Shell Characteristics
Closed
3 years ago
Comments count
3
CAR-2021-01-15: GetSystem in Meterpreter & Cobalt Strike & Empire & PoshC2 Beacon
Closed
3 years ago
Comments count
2
File actions: timestomp is really just a subset of modify
Closed
3 years ago
Comments count
1
Small question for adding Implementations in Analytics
Closed
3 years ago
Comments count
1
Add Search Feature
Updated
4 years ago
`signer` used twice as field name in Module data model
Closed
4 years ago
Comments count
2
Sysmon 11.0 mapping
Closed
4 years ago
Comments count
2
Expand Process data model to include environment variables
Closed
4 years ago
Comments count
5
Update ATT&CK Navigator Layer for Sub-techniques
Closed
4 years ago
Comments count
1
Develop YAML format for Sensor Coverage
Closed
4 years ago
Comments count
2
CAR-2015-07-001 Missing Coverage and Technique
Closed
4 years ago
Comments count
3
garden
Closed
5 years ago
veggie
Closed
5 years ago
Dumping Active Directory via NTDSUtil
Closed
5 years ago
Comments count
4
Credential Dumping via Task Manager
Closed
5 years ago
Comments count
3
Credential Dumping via Sysinternals ProcDump
Closed
5 years ago
Comments count
3
Data Model : API : New
Closed
5 years ago
Comments count
1
Access Permission Modification
Closed
5 years ago
Comments count
6
Review and correct ATT&CK technique names and tactics
Closed
5 years ago
Comments count
2
Credential dumping via Mimikatz
Closed
5 years ago
Comments count
2
Squiblydoo
Closed
5 years ago
Comments count
1
Regsvr32.exe
Closed
5 years ago
Comments count
2
Process Working Directory
Closed
5 years ago
Comments count
2
Previous
Next