pbom-dev/OSCAR

A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain

PythonApache-2.0

Issues

Duplicate ID T1098
#112 opened 9 months ago by Taskr
0
Typo in technique 130
#110 opened a year ago by dn-scribe
3
Reserve a prefix for "experimental" or "local definition"
#109 opened a year ago by skandragon
4
Possibly wrong type category assigned to D1171 "Implement Web Application Firewall"
#108 opened a year ago by ventos
1
Attack Stories
#86 opened 2 years ago by rubtoa
0
New technique - Proprietary data stolen & Customers compromised
#84 opened 2 years ago by 6mile
1
Update on mitigations and detections
#72 opened 2 years ago by secvladimir
0
Author "Dependency Confusion" technique
#11 opened 2 years ago by rubtoa
0
New content for Initial Access tactic techniques
#65 opened 2 years ago by secvladimir
0
New content for Reconnaissance tactic techniques
#64 opened 2 years ago by secvladimir
0
New content for Defense Evasion, Credential Access and Persistence tactics techniques
#57 opened 2 years ago by secvladimir
0
New content for Persistence tactic techniques
#62 opened 2 years ago by secvladimir
0
New content for Credential Access tactic techniques
#61 opened 2 years ago by secvladimir
0
New content for Resource Development tactic techniques
#56 opened 2 years ago by secvladimir
0
New content for Exfiltration tactic techniques
#54 opened 2 years ago by secvladimir
0
New content for Lateral Movement tactic techniques
#53 opened 2 years ago by secvladimir
0
New content for Privilege Escalation tactic techniques
#51 opened 2 years ago by secvladimir
0
New content for Collection tactic techniques
#49 opened 2 years ago by secvladimir
0
Content for Code Security realm techniques
#27 opened 2 years ago by rubtoa
1
Mitigation 1201 - Restrict egresss traffic from CICD
#14 opened 2 years ago by rubtoa
0
New technique - Compromised Token T0112
#43 opened 2 years ago by 6mile
0
New content for Execution tactic techniques
#38 opened 2 years ago by secvladimir
0
New content for Impact tactic techniques
#47 opened 2 years ago by secvladimir
0
New technique - Inadequate CI/CD workflow permissions
#42 opened 2 years ago by rubtoa
0
Fix bug - missing amount per tactic in matrix.json
#41 opened 2 years ago by rubtoa
0
Github action for generating data for website
#24 opened 2 years ago by rubtoa
1
modify "misconfiguration of security services" under defense evasion
#22 opened 2 years ago by 6mile
2
Different options or categories for Impact
#21 opened 2 years ago by vaq130
3
New reconnaissance technique for "localized deployments"
#23 opened 2 years ago by 6mile
1
template for mitigation and detection
#19 opened 2 years ago by rubtoa
1
Update contributing.md
#12 opened 2 years ago by rubtoa
1
Update CONTRIBUTE.md file
#10 opened 2 years ago by rubtoa
1
Consolidating changes to main branch
#8 opened 2 years ago by rubtoa
1
Create access token technique
#15 opened 2 years ago by rubtoa
0
Create mitigation "Verify package authenticity"
#13 opened 2 years ago by rubtoa
0
Add template yaml for techniques
#5 opened 2 years ago by rubtoa
0
Create linter/validator for content yaml files
#9 opened 2 years ago by rubtoa
0