Scribd
Upload
4 views2 pages

Assignment Json Code

The document outlines a threat actor named Paige Thompson who targeted Capital One using a Server-Side Request Forgery (SSRF) attack, exploiting a misconfigured Web Application Firewall (WAF). It details the relationships between the threat actor, the attack pattern, the vulnerability, and the infrastructure involved, specifically an AWS environment. The information is structured in a bundle format, including various entities and their interactions related to the 2019 data breach.

Uploaded by

pallavgeriya
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
4 views2 pages

Assignment Json Code

The document outlines a threat actor named Paige Thompson who targeted Capital One using a Server-Side Request Forgery (SSRF) attack, exploiting a misconfigured Web Application Firewall (WAF). It details the relationships between the threat actor, the attack pattern, the vulnerability, and the infrastructure involved, specifically an AWS environment. The information is structured in a bundle format, including various entities and their interactions related to the 2019 data breach.

Uploaded by

pallavgeriya
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 2

{

"type": "bundle",
"id": "bundle--BUN001",
"spec_version": "2.1",
"objects": [
{
"type": "threat-actor",
"id": "threat-actor-ACT01",
"name": "Paige Thompson",
"created": "2016-04-06T20:03:48.000Z",
"modified": "2016-04-06T20:03:48.000Z"
},
{
"type": "attack-pattern",
"id": "attack-pattern--AP001",
"name": "Server-Side Request Forgery (SSRF)",
"created": "2016-04-06T20:03:48.000Z",
"modified": "2016-04-06T20:03:48.000Z"
},
{
"type": "vulnerability",
"id": "vulnerability--V001",
"name": "Misconfigured WAF",
"created": "2016-04-06T20:03:48.000Z",
"modified": "2016-04-06T20:03:48.000Z"
},
{
"type": "identity",
"id": "identity--ID001",
"name": "Capital One",
"description": "Financial institution targeted in the 2019 data breach.",
"created": "2016-04-06T20:03:48.000Z",
"modified": "2016-04-06T20:03:48.000Z"
},
{
"type": "infrastructure",
"id": "infrastructure--INF--001",
"name": "AWS Environment",
"created": "2016-04-06T20:03:48.000Z",
"modified": "2016-04-06T20:03:48.000Z"
},
{
"type": "relationship",
"id": "relationship--66778899-0011-aabb-ccdd-eeff11223344",
"created": "2025-01-06T10:00:00Z",
"modified": "2016-04-06T20:03:48.000Z",
"relationship_type": "targets",
"source_ref": "threat-actor-ACT01",
"target_ref": "identity--ID001"
},
{
"type": "relationship",
"id": "relationship--77889900-1122-aabb-ccdd-eeff22334455",
"created": "2025-01-06T10:00:00Z",
"modified": "2016-04-06T20:03:48.000Z",
"relationship_type": "uses",
"source_ref": "threat-actor-ACT01",
"target_ref": "attack-pattern--AP001"
},
{
"type": "relationship",
"id": "relationship--88990011-2233-aabb-ccdd-eeff33445566",
"created": "2025-01-06T10:00:00Z",
"modified": "2016-04-06T20:03:48.000Z",
"relationship_type": "exploits",
"source_ref": "attack-pattern--AP001",
"target_ref": "vulnerability--V001"
},
{
"type": "relationship",
"id": "relationship--99001122-3344-aabb-ccdd-eeff44556677",
"created": "2025-01-06T10:00:00Z",
"modified": "2016-04-06T20:03:48.000Z",
"relationship_type": "located-at",
"source_ref": "infrastructure--INF--001",
"target_ref": "identity--ID001"
}
]
}

You might also like