Added EEAS framework objects and STIX generator

Added framework objects: - Added technique T0066 "Degrade adversary" to TA02 - Added technique T0067 "Plan to discredit credible sources" to TA02 - Added technique T0068 "respond to breaking news event" to TA02 - Added technique T0069 "respond to active crisis" to TA02 - Added technique T0070 "Analyze existing communities" to TA02 - Added technique T0071 "Find echo chambers" to TA13 - Added technique T0072 "Segment audiences" to TA13 Added STIX generator from repo DISARM-stix2, and added code to generate github files, databases, and STIX from the same Jupyter notebook.
2025-05-11 03:05:59 -04:00 · 2022-02-20 15:40:34 -05:00 · 2022-02-20 15:40:34 -05:00 · c11e9d06ad
commit c11e9d06ad
parent 2117dcf09b
46 changed files with 2428 additions and 17533 deletions
--- a/CODE/DISARM-STIX2/main.py
+++ b/CODE/DISARM-STIX2/main.py
@ -0,0 +1,49 @@
+# A STIX bundle generator for the DISARM Framework.
+#
+# Author: Roger Johnston, Twitter: @VV_X_7
+# License: GPL-3
+
+import pandas as pd
+import openpyxl
+from stix2 import (Bundle, AttackPattern, ThreatActor, IntrusionSet, Relationship, CustomObject, properties,
+                   Malware, Tool, Campaign, Identity, MarkingDefinition, ExternalReference, StatementMarking,
+                   GranularMarking, Location, MemoryStore, Filter)
+from stix2.properties import (ReferenceProperty, ListProperty, StringProperty, TimestampProperty, BooleanProperty, IntegerProperty)
+
+import helpers
+from objects import tactic, technique, matrix, bundle
+from helpers import xlsx, file
+
+
+def generate_disarm_stix():
+    """Generates a DISARM STIX bundle.
+
+    Returns:
+
+    """
+    data = helpers.xlsx.load_excel_data("../DISARM_MASTER_DATA/DISARM_FRAMEWORKS_MASTER.xlsx")
+
+    tactics = tactic.make_disarm_tactics(data)
+    techniques = technique.make_disarm_techniques(data)
+    navigator_matrix = matrix.make_disarm_matrix(tactics)
+
+    stix_objects = []
+    stix_objects.append(tactics)
+    stix_objects.append(techniques)
+    stix_objects.append(navigator_matrix)
+
+    stix_objects = [item for sublist in stix_objects for item in sublist]
+
+    # for i in stix_objects:
+    #     print(i)
+
+    disarm_bundle = bundle.make_stix_bundle(stix_objects)
+
+    helpers.file.clean_output_dir()
+    helpers.file.write_files(stix_objects)
+    helpers.file.write_bundle(disarm_bundle, "DISARM")
+
+
+
+if __name__ == "__main__":
+    generate_disarm_stix()