threatactor

package

v0.6.1 Latest Latest Go to latest Published: Jan 15, 2020 License: Apache-2.0 Imports: 6 Imported by: 2

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/freetaxii/libstix2

Links

Open Source Insights

Documentation ¶

Overview ¶

Package threatactor implements the STIX 2.1 Threat Actor object.

The following information comes directly from the STIX 2.1 specification.

Threat Actors are actual individuals, groups, or organizations believed to be operating with malicious intent. A Threat Actor is not an Intrusion Set but may support or be affiliated with various Intrusion Sets, groups, or organizations over time.

Threat Actors leverage their resources, and possibly the resources of an Intrusion Set, to conduct attacks and run Campaigns against targets.

Threat Actors can be characterized by their motives, capabilities, goals, sophistication level, past activities, resources they have access to, and their role in the organization.

Index ¶

type ThreatActor
- func Decode(data []byte) (*ThreatActor, error)
- func New() *ThreatActor

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type ThreatActor ¶

type ThreatActor struct {
	objects.CommonObjectProperties
	properties.NameProperty
	properties.DescriptionProperty
	ThreatActorTypes []string `json:"threat_actor_types,omitempty"`
	properties.AliasesProperty
	properties.SeenProperties
	properties.RolesProperty
	properties.GoalsProperty
	Sophistication string `json:"sophistication,omitempty"`
	properties.ResourceLevelProperty
	properties.MotivationProperties
	PersonalMotivations []string `json:"personal_motivations,omitempty"`
}

ThreatActor - This type implements the STIX 2 Threat Actor SDO and defines

all of the properties and methods needed to create and work with this object. All of the methods not defined local to this type are inherited from the individual properties.

func Decode ¶ added in v0.6.1

func Decode(data []byte) (*ThreatActor, error)

Decode - This function is a simple wrapper for decoding JSON data. It will

decode a slice of bytes into an actual struct and return a pointer to that object along with any errors.

func New ¶

func New() *ThreatActor

New - This function will create a new STIX Threat Actor object and return it

as a pointer. It will also initialize the object by setting all of the basic properties.

func (*ThreatActor) AddPersonalMotivation ¶

func (o *ThreatActor) AddPersonalMotivation(s string) error

AddPersonalMotivation - This method takes in a string value representing the motivation of a threat actor from the threat-actor-motivation-ov and adds it to the personal motivations property.

func (*ThreatActor) AddTypes ¶ added in v0.6.1

func (o *ThreatActor) AddTypes(values interface{}) error

AddTypes - This method takes in a string value, a comma separated list of

string values, or a slice of string values that represents an threat actor type and adds it to the threat actor types property. The values SHOULD come from the threat-actor-type-ov open vocabulary.

func (*ThreatActor) Encode ¶ added in v0.6.1

func (o *ThreatActor) Encode() ([]byte, error)

Encode - This method is a simple wrapper for encoding an object into JSON

func (*ThreatActor) EncodeToString ¶ added in v0.6.1

func (o *ThreatActor) EncodeToString() (string, error)

EncodeToString - This method is a simple wrapper for encoding an object into

JSON

func (*ThreatActor) GetPropertyList ¶ added in v0.6.1

func (o *ThreatActor) GetPropertyList() []string

GetProperties - This method will return a list of all of the properties that

are unique to this object. This is used by the custom UnmarshalJSON for this object. It is defined here in this file to make it easy to keep in sync.

func (*ThreatActor) SetSophistication ¶

func (o *ThreatActor) SetSophistication(s string) error

SetSophistication - This method takes in a string value representing the sophistication level of a threat actor from the threat-actor-sophistication-ov and adds it to the sophistication property.

func (*ThreatActor) UnmarshalJSON ¶ added in v0.6.1

func (o *ThreatActor) UnmarshalJSON(b []byte) error

UnmarshalJSON - This method will over write the default UnmarshalJSON method

to enable custom properties that this library does not know about. It will store them as map where the value of each key is a byte arrays. This way a tool that does know how to deal with them can then further process them after this is done. This will also allow the storage of the raw JSON data.

func (*ThreatActor) Valid ¶ added in v0.6.1

func (o *ThreatActor) Valid() (bool, int, []string)

Valid - This method will verify and test all of the properties on an object

to make sure they are valid per the specification. It will return a boolean, an integer that tracks the number of problems found, and a slice of strings that contain the detailed results, whether good or bad.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL