Hey Terry,
Thanks again for your proposals! I just wanted to let you know that we’re planning on discussing both at the Face to Face next week. We’ll bring back the results of those discussions and
any questions/comments to yourself and the rest of the community.
Regards,
Ivan
From:
<cti-cybox@lists.oasis-open.org> on behalf of Terry MacDonald <terry.macdonald@cosive.com>
Date: Thursday, January 5, 2017 at 1:51 AM
To: OASIS CTI TC CybOX SC list <cti-cybox@lists.oasis-open.org>, "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>, "cti-users@lists.oasis-open.org" <cti-users@lists.oasis-open.org>
Subject: [cti-cybox] STIX 2.1 Cyber Observable Proposal - Credential Dump Object
Hi All,
In the spirit of gift giving at this time of year, I have yet another proposal to offer the grou pfor discussion at the upcoming F2F...
2.7.Credential Dump Object
Type Name:
credential-dump
The Credential Dump Object represents credential dump containing username and password information that attackers have gained access to and dumped somewhere
on the web in public or traded for money. It is primarily to enable the sharing of credential dump information to allow the remediation of affected users.
If you wish to comment, please do so as a reply to this email, or leave a comment on the Google Doc here: https://docs.google.com/document/d/1u9z0XB6A-0q5CZnC9rx0rGfRJpP5u6jS1sio6w1OrJ0/edit?usp=sharing
PDF version attached for those who prefer those.....
Cheers
Terry MacDonald | Chief Product Officer
