https://github.com/qeeqbox/threat-actors

A threat actor is any person, group, or entity that could harm to the cyber realm
https://github.com/qeeqbox/threat-actors

infosecsimplified qeeqbox threat-actors

Last synced: 2 days ago
JSON representation

A threat actor is any person, group, or entity that could harm to the cyber realm

• Host: GitHub
• URL: https://github.com/qeeqbox/threat-actors
• Owner: qeeqbox
• License: agpl-3.0
• Created: 2023-03-29T20:08:08.000Z (over 1 year ago)
• Default Branch: main
• Last Pushed: 2024-01-29T00:53:51.000Z (10 months ago)
• Last Synced: 2024-05-01T11:27:25.177Z (7 months ago)
• Topics: infosecsimplified, qeeqbox, threat-actors
• Homepage:
• Size: 39.1 KB
• Stars: 2
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE-CC-BY-NC-ND

Awesome Lists containing this project

README

        
### Threat Actors Types

*   #### Nation-State\\Government-Sponsored

    *   Types

        *    Espionage

            *   This type is interested in stealing state\\government secrets from businesses and government-run organizations

        *   Warfare 

            *   This type is interested in sabotaging military

    *   Well founded

    *   Geopolitical

    *   Common TTPs: spear phishing, direct compromise, custom malware and exploits

*   #### Cybercriminals

    *   This type is interested in stealing personal info from data-rich businesses and organizations for financial gain

    *   Common TTPs: ransomware and phishing

    *   Profit

*   #### Terrorist Groups

    *   This type is interested in sabotaging critical infrastructure

    *   Sometimes include hacktivists

    *   Ideological Violence

*   #### Thrill-Seekers

    *   Stratification

*   #### Insider Threats

    *   Types

        *   Malicious Insiders

            *   Individuals who agreed to help threat actors for financial gain

        *   Incautious Insiders

            *   Individuals who made an incorrect mistake that led to a cyberattack

    *   Common TTPs: data exfiltration or privilege misuse

*   #### Hacktivists

    

    *   This type is interested in advancing a specific political cause

    *   Not interested in money

    *   Ideological

    *   Common TTPs: DDoS attacks, website defacements and doxing

*   #### Script Kiddies

    

    *   This type uses other threat actors' tools to attack networks or systems

    *   Low technical skills

* * *

### Hats

*   White hat

    *   Also known as ethical hackers, individuals who use their technical skills to protect networks and systems from threat actors

*   Grey hat

    *   Individual who is in between white and black hat

    *   Issues cyber-attacks without the target's consent

    *   Sometimes they disclose info about vulnerabilities before being patched

*   Black hat

    *   Also known as cybercriminals, individuals who use their technical skills for malicious intention

*   Blue hat

    *   Individuals who use their technical skills to lunch cyber attacks without causing damage (Or, seek revenge)

*   Green hat

    *   Similar script kiddies, individuals who lack technical skills and want to cause harm

    *   They want to learn, whereas script kiddies are not

*   Red hat

    *   Individuals who use their technical skills to attack threat actors

    *   They use unethical ways

* * *

## id

5c5975ab-eb59-40e1-94ef-7fdec524f651

## References

- https://en.wikipedia.org/wiki/Threat_actor