From 6aa1be207b06dce2decd08b424f4417add953d5d Mon Sep 17 00:00:00 2001 From: pyth0n1c Date: Mon, 1 Jul 2024 08:40:12 -0700 Subject: [PATCH] added new datasets in preparation for release --- .../splunk/SVD-2024-0711_web_access_splunk_web_access.log | 3 +++ .../T1087/splunk/SVD-2024-0716_splunkd_splunkd.log | 3 +++ .../T1189/splunk/SVD-2024-0712_audittrail_audittrail.log | 3 +++ .../SVD-2024-0712_splunkd_ui_access_splunk_ui_access.log | 3 +++ .../attack_techniques/T1189/splunk/SVD-2024-0713_json_json.log | 3 +++ .../splunk/SVD-2024-0714_web_access_splunk_web_access.log | 3 +++ .../T1189/splunk/SVD-2024-0715_splunkd_splunkd_access.log | 3 +++ .../T1189/splunk/SVD-2024-0717_python_log_splunk_python.log | 3 +++ .../T1210/splunk/SVD-2024-0701_pdfgen_log_splunk_pdfgen.log | 3 +++ ...SVD-2024-0705_splunk_archiver_splunk_archiver-too_small.log | 3 +++ .../SVD-2024-0702_splunkd_crash_log_splunkd_crash_log.log | 3 +++ .../splunk/SVD-2024-0710_web_service_splunk_web_service.log | 3 +++ .../T1548/splunk/SVD-2024-0709_json_json.json | 3 +++ 13 files changed, 39 insertions(+) create mode 100644 datasets/attack_techniques/T1083/splunk/SVD-2024-0711_web_access_splunk_web_access.log create mode 100644 datasets/attack_techniques/T1087/splunk/SVD-2024-0716_splunkd_splunkd.log create mode 100644 datasets/attack_techniques/T1189/splunk/SVD-2024-0712_audittrail_audittrail.log create mode 100644 datasets/attack_techniques/T1189/splunk/SVD-2024-0712_splunkd_ui_access_splunk_ui_access.log create mode 100644 datasets/attack_techniques/T1189/splunk/SVD-2024-0713_json_json.log create mode 100644 datasets/attack_techniques/T1189/splunk/SVD-2024-0714_web_access_splunk_web_access.log create mode 100644 datasets/attack_techniques/T1189/splunk/SVD-2024-0715_splunkd_splunkd_access.log create mode 100644 datasets/attack_techniques/T1189/splunk/SVD-2024-0717_python_log_splunk_python.log create mode 100644 datasets/attack_techniques/T1210/splunk/SVD-2024-0701_pdfgen_log_splunk_pdfgen.log create mode 100644 datasets/attack_techniques/T1210/splunk/SVD-2024-0705_splunk_archiver_splunk_archiver-too_small.log create mode 100644 datasets/attack_techniques/T1499/splunk/SVD-2024-0702_splunkd_crash_log_splunkd_crash_log.log create mode 100644 datasets/attack_techniques/T1499/splunk/SVD-2024-0710_web_service_splunk_web_service.log create mode 100644 datasets/attack_techniques/T1548/splunk/SVD-2024-0709_json_json.json diff --git a/datasets/attack_techniques/T1083/splunk/SVD-2024-0711_web_access_splunk_web_access.log b/datasets/attack_techniques/T1083/splunk/SVD-2024-0711_web_access_splunk_web_access.log new file mode 100644 index 00000000..bd1272cd --- /dev/null +++ b/datasets/attack_techniques/T1083/splunk/SVD-2024-0711_web_access_splunk_web_access.log @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:d8535b524b0232543396c9e02e214ea886f796799c04d6c4e553f5c1874a9ee5 +size 2041 diff --git a/datasets/attack_techniques/T1087/splunk/SVD-2024-0716_splunkd_splunkd.log b/datasets/attack_techniques/T1087/splunk/SVD-2024-0716_splunkd_splunkd.log new file mode 100644 index 00000000..6023559b --- /dev/null +++ b/datasets/attack_techniques/T1087/splunk/SVD-2024-0716_splunkd_splunkd.log @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:2e31de5f6db6710a63f41f75725f6eb35ef162fa8e9e2adb79d75f410b7d7888 +size 7925 diff --git a/datasets/attack_techniques/T1189/splunk/SVD-2024-0712_audittrail_audittrail.log b/datasets/attack_techniques/T1189/splunk/SVD-2024-0712_audittrail_audittrail.log new file mode 100644 index 00000000..b7cdfdf9 --- /dev/null +++ b/datasets/attack_techniques/T1189/splunk/SVD-2024-0712_audittrail_audittrail.log @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:ec1b14657a8b5ffbe8fdf73ca61c08e0da32a29fc4e75a3d50d4d5018d9fdefa +size 5864778 diff --git a/datasets/attack_techniques/T1189/splunk/SVD-2024-0712_splunkd_ui_access_splunk_ui_access.log b/datasets/attack_techniques/T1189/splunk/SVD-2024-0712_splunkd_ui_access_splunk_ui_access.log new file mode 100644 index 00000000..f73f5a16 --- /dev/null +++ b/datasets/attack_techniques/T1189/splunk/SVD-2024-0712_splunkd_ui_access_splunk_ui_access.log @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:09fa024427846131827e26d08eb1e2c91604633fbe7fcadd2156a90e3e864c9c +size 3160 diff --git a/datasets/attack_techniques/T1189/splunk/SVD-2024-0713_json_json.log b/datasets/attack_techniques/T1189/splunk/SVD-2024-0713_json_json.log new file mode 100644 index 00000000..a778df7b --- /dev/null +++ b/datasets/attack_techniques/T1189/splunk/SVD-2024-0713_json_json.log @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:373a20f3a2c259aeca949fa08aa44b12b6f234db646f188a281e5993cf57e2d6 +size 2724 diff --git a/datasets/attack_techniques/T1189/splunk/SVD-2024-0714_web_access_splunk_web_access.log b/datasets/attack_techniques/T1189/splunk/SVD-2024-0714_web_access_splunk_web_access.log new file mode 100644 index 00000000..db2f03eb --- /dev/null +++ b/datasets/attack_techniques/T1189/splunk/SVD-2024-0714_web_access_splunk_web_access.log @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:97666c5ef1ff09095e61f5e963118f8e16d4bb07647a3f6a4b06bc48f4a7664a +size 1515 diff --git a/datasets/attack_techniques/T1189/splunk/SVD-2024-0715_splunkd_splunkd_access.log b/datasets/attack_techniques/T1189/splunk/SVD-2024-0715_splunkd_splunkd_access.log new file mode 100644 index 00000000..5c14fb53 --- /dev/null +++ b/datasets/attack_techniques/T1189/splunk/SVD-2024-0715_splunkd_splunkd_access.log @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:67b46fe7279192b97541394f0b6e1fe3ad680c2274f25d6176dcfca140002f0d +size 140 diff --git a/datasets/attack_techniques/T1189/splunk/SVD-2024-0717_python_log_splunk_python.log b/datasets/attack_techniques/T1189/splunk/SVD-2024-0717_python_log_splunk_python.log new file mode 100644 index 00000000..477d319f --- /dev/null +++ b/datasets/attack_techniques/T1189/splunk/SVD-2024-0717_python_log_splunk_python.log @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:52a6590f94f1f1f235d863f713c524aa249c91b82de3231936e88eb69844d59a +size 137 diff --git a/datasets/attack_techniques/T1210/splunk/SVD-2024-0701_pdfgen_log_splunk_pdfgen.log b/datasets/attack_techniques/T1210/splunk/SVD-2024-0701_pdfgen_log_splunk_pdfgen.log new file mode 100644 index 00000000..937f58a9 --- /dev/null +++ b/datasets/attack_techniques/T1210/splunk/SVD-2024-0701_pdfgen_log_splunk_pdfgen.log @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:61b13acac884547f03146d8c80b4c8e81e47ec823b40c606a76436e8476d6f10 +size 3005 diff --git a/datasets/attack_techniques/T1210/splunk/SVD-2024-0705_splunk_archiver_splunk_archiver-too_small.log b/datasets/attack_techniques/T1210/splunk/SVD-2024-0705_splunk_archiver_splunk_archiver-too_small.log new file mode 100644 index 00000000..c2f6983a --- /dev/null +++ b/datasets/attack_techniques/T1210/splunk/SVD-2024-0705_splunk_archiver_splunk_archiver-too_small.log @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:cd40f904f0ec9856285d64a447d0ea7d1f227d69aa5d26d6a206bd0f5039db53 +size 123 diff --git a/datasets/attack_techniques/T1499/splunk/SVD-2024-0702_splunkd_crash_log_splunkd_crash_log.log b/datasets/attack_techniques/T1499/splunk/SVD-2024-0702_splunkd_crash_log_splunkd_crash_log.log new file mode 100644 index 00000000..e6250eb6 --- /dev/null +++ b/datasets/attack_techniques/T1499/splunk/SVD-2024-0702_splunkd_crash_log_splunkd_crash_log.log @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:73d8c41c752b0424dc2cef844813315837ab0d2e7a7ff68cbcfa94e1bba10645 +size 74014 diff --git a/datasets/attack_techniques/T1499/splunk/SVD-2024-0710_web_service_splunk_web_service.log b/datasets/attack_techniques/T1499/splunk/SVD-2024-0710_web_service_splunk_web_service.log new file mode 100644 index 00000000..b75cade1 --- /dev/null +++ b/datasets/attack_techniques/T1499/splunk/SVD-2024-0710_web_service_splunk_web_service.log @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:8e55347bde6ef17a3c61d4f750be39043a006023bc78e089d8e3c6a198208f6d +size 459 diff --git a/datasets/attack_techniques/T1548/splunk/SVD-2024-0709_json_json.json b/datasets/attack_techniques/T1548/splunk/SVD-2024-0709_json_json.json new file mode 100644 index 00000000..90368347 --- /dev/null +++ b/datasets/attack_techniques/T1548/splunk/SVD-2024-0709_json_json.json @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:513c2a2923fe4206e5f1fa6358d87b4adadb8b5e56cc2842e08bb6e3c6324e74 +size 214