1metadata:
2 id: EXAMPLE-THREAT-CATALOG
3 type: ThreatCatalog
4 gemara-version: "0.20.0"
5 version: "1.0.0"
6 description: Example Threat Catalog
7 author:
8 id: security-team
9 name: Security Team
10 type: Human
11 mapping-references:
12 - id: EXAMPLE-VECTOR-CATALOG
13 title: Example Attack Vector Catalog
14 version: "1.0.0"
15 - id: EXAMPLE-CAPABILITY-CATALOG
16 title: Example Capability Catalog
17 version: "1.0.0"
18
19title: Example Threat Catalog
20
21groups:
22 - id: stride-s
23 title: Spoofing
24 description: Impersonating something or someone to gain unauthorized access
25 - id: stride-t
26 title: Tampering
27 description: Modifying data or code without authorization
28 - id: stride-e
29 title: Elevation of Privilege
30 description: Gaining capabilities without proper authorization
31
32threats:
33 - id: THREAT-001
34 title: Exploitation of Vulnerable Container Images
35 description: Attackers exploit known vulnerabilities in container images to gain unauthorized access or execute malicious code.
36 group: stride-t
37 capabilities:
38 - reference-id: EXAMPLE-CAPABILITY-CATALOG
39 entries:
40 - reference-id: CAP-002
41 vectors:
42 - reference-id: EXAMPLE-VECTOR-CATALOG
43 entries:
44 - reference-id: VEC-001
45 actors:
46 - id: external-attacker
47 name: External Attacker
48 type: Human
49
50 - id: THREAT-002
51 title: Host System Compromise via Container Escape
52 description: Attackers escape container isolation to gain access to the underlying host system and compromise other containers or host resources.
53 group: stride-e
54 capabilities:
55 - reference-id: EXAMPLE-CAPABILITY-CATALOG
56 entries:
57 - reference-id: CAP-001
58 vectors:
59 - reference-id: EXAMPLE-VECTOR-CATALOG
60 entries:
61 - reference-id: VEC-002
62 actors:
63 - id: external-attacker
64 name: External Attacker
65 type: Human
66 - id: malicious-insider
67 name: Malicious Insider
68 type: Human