Skip to content

blackfist/sonyhack

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

68 Commits

config

config

 
 

public

public

 
 

views

views

 
 

.gitignore

.gitignore

 
 

Gemfile

Gemfile

 
 

Gemfile.lock

Gemfile.lock

 
 

Procfile

Procfile

 
 

README.md

README.md

 
 

config.ru

config.ru

 
 

countries.csv

countries.csv

 
 

freqs.csv

freqs.csv

 
 

ioc.csv

ioc.csv

 
 

server.rb

server.rb

 
 

subject_lines.csv

subject_lines.csv

 
 

supporters.csv

supporters.csv

 
 

thomases.csv

thomases.csv

 
 

true_ioc.csv

true_ioc.csv

 
 

Repository files navigation

Sony Hack Attribution Generator

So there are quite a few conflicting stories out there about who hacked Sony and many "experts" being asked to weigh in with their opinion. Do you need a quick story you can pull out of your hat to explain the Sony hack at a party or job interview?

Just fire this bad boy up and read the output.

Are you just making stuff up?

It is not "made-up" per se. This attribution generator uses aggregated information from the VCDB and DBIR databases from Verizon that accumulate private and public data breach information from a great number of companies around the worlds.

It uses the aggregated likelihood of the types of breach actors (i.e. "internal", "external" or "partner"), and more detailed information about the source of the breach actor (such as "organized crime", "activitst", "state-sponsored", etc.). You can review (and tweak if you like) the breach info on freqs.csv.

We also do a similar likelihood estimation on reported origin countries of the attacks. Vou can also review this information on countries.csv.

Since it is unlikely that any further evidence on this case will be released to the public, it is really a guessing game now. At the very least, you can now have some data-driven guesses to share your own attribution story to the press.

Most of the details, quotes and IOCs are purely made up for flavor. If we have quoted you as a real person, we probably like you and think you made good arguments against the original attribution.

Technical deployment details

Dependencies

The Project is written to use Sinatra and since I normally write in Rails, I threw in a content_for tag that Sinatra doesn't support. Rather than rewrite the app, I just used the sinatra-contrib gem. So you need to install that too. Oh and facets so I could get the titlecase function. The easiest thing to do is just run

bundle install

to get all the dependencies installed.

How to run the generator

ruby server.rb
[2014-12-31 09:28:15] INFO  WEBrick 1.3.1
[2014-12-31 09:28:15] INFO  ruby 2.1.3 (2014-09-19) [x86_64-darwin13.0]
== Sinatra/1.4.5 has taken the stage on 4567 for development with backup from WEBrick
[2014-12-31 09:28:15] INFO  WEBrick::HTTPServer#start: pid=5627 port=4567

Then point your browser at localhost:4567

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

21 stars

Watchers

10 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 5

Languages