- Add more threats

README.md

@@ -57,6 +57,8 @@ references:
 | Title | Description | Severity | Security Actions | References |
 |:-----:|-------------|----------|------------|------------|
    | [DNS Manipulation](threats/mitre/dnsManipulation.yaml) | An adversary can manipulate DNS requests to redirect network traffic and potentially reveal end user activity. | high | [accuknox/preventLocalDNSHijack](actions/accuknox/preventLocalDNSHijack), [mitre/integrityProtection](actions/mitre/integrityProtection), [mitre/networkTraffic](actions/mitre/networkTraffic) |[MITRE FiGHT](https://fight.mitre.org/techniques/FGT5006) |
+   | [Exploit Public-Facing Application](threats/mitre/exploitPublicFacingApplication.yaml) |  | High | [accuknox/null](actions/accuknox/null) |[FGT1190](https://fight.mitre.org/techniques/FGT1190) |
+   | [Exploit Semi-public Facing Application](threats/mitre/exploitSemiPublicFacingApplication.yaml) |  | High | [mitre/networkTraffic](actions/mitre/networkTraffic) |[FGT5029](https://fight.mitre.org/techniques/FGT5029) |
    | [SupplyChainCompromise](threats/mitre/supplyChainCompromise.yaml) | Adversaries may manipulate products or product delivery mechanisms prior to receipt by a final consumer for the purpose of data or system compromise. | High | [accuknox/null](actions/accuknox/null) |[FGT1195](https://fight.mitre.org/techniques/FGT51195) |
    | [Unauthorized access to Network Exposure Function (NEF) via token fraud](threats/mitre/unAuthAccessNEFTokenFraud.yaml) | An adversary controlling an (external) Application Function (AF) presents a fraudulent OAuth access token to access Network Exposure Function (NEF) services | High | [accuknox/null](actions/accuknox/null) |[FGT5011](https://fight.mitre.org/techniques/FGT5011) |
    | [Valid Accounts](threats/mitre/validAccounts.yaml) |  | High | [accuknox/null](actions/accuknox/null) |[FGT1078](https://fight.mitre.org/techniques/FGT1078) |

threats/mitre/exploitPublicFacingApplication.yaml

@@ -0,0 +1,16 @@
+title: Exploit Public-Facing Application
+description: 
+severity: High
+tags:
+  - oran
+  - 5gcore
+  - generic
+detectionMethods: # Mechanisms to detect the threat
+mitigationMethods: # Mechanisms to mitigate the threat
+securityActions:
+  - accuknox/null
+securityIntentBinding: # Set of labels, annotations describing workloads who would be impacted by this threat
+preDeploymentConsiderations: [ ] # Anything that can be done in CI/CD pipelines that can alleviate this threat
+references:
+  - name: FGT1190
+    url: https://fight.mitre.org/techniques/FGT1190

threats/mitre/exploitSemiPublicFacingApplication.yaml

@@ -0,0 +1,20 @@
+title: Exploit Semi-public Facing Application
+description: 
+severity: High
+tags:
+  - oran
+  - 5gcore
+  - generic
+detectionMethods: # Mechanisms to detect the threat
+   - name: networkTraffic
+     tag: [mitre, ds0029]
+     description: desc
+     url: https://fight.mitre.org/data%20sources/DS0029
+mitigationMethods: # Mechanisms to mitigate the threat
+securityActions:
+  - mitre/networkTraffic
+securityIntentBinding: # Set of labels, annotations describing workloads who would be impacted by this threat
+preDeploymentConsiderations: [ ] # Anything that can be done in CI/CD pipelines that can alleviate this threat
+references:
+  - name: FGT5029
+    url: https://fight.mitre.org/techniques/FGT5029