GitPedia
Home/MISP/misp-taxonomies/Changelog
MISP

MISP/misp-taxonomies

Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.

2 Releases
Latest: 3mo ago
misp-taxonomies - Version 2026031300 released with many new taxonomies, improvements and fixes2026031300Latest
adulauadulau·3mo ago·March 13, 2026
GitHub

[New Taxonomies]

  • EU AI Act: Added support for Regulation 2024/1689.
  • Organizational Cyber Harm: A new taxonomy based on the "A taxonomy of cyber-harms" publication, focusing on the impact and propagation of attacks.
  • Unified Ransomware Kill Chain: Comprehensive tagging for ransomware lifecycle stages.
  • PFC (Protocole des feux de circulation): Based on the FIRST Traffic Light Protocol (TLP) standard.
  • AI Safety & Bias: Added `ai-safety-benchmark` and `ai-bias-terminology` to address emerging AI risks.
  • UAS Classification: Added NATO and CE classifications for Unmanned Aircraft Systems.
  • ACN: Added taxonomy for the Italian National Cybersecurity Agency.
  • ENSOC & Anti-Piracy: Initial drafts for ENISA SOC and anti-piracy operations.
  • + 1 more

📋 [Major Updates & Changes]

  • NIS2 Directive: Major update to include extensive sectors and sub-sectors as defined in Directive (EU) 2022/2555 (Annex I and II).
  • Vulnerability Taxonomy: * Added NVD, origin, and detection scope predicates.
  • Integrated "sighting" predicates aligned with `vulnerability-lookup`.
  • Dark Web: * Added Hitman and Directory services.
  • Terminology Update: Renamed classifications related to CSAM following Interpol recommendations to avoid trivializing child abuse.
  • Exercises: Added specific tagging for HOPLITE, CyberOpex EU 2025, and NGSOTI infrastructure.
  • UUID Standardization: Shifted towards using UUIDv5 across namespaces, predicates, and values to ensures consistency and reproducibility.

📦 [Tools & Infrastructure]

  • UUID Tool: Added a new utility to automatically generate and add missing UUIDs when creating or updating taxonomies.
  • Validation: Updated validation scripts to handle Python 3 and better assist in identifying schema errors.
  • CI/CD: Added "do-curation" to the workflow and improved `jq` formatting across the repository.

🐛 [Fixes]

  • Corrected invalid UUIDv5 and string-based UUIDs across multiple files.
  • Fixed incorrect namespaces for `organizational-cyber-harm`.
  • Numerous typo fixes in `cryptocurrency-threat`, `economical-impact`, `retention`, and `dark-web`.
  • Fixed directory naming mismatches for `ce-uas` and `nato-uas`.
MISP Taxonomies 2024111100 released2024111100
adulauadulau·1y ago·November 11, 2024
GitHub

New Taxonomies

  • Detection Engineering
  • New taxonomy to describe detection engineering patterns.
  • ACS Marking
  • New taxonomy based on the ACS marking definition, including enumerations and vocabularies.
  • MITRE Engage
  • Created taxonomy for MITRE Engage.

📦 Updated Taxonomies

  • Infoleak Taxonomy
  • Added `barcode` tag.
  • Added `qrcode` tag.
  • GrayZone Taxonomy
  • Updated to version 3.1.

📋 Other Changes

  • Updated MANIFEST files.
  • Updated documentation (README).
← Back to misp-taxonomies wiki