Similar projects and alternatives to VCDB
APT & CyberCriminal Campaign Collection
Access the most powerful time series database as a service. Ingest, store, & analyze all types of time series data in a fully-managed, purpose-built database. Keep data forever with low-cost storage and superior data compression.
VCDB reviews and mentions
Ask HN: Are most security breaches based on social engineering?
3 projects | news.ycombinator.com | 20 Sep 2021
You can look at:
- A collection of public threat intel reports . Lot's of reading though. I did some Splunking on it last year and at least 50% uses phishing for initial access. You could call that a structural vulnerability.
- Exploiting vulnerable public facing stuff is another initial access technique. Here someone collected all the CVEs used by ransomware crews:
- VERIS community database: collection of 8894 security incidents. If you look in the JSON there are some fields describing the vector and the actor.
vz-risk/VCDB is an open source project licensed under GNU General Public License v3.0 or later which is an OSI approved license.