SAFETAG: Advanced Threats

This release includes the following large changes:

• Responding to Advanced Threats -- a new method and activities to detect and response to malware and for working with high-risk organizations, as well as improved guidance on conducting technical threat research. See https://safetag.org/2018/05/04/Advanced_Threats.html for details.

• Remote SAFETAG Audits -- improvements and guidance in conducting remote assessments when travel to the site is impractical, unsafe, or there are multiple offices to audit with limited travel availability. This includes technical and facilitated activity modifications and options for the auditor to direct depending on organizational capacity, as well as completely new activities. See https://safetag.org/2017/08/31/Remote_Audits.html for details.

• New SAFETAG Playlist: Minimal Viable Audit -- a SAFETAG "playlist" focused on essential activities when facing a constrained timeline, and to use as a core to add custom activities on to. Build this playlist using index.mva.md , or view the attached MVA PDF.

• Network and Vulnerability Scanning Improvements Better guidance and tool recommendations for website footprinting/auditing, and improved documentation for scanning for vulnerabilities.

• OSINT / Recon Improvements -- Additional exercises to conduct research and identify the online footprint and potential points of vulnerability for an organization.

• Core and Structural Improvements -- Creation of a Code of Conduct and a Contribution guide (see #299). Normalization of files/structure and removal of symlinks to better support Content as Code inclusion. Activities with multiple, parallel/duplicative options are now presented as variants within the activity's instructions.