Category | Description | Examples |
Administrator Accounts |
Accounts used to manage system/network resources and services |
DNS accounts, server credentials |
Social Media Accounts |
Accounts for social networking and microblogging |
MySpace, Facebook, Twitter, Tumblr |
Email Accounts |
Email addresses and accounts |
Employee email accounts, Gmail accounts |
Financial Accounts |
Accounts related to banking, trading, payment cards, or any other financial service |
Banking credentials, bitcoin wallets, tax accounts |
Customer Accounts |
Accounts used to purchase/manage services, and facilitate billing (like cell phone or utility accounts) |
FedEx accounts, Adobe accounts, health insurance accounts |
User Accounts |
Accounts used to access a service (Forums, gaming platforms, news sites) |
WhatsApp accounts, YouTube accounts |
Cloud Account/Single Sign On |
Accounts connected to cloud services |
iCloud accounts, Google Drive accounts |
Point of Sale Systems/Software |
Refers to the area of a store where customers can pay for their purchases.
The term is normally used to describe systems that record financial transactions.
This could be an electric cash register or an integrated computer system
which records the data that comprises a business transaction for the sale of goods or services. |
Includes all parts of the system, customized hardware, scanners, electronic cash registers, touch screens |
Storage Devices/Removable Media |
A device for recording or storing information. |
USB storage devices, hard drives, CDs and DVDs, tape backup |
Medical Equipment |
Medical Devices and equipment specific to the healthcare industry |
Pacemaker, insulin pumps, any wireless medical devices |
Consumer Electronics/Home Appliances |
Electronic equipment intended for entertainment, communications,
office productivity, and home electrical/mechanical machines. |
TVs, gaming consoles, Apple TV, Bluetooth and GPS devices |
Network Equipment |
Devices that facilitate the use of a network. |
Routers, switches, firewalls |
Network Resources |
Devices that provide services to end users over a network. |
Printers, fax, video conferencing systems, server hardware |
Desktops/Laptops |
|
Personal computers, employee computers and business workstations |
Vehicles/Vehicle Computer Systems |
Electronic Control Units (ECUs) and other microprocessors used in automotive |
Vehicle anti-theft systems, vehicle electronic control unit, vehicle sensors |
Industrial Equipment |
Equipment used in manufacturing, energy, and utilities. |
Industrial Control Systems |
Banking Equipment |
Equipment specific to the banking industry |
Automated Teller Machines (ATM/ABM), teller terminals,
currency dispensers, encoders, cash processing equipment |
Security Systems |
Security devices, access-control and alarm systems |
Cameras, bio-metric scanners, and electronic locking devices |
Facilities |
data/call centers, commercial or industrial buildings, housing, ... |
New York EU office, nuclear installations |
Payment Cards |
All banking cards |
Credit and debit cards, transit cards, loyalty program cards. |
Firmware |
Hardware embedded control software |
|
Operating Systems |
All desktop, laptop and server operating systems |
Microsoft Windows, OS X, Ubuntu, AIX |
Mobile Operating Systems |
All mobile operating systems |
Android OS, iOS, BlackBerry OS |
Mobile Applications |
All mobile applications regardless of function |
BlackBerry Messenger, Angry Birds, Google Play |
Web Browsers |
Browsers and browser add-ons/plug-ins |
Internet Explorer, Google Chrome, FireFox |
Entertainment Software |
Software used for leisure such as media players, video games, and gambling software |
Quicktime, Windows Media Player, iTunes, Call of Duty |
Communications Software |
All remote access, file exchange (FTP clients),
and messaging software clients including email clients and instant messaging/chat |
Outlook Express, Foxmail, FileZilla, Yahoo Messenger |
Productivity Software |
Word processing, database, spreadsheet, and all other office/end user productivity applications |
MS Office, Photoshop, Adobe Acrobat |
Financial Software |
Banking software, BitCoin software and electronic trading software |
ClearPort, FOCUS IV, TradeFortress |
Development Software |
Application and web development software, programming software and APIs |
Java, Adobe ColdFusion, Jboss Application Server |
Management Software |
Website back-ends, administration software, protocol servers (FTP, HTTP),
enterprise security management software, inventory and access control software |
Apache, Exchange Server, IIS, vSphere Update Manager |
Industrial Software |
Industrial control and distribution software,
construction and computer-aided design software, production and manufacturing software |
AutoCAD, Automated Identification Systems, SCADA |
Security/Utility Software |
Antivirus clients, security software clients (end user programs), and system utilities |
Encryption software, iTouch, MacUpdate, McAfee anti-virus |
Cloud Services/Applications |
Anything-as-a-Service. This category also includes applications hosted on websites, web 2.0, HTML5 and ASP apps. |
Amazon Cloud Drive, iCloud, Evernote, Dropbox, CryptoCat, Pandora, Talkr |
Content Management Systems |
Website management software and plugins |
Wordpress, Joomla, Datalife, vBulletin |
Data |
Digital assets, includes documents, records, database contents,
intellectual property, cred card information, PII, account credentials |
Electronic health records, source code, customer data, SMS messages |
Search Engines |
Search engine related targets |
Bing, Google Bot, Graph Search |
Individuals |
Persons Names, and pseudonyms |
Mark Zuckerberg, Michelle Obama |
Customers/Clients |
Persons or organizations that purchase/manage goods or services from a business. Keywords: investors, guests, shoppers |
Russian banking customers, Sebastian Corp. customers, Westin Hotels & Resorts guests |
Patients |
Persons receiving or registered to receive medical treatment |
Medicaid clients, UnityPoint Health patients |
Employees |
Persons employed for wages or salary, includes non-official government employees.
Keywords: staff, executives, administrators, coworkers, aides |
US military personnel, White House employees, University of Maryland staff |
Students |
Someone who attends an educational institution (includes alumni - a former student) |
University of Maryland, College Park students, University of Delaware students |
Users |
Persons that utilize a service or system. keywords: visitors, readers, players, owners, subscribers |
Cake Poker users, Forbes website visitors, Microsoft Office users, Netflix users |
Communities |
Countries, cities, towns, regions. Keywords: residents, citizens |
People of West Papua, Middle East countries |
Group Members |
Organization members/volunteers, threat groups (hactivist/hacking/APT groups),
and groups of individuals with no organization. keywords: prisoners, activists, fans |
Pro-government hackers, Syrian Electronic Army, LulzSec hacktivists |
Government Officials |
People elected or appointed to administer a government |
Turkish Prime Minister, Ukrainian parliament members, Members of the Ukrainian Parliament |
Wireless Networks |
Any wireless local area network (WLAN),
usually providing a connection through an access point to the wider Internet.
Includes other wireless tech. like satcom and terrestrial microwave. |
Airport WiFi networks, WiFi access points |
Cellular Networks |
Radio networks for mobile transceivers (phones, pagers, etc.) |
3g/4g mobile networks, LTE networks, GSM telephone networks |
Government/Military Networks |
Networks owned and operated by government and military entities |
German National Data Center, Centcom's computer system, Australian Federal Police (AFP) networks |
Telecommunications Networks |
High speed, high capacity, long-distance networks consisting of switches,
cables, satellite, wireless transmitters and antennas which support data communications between smaller networks. |
International communications links, Ukraine telecommunication systems, Indosat networks |
Financial Networks |
Networks owned and operated by financial organizations, included financial private networks |
Markets, exchanges, Flexcoin networks, HBGary Federal networks |
Private Networks |
Networks owned and operated by businesses and other organizations |
Boeing Company system, Boone Hospital Center networks, enterprise environments |
Public Networks |
Networks available to anyone |
The internet, TOR, IRC |
Domains |
Generic and country-code top-level domain names as well as second and third level domain names |
.com, .edu, .gov.nl |
Infrastructure and Utilities |
The physical components of interrelated systems providing commodities
and services essential to enable, sustain, or enhance a society.
This category includes networks supplying a community with electricity,
gas, water, or sewerage. |
Critical infrastructure, gas and oil pipelines, electric power, water systems |
Websites |
A public site for a company/business or any other entity. Frequently the target of defacements. |
Walmart.com,
google.com, and all other websites. |
Forums |
An online discussion site where people can hold conversations in the form of posted messages. |
Ubuntu forum, NASDAQ forum |
Blogs |
A discussion or informational site published on the web. |
Skype's Official blog, personal blogs, WordPress Blogs |