michael-hamm
diff --git a/Diff for: ‎MANIFEST.json
+4-4 b/Diff for: ‎MANIFEST.json
+4-4
diff --git a/Diff for: ‎adversary/machinetag.json
+8-8 b/Diff for: ‎adversary/machinetag.json
+8-8
diff --git a/Diff for: ‎csirt_case_classification/machinetag.json
-1 b/Diff for: ‎csirt_case_classification/machinetag.json
-1
diff --git a/Diff for: ‎dhs-ciip-sectors/machinetag.json
+84-62 b/Diff for: ‎dhs-ciip-sectors/machinetag.json
+84-62
diff --git a/Diff for: ‎diamond-model/machinetag.json
+3-1 b/Diff for: ‎diamond-model/machinetag.json
+3-1
diff --git a/Diff for: ‎domain-abuse/machinetag.json
+11-11 b/Diff for: ‎domain-abuse/machinetag.json
+11-11
@@ -40,7 +40,7 @@
       "name": "dni-ism",
       "version": 3
     },
-     {
+    {
       "description": "Taxonomy to tag domain names used for cybercrime.",
       "name": "domain-abuse",
       "version": 1
@@ -166,9 +166,9 @@
       "version": 1
     },
     {
-      "description" : "Tags for RiskIQ's passivetotal service",
-      "name" : "passivetotal",
-      "version" : 1
+      "description": "Tags for RiskIQ's passivetotal service",
+      "name": "passivetotal",
+      "version": 1
     }
   ]
 }
@@ -38,9 +38,9 @@
         }
       ]
     },
-      {
-        "predicate": "infrastructure-action",
-        "entry": [
+    {
+      "predicate": "infrastructure-action",
+      "entry": [
         {
           "value": "passive-only",
           "expanded": "Only passive requests shall be performed to avoid detection by the adversary"
@@ -57,11 +57,11 @@
           "value": "pending-law-enforcement-request",
           "expanded": "Law enforcement requests are ongoing on the adversary infrastructure"
         }
-        ]
-      },
+      ]
+    },
     {
-     "predicate": "infrastructure-state",
-     "entry": [
+      "predicate": "infrastructure-state",
+      "entry": [
         {
           "value": "unknown",
           "expanded": "Infrastructure state is unknown or cannot be evaluated"
@@ -74,7 +74,7 @@
           "value": "down",
           "expanded": "Infrastructure state is known to be down"
         }
-     ]
+      ]
     },
     {
       "predicate": "infrastructure-type",
 
@@ -102,4 +102,3 @@
     }
   ]
 }
-
@@ -1,64 +1,86 @@
 {
-        "namespace": "dhs-ciip-sectors",
-        "description": "DHS critical sectors as in https://www.dhs.gov/critical-infrastructure-sectors",
-        "version": 2,
-        "predicates": [{
-                "value": "DHS-critical-sectors",
-                "expanded": "DHS critical sectors"
-        }, {
-                "value": "sector",
-                "expanded": "Sector"
-        }],
-        "values": [{
-                "predicate": "DHS-critical-sectors",
-                "entry": [{
-                        "value": "chemical",
-                        "expanded": "Chemical"
-                }, {
-                        "value": "commercial-facilities",
-                        "expanded": "Commercial Facilities"
-                }, {
-                        "value": "communications",
-                        "expanded": "Communications"
-                }, {
-                        "value": "critical-manufacturing",
-                        "expanded": "Critical Manufacturing"
-                }, {
-                        "value": "dams",
-                        "expanded": "Dams"
-                }, {
-                        "value": "dib",
-                        "expanded": "Defense Industrial Base"
-                }, {
-                        "value": "emergency-services",
-                        "expanded": "Emergency services"
-                }, {
-                        "value": "energy",
-                        "expanded": "energy"
-                }, {
-                        "value": "financial-services",
-                        "expanded": "Financial Services"
-                }, {
-                        "value": "food-agriculture",
-                        "expanded": "Food and Agriculture"
-                }, {
-                        "value": "government-facilities",
-                        "expanded": "Government Facilities"
-                }, {
-                        "value": "healthcare-public",
-                        "expanded": "Healthcare and Public Health"
-                }, {
-                        "value": "it",
-                        "expanded": "Information Technology"
-                }, {
-                        "value": "nuclear",
-                        "expanded": "Nuclear"
-                }, {
-                        "value": "transport",
-                        "expanded": "Transportation Systems"
-                }, {
-                        "value": "water",
-                        "expanded": "Water and water systems"
-                }]
-        }]
+  "namespace": "dhs-ciip-sectors",
+  "description": "DHS critical sectors as in https://www.dhs.gov/critical-infrastructure-sectors",
+  "version": 2,
+  "predicates": [
+    {
+      "value": "DHS-critical-sectors",
+      "expanded": "DHS critical sectors"
+    },
+    {
+      "value": "sector",
+      "expanded": "Sector"
+    }
+  ],
+  "values": [
+    {
+      "predicate": "DHS-critical-sectors",
+      "entry": [
+        {
+          "value": "chemical",
+          "expanded": "Chemical"
+        },
+        {
+          "value": "commercial-facilities",
+          "expanded": "Commercial Facilities"
+        },
+        {
+          "value": "communications",
+          "expanded": "Communications"
+        },
+        {
+          "value": "critical-manufacturing",
+          "expanded": "Critical Manufacturing"
+        },
+        {
+          "value": "dams",
+          "expanded": "Dams"
+        },
+        {
+          "value": "dib",
+          "expanded": "Defense Industrial Base"
+        },
+        {
+          "value": "emergency-services",
+          "expanded": "Emergency services"
+        },
+        {
+          "value": "energy",
+          "expanded": "energy"
+        },
+        {
+          "value": "financial-services",
+          "expanded": "Financial Services"
+        },
+        {
+          "value": "food-agriculture",
+          "expanded": "Food and Agriculture"
+        },
+        {
+          "value": "government-facilities",
+          "expanded": "Government Facilities"
+        },
+        {
+          "value": "healthcare-public",
+          "expanded": "Healthcare and Public Health"
+        },
+        {
+          "value": "it",
+          "expanded": "Information Technology"
+        },
+        {
+          "value": "nuclear",
+          "expanded": "Nuclear"
+        },
+        {
+          "value": "transport",
+          "expanded": "Transportation Systems"
+        },
+        {
+          "value": "water",
+          "expanded": "Water and water systems"
+        }
+      ]
+    }
+  ]
 }
@@ -3,7 +3,9 @@
   "expanded": "Diamond Model for Intrusion Analysis",
   "description": "The Diamond Model for Intrusion Analysis, a phase-based model developed by Lockheed Martin, aims to help categorise and identify the stage of an attack.",
   "version": 1,
-  "ref": ["http://www.activeresponse.org/wp-content/uploads/2013/07/diamond.pdf"],
+  "ref": [
+    "http://www.activeresponse.org/wp-content/uploads/2013/07/diamond.pdf"
+  ],
   "predicates": [
     {
       "value": "Adversary",
 
@@ -22,9 +22,9 @@
         {
           "value": "active",
           "expanded": "Registered & active",
-          "description": "Domain name is registered and DNS is delegated"    
+          "description": "Domain name is registered and DNS is delegated"
         },
-         {
+        {
           "value": "inactive",
           "expanded": "Registered & inactive",
           "description": "Domain name is registered and DNS is not delegated"
@@ -34,17 +34,17 @@
           "expanded": "Registered & suspended",
           "description": "Domain name is registered & DNS delegation is temporarily removed by the registry"
         },
-         {
+        {
           "value": "not-registered",
           "expanded": "Not registered",
           "description": "Domain name is not registered and open for registration"
         },
-         {
+        {
           "value": "not-registrable",
           "expanded": "Not registrable",
           "description": "Domain is not registered and cannot be registered"
         },
-    	{
+        {
           "value": "grace-period",
           "expanded": "Grace period",
           "description": "Domain is deleted and still reserved for previous owner"
@@ -57,24 +57,24 @@
         {
           "value": "criminal-registration",
           "expanded": "Criminal registration",
-          "description": "Domain name is registered for criminal purposes"    
+          "description": "Domain name is registered for criminal purposes"
         },
         {
           "value": "compromised-webserver",
           "expanded": "Compromised webserver",
-          "description": "Webserver is compromised for criminal purposes"    
+          "description": "Webserver is compromised for criminal purposes"
         },
         {
           "value": "compromised-dns",
           "expanded": "Compromised DNS",
-          "description": "Compromised authoritative DNS or compromised delegation"    
+          "description": "Compromised authoritative DNS or compromised delegation"
         },
         {
           "value": "sinkhole",
           "expanded": "Sinkhole",
-          "description": "Domain Name is sinkholed for research, detection, LE"    
+          "description": "Domain Name is sinkholed for research, detection, LE"
         }
-      ]  
+      ]
     }
   ]
-}
+}
Original file line number	Diff line number	Diff line change
`@@ -40,7 +40,7 @@`
`40`	`40`	`"name": "dni-ism",`
`41`	`41`	`"version": 3`
`42`	`42`	`},`
`43`		`- {`
	`43`	`+ {`
`44`	`44`	`"description": "Taxonomy to tag domain names used for cybercrime.",`
`45`	`45`	`"name": "domain-abuse",`
`46`	`46`	`"version": 1`
`@@ -166,9 +166,9 @@`
`166`	`166`	`"version": 1`
`167`	`167`	`},`
`168`	`168`	`{`
`169`		`- "description" : "Tags for RiskIQ's passivetotal service",`
`170`		`- "name" : "passivetotal",`
`171`		`- "version" : 1`
	`169`	`+ "description": "Tags for RiskIQ's passivetotal service",`
	`170`	`+ "name": "passivetotal",`
	`171`	`+ "version": 1`
`172`	`172`	`}`
`173`	`173`	`]`
`174`	`174`	`}`
Original file line number	Diff line number	Diff line change
`@@ -38,9 +38,9 @@`
`38`	`38`	`}`
`39`	`39`	`]`
`40`	`40`	`},`
`41`		`- {`
`42`		`- "predicate": "infrastructure-action",`
`43`		`- "entry": [`
	`41`	`+ {`
	`42`	`+ "predicate": "infrastructure-action",`
	`43`	`+ "entry": [`
`44`	`44`	`{`
`45`	`45`	`"value": "passive-only",`
`46`	`46`	`"expanded": "Only passive requests shall be performed to avoid detection by the adversary"`
`@@ -57,11 +57,11 @@`
`57`	`57`	`"value": "pending-law-enforcement-request",`
`58`	`58`	`"expanded": "Law enforcement requests are ongoing on the adversary infrastructure"`
`59`	`59`	`}`
`60`		`- ]`
`61`		`- },`
	`60`	`+ ]`
	`61`	`+ },`
`62`	`62`	`{`
`63`		`- "predicate": "infrastructure-state",`
`64`		`- "entry": [`
	`63`	`+ "predicate": "infrastructure-state",`
	`64`	`+ "entry": [`
`65`	`65`	`{`
`66`	`66`	`"value": "unknown",`
`67`	`67`	`"expanded": "Infrastructure state is unknown or cannot be evaluated"`
`@@ -74,7 +74,7 @@`
`74`	`74`	`"value": "down",`
`75`	`75`	`"expanded": "Infrastructure state is known to be down"`
`76`	`76`	`}`
`77`		`- ]`
	`77`	`+ ]`
`78`	`78`	`},`
`79`	`79`	`{`
`80`	`80`	`"predicate": "infrastructure-type",`
Original file line number	Diff line number	Diff line change
`@@ -102,4 +102,3 @@`
`102`	`102`	`}`
`103`	`103`	`]`
`104`	`104`	`}`
`105`		`-`