From b420d828ee7ee2dae6adf5357e2454ec303e2143 Mon Sep 17 00:00:00 2001
From: Nex <nex@nex.sx>
Date: Sat, 25 Jun 2022 00:49:16 +0200
Subject: [PATCH] Reintroduced public_indicators.json file to be available for
 older versions

---
 public_indicators.json | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 public_indicators.json

diff --git a/public_indicators.json b/public_indicators.json
new file mode 100644
index 0000000..b8f1628
--- /dev/null
+++ b/public_indicators.json
@@ -0,0 +1,20 @@
+[
+    {
+        "name": "NSO Group Pegasus Indicators of Compromise",
+        "source": "Amnesty International",
+        "reference": "https://www.amnesty.org/en/latest/research/2021/07/forensic-methodology-report-how-to-catch-nso-groups-pegasus/",
+        "stix2_url": "https://raw.githubusercontent.com/AmnestyTech/investigations/master/2021-07-18_nso/pegasus.stix2"
+    },
+    {
+        "name": "Cytrox Predator Spyware Indicators of Compromise",
+        "source": "Meta, Amnesty International, Citizen Lab",
+        "reference": "https://citizenlab.ca/2021/12/pegasus-vs-predator-dissidents-doubly-infected-iphone-reveals-cytrox-mercenary-spyware/",
+        "stix2_url": "https://raw.githubusercontent.com/AmnestyTech/investigations/master/2021-12-16_cytrox/cytrox.stix2"
+    },
+    {
+        "name": "RCS Lab Spyware Indicators of Compromise",
+        "source": "Google, Lookout",
+        "reference": "https://blog.google/threat-analysis-group/italian-spyware-vendor-targets-users-in-italy-and-kazakhstan/",
+        "stix2_url": "https://raw.githubusercontent.com/mvt-project/mvt-indicators/main/2022-06-23_rcs_lab/rcs.stix2"
+    }
+]