{ "id": "eed436b8-2757-4fa0-94c5-f72d1b1d423e", "created_at": "2026-04-06T00:10:35.261573Z", "updated_at": "2026-04-10T03:26:45.124612Z", "deleted_at": null, "sha1_hash": "d1f5cbfd952e345f2906867adbdfd36b3e487918", "title": "Threat Group Cards: A Threat Actor Encyclopedia", "llm_title": "", "authors": "", "file_creation_date": "0001-01-01T00:00:00Z", "file_modification_date": "0001-01-01T00:00:00Z", "file_size": 46491, "plain_text": "Threat Group Cards: A Threat Actor Encyclopedia\r\nArchived: 2026-04-05 21:35:21 UTC\r\nHome \u003e List all groups \u003e List all tools \u003e List all groups using tool Tinyproxy\r\n Tool: Tinyproxy\r\nNames Tinyproxy\r\nCategory Tools\r\nType Tunneling\r\nDescription\r\nTinyproxy is a small, efficient HTTP/SSL proxy daemon released under the GNU General\r\nPublic License. Tinyproxy is very useful in a small network setting, where a larger proxy\r\nwould either be too resource intensive, or a security risk. One of the key features of Tinyproxy\r\nis the buffering connection concept. In effect, Tinyproxy will buffer a high speed response\r\nfrom a server, and then relay it to a client at the highest speed the client will accept. This\r\nfeature greatly reduces the problems with sluggishness on the Internet. If you are sharing an\r\nInternet connection with a small network, and you only want to allow HTTP requests to be\r\nallowed, then Tinyproxy is a great tool for the network administrator.\r\nInformation \u003chttps://github.com/tinyproxy/tinyproxy\u003e\r\nLast change to this tool card: 16 January 2024\r\nDownload this tool card in JSON format\r\nAll groups using tool Tinyproxy\r\nChanged Name Country Observed\r\nOther groups\r\n  GambleForce 2023  \r\n1 group listed (0 APT, 1 other, 0 unknown)\r\nSource: https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=860b9794-d9f6-4e77-ab4b-8ea4ced283a5\r\nhttps://apt.etda.or.th/cgi-bin/listgroups.cgi?u=860b9794-d9f6-4e77-ab4b-8ea4ced283a5\r\nPage 1 of 1", "extraction_quality": 1, "language": "EN", "sources": [ "ETDA" ], "references": [ "https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=860b9794-d9f6-4e77-ab4b-8ea4ced283a5" ], "report_names": [ "listgroups.cgi?u=860b9794-d9f6-4e77-ab4b-8ea4ced283a5" ], "threat_actors": [ { "id": "8d1c3575-c954-4e39-8717-8d15ccd4020e", "created_at": "2024-01-18T02:02:34.725883Z", "updated_at": "2026-04-10T02:00:05.007755Z", "deleted_at": null, "main_name": "GambleForce", "aliases": [], "source_name": "ETDA:GambleForce", "tools": [ "Agentemis", "Cobalt Strike", "CobaltStrike", "Dirsearch", "Tinyproxy", "cobeacon", "redis-rogue-getshell", "sqlmap" ], "source_id": "ETDA", "reports": null }, { "id": "e55fb744-4fb6-4b73-a326-d4d014d6a3d7", "created_at": "2023-12-21T02:00:06.102133Z", "updated_at": "2026-04-10T02:00:03.503718Z", "deleted_at": null, "main_name": "GambleForce", "aliases": [], "source_name": "MISPGALAXY:GambleForce", "tools": [], "source_id": "MISPGALAXY", "reports": null } ], "ts_created_at": 1775434235, "ts_updated_at": 1775791605, "ts_creation_date": 0, "ts_modification_date": 0, "files": { "pdf": "https://archive.orkl.eu/d1f5cbfd952e345f2906867adbdfd36b3e487918.pdf", "text": "https://archive.orkl.eu/d1f5cbfd952e345f2906867adbdfd36b3e487918.txt", "img": "https://archive.orkl.eu/d1f5cbfd952e345f2906867adbdfd36b3e487918.jpg" } }