Add Mission 4 metadata file (mission.json)

Mission display information and CyBOK mappings: - Display name: Critical Failure - Difficulty: 2 (Intermediate) - SecGen scenario: vulnerability_analysis - 6 CyBOK knowledge areas mapped - Focus: SCADA/ICS security, infrastructure protection, combat CyBOK areas: NS, SS, IS, AB, HF, IR
2026-02-21 11:18:08 +00:00 · 2025-12-28 18:20:53 +00:00
parent 1a94d7c363
commit a36f2b1aa9
1 changed files with 39 additions and 0 deletions
--- a/scenarios/m04_critical_failure/mission.json
+++ b/scenarios/m04_critical_failure/mission.json
@@ -0,0 +1,39 @@
+{
+  "display_name": "Critical Failure",
+  "description": "Infiltrate Pacific Northwest Regional Water Treatment Facility to stop ENTROPY's Critical Mass cell from weaponizing chlorine dosing systems. With 240,000 residents at risk, investigate SCADA network compromise, engage hostile operatives, and prevent infrastructure attack before 0800 trigger time. First mission featuring combat encounters.",
+  "difficulty_level": 2,
+  "secgen_scenario": "vulnerability_analysis",
+  "collection": "season_1",
+  "cybok": [
+    {
+      "ka": "NS",
+      "topic": "Network Security",
+      "keywords": ["SCADA networks", "ICS security", "Network scanning (Nmap)", "Service enumeration", "FTP analysis", "HTTP analysis", "Network topology"]
+    },
+    {
+      "ka": "SS",
+      "topic": "Systems Security",
+      "keywords": ["Vulnerability exploitation", "distcc CVE-2004-2687", "Privilege escalation", "sudo Baron CVE-2021-3156", "Linux security", "Remote code execution"]
+    },
+    {
+      "ka": "IS",
+      "topic": "Infrastructure Security",
+      "keywords": ["SCADA/ICS protection", "Critical infrastructure", "Water treatment systems", "Industrial control systems", "Physical security integration"]
+    },
+    {
+      "ka": "AB",
+      "topic": "Adversarial Behaviours",
+      "keywords": ["Infrastructure attacks", "Multi-cell coordination", "APT tactics", "Physical + cyber attacks", "Insider threats", "Cover identities"]
+    },
+    {
+      "ka": "HF",
+      "topic": "Human Factors",
+      "keywords": ["Social engineering", "Cover identity maintenance", "Crisis decision-making", "Tactical choices", "Public disclosure ethics", "Operational security"]
+    },
+    {
+      "ka": "IR",
+      "topic": "Incident Response",
+      "keywords": ["Infrastructure incident response", "Attack mechanism analysis", "Multi-vector attack mitigation", "Crisis intervention", "Evidence collection"]
+    }
+  ]
+}