Merge pull request #80 from mbrg/79-technique-guest-user-access

i79 - Added Initial Access technique: Guest User Abuse

technique/guest_user_abuse.json

@@ -0,0 +1,22 @@
+{
+  "$id": "$gai-technique/guest_user_abuse",
+  "$schema": "../schema/technique.schema.json",
+  "$type": "technique",
+  "description": "The adversary could exploit misconfigurations related to guest user permissions in order to interact with the AI system. The platforms on which these AI systems reside typically aim to provide guest accounts with restricted access for specific tasks. However, if guest access is misconfigured, it could unintentionally grant more extensive permissions than originally intended - including privileges for AI systems interaction.",
+  "external_references": [],
+  "framework_references": [
+    {
+      "framework_id": "SAT1046",
+      "framework_name": "Guest User Abuse (saas-attacks)",
+      "href": "https://github.com/pushsecurity/saas-attacks/blob/main/techniques/guest_access_abuse/description.md"
+    }
+  ],
+  "name": "Guest User Abuse",
+  "object_references": [
+    {
+      "$id": "$gai-tactic/initial_access",
+      "$type": "tactic",
+      "description": "An adversary could leverage a guest user account as a foothold into the target environment."
+    }
+  ]
+}