new: [attribute type] kusto-query attribute type

Kusto query is the query language for the Kusto services in Azure used to search large dataset. It's used in Windows Defender ATP Hunting-Queries and also Azure Sentinel (Cloud-native SIEM).
2019-12-28 15:30:39 +01:00 · 2019-12-28 15:30:39 +01:00 · 2d5e729025
parent cb715c5d7e
commit 2d5e729025
1 changed files with 6 additions and 0 deletions
--- a/pymisp/data/describeTypes.json
+++ b/pymisp/data/describeTypes.json
@ -54,6 +54,7 @@
        "hex",
        "impfuzzy",
        "imphash",
+        "kusto-query",
        "malware-sample",
        "md5",
        "mime-type",
@ -779,6 +780,10 @@
        "default_category": "Social network",
        "to_ids": 0
      },
+      "kusto-query": {
+        "default_category": "Artifacts dropped",
+        "to_ids": 0
+      },
      "last-name": {
        "default_category": "Person",
        "to_ids": 0
@ -1183,6 +1188,7 @@
      "issue-date-of-the-visa",
      "ja3-fingerprint-md5",
      "jabber-id",
+      "kusto-query",
      "last-name",
      "link",
      "mac-address",