2018-06-22 07:44:20 +02:00
|
|
|
{
|
|
|
|
"requiredOneOf": [
|
|
|
|
"message",
|
|
|
|
"datetime"
|
|
|
|
],
|
|
|
|
"attributes": {
|
|
|
|
"message": {
|
|
|
|
"description": "Informative message of the event",
|
|
|
|
"ui-priority": 0,
|
|
|
|
"misp-attribute": "text"
|
|
|
|
},
|
|
|
|
"timestamp": {
|
|
|
|
"description": "When the log entry was seen in microseconds since Unix epoch",
|
|
|
|
"ui-priority": 0,
|
2019-08-08 12:11:13 +02:00
|
|
|
"misp-attribute": "text"
|
2018-06-22 07:44:20 +02:00
|
|
|
},
|
|
|
|
"timestamp_desc": {
|
|
|
|
"description": "Text explaining what type of timestamp is it",
|
|
|
|
"ui-priority": 0,
|
|
|
|
"misp-attribute": "text"
|
|
|
|
},
|
|
|
|
"datetime": {
|
|
|
|
"description": "When the log entry was seen",
|
|
|
|
"ui-priority": 0,
|
|
|
|
"misp-attribute": "datetime"
|
|
|
|
}
|
|
|
|
},
|
2019-08-08 12:11:13 +02:00
|
|
|
"version": 3,
|
2018-06-22 07:44:20 +02:00
|
|
|
"description": "A timesketch timeline object based on mandatory field in timesketch to describe a log entry.",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"uuid": "06db0221-cbc0-4ffc-ad98-7f34549310f1",
|
|
|
|
"name": "timesketch-timeline"
|
|
|
|
}
|