2018-10-25 17:31:36 +02:00
|
|
|
{
|
|
|
|
"attributes": {
|
2020-04-26 02:10:02 +02:00
|
|
|
"comment": {
|
|
|
|
"description": "Additional comments.",
|
|
|
|
"disable_correlation": true,
|
|
|
|
"misp-attribute": "text",
|
|
|
|
"ui-priority": 0
|
|
|
|
},
|
2018-10-25 17:31:36 +02:00
|
|
|
"computer-name": {
|
|
|
|
"description": "name of the computer under analysis",
|
2020-04-26 02:10:02 +02:00
|
|
|
"misp-attribute": "text",
|
|
|
|
"ui-priority": 0
|
|
|
|
},
|
|
|
|
"fDenyTSConnections:": {
|
|
|
|
"description": "Specifies whether remote connections are enabled or disabled on the system.",
|
|
|
|
"disable_correlation": true,
|
|
|
|
"misp-attribute": "boolean",
|
2021-12-20 21:02:29 +01:00
|
|
|
"sane_default": [
|
|
|
|
"True",
|
|
|
|
"False"
|
|
|
|
],
|
2020-04-26 02:10:02 +02:00
|
|
|
"ui-priority": 0
|
2018-10-25 17:31:36 +02:00
|
|
|
},
|
|
|
|
"last-write-time": {
|
|
|
|
"description": "Date and time when the key was last updated.",
|
2020-04-26 02:10:02 +02:00
|
|
|
"disable_correlation": true,
|
2018-10-25 17:31:36 +02:00
|
|
|
"misp-attribute": "datetime",
|
2020-04-26 02:10:02 +02:00
|
|
|
"ui-priority": 0
|
2018-10-25 17:31:36 +02:00
|
|
|
},
|
|
|
|
"shutdown-time": {
|
|
|
|
"description": "Date and time when the system was shutdown.",
|
2020-04-26 02:10:02 +02:00
|
|
|
"disable_correlation": true,
|
2018-10-25 17:31:36 +02:00
|
|
|
"misp-attribute": "datetime",
|
2020-04-26 02:10:02 +02:00
|
|
|
"ui-priority": 0
|
2018-10-25 17:31:36 +02:00
|
|
|
},
|
|
|
|
"timezone-bias": {
|
|
|
|
"description": "Offset in minutes from UTC. Offset added to the local time to get a UTC value.",
|
2020-04-26 02:10:02 +02:00
|
|
|
"disable_correlation": true,
|
2018-10-25 17:31:36 +02:00
|
|
|
"misp-attribute": "text",
|
2020-04-26 02:10:02 +02:00
|
|
|
"ui-priority": 0
|
2018-10-25 17:31:36 +02:00
|
|
|
},
|
2020-04-26 02:10:02 +02:00
|
|
|
"timezone-daylight-bias": {
|
|
|
|
"description": "value in minutes to be added to the value of timezone-bias to generate the bias used during daylight time.",
|
|
|
|
"disable_correlation": true,
|
2018-10-25 17:31:36 +02:00
|
|
|
"misp-attribute": "text",
|
2020-04-26 02:10:02 +02:00
|
|
|
"ui-priority": 0
|
2018-10-25 17:31:36 +02:00
|
|
|
},
|
2020-04-26 02:10:02 +02:00
|
|
|
"timezone-daylight-date": {
|
|
|
|
"description": "Daylight date - daylight saving months",
|
|
|
|
"disable_correlation": true,
|
2018-10-25 17:31:36 +02:00
|
|
|
"misp-attribute": "datetime",
|
2020-04-26 02:10:02 +02:00
|
|
|
"ui-priority": 0
|
2018-10-25 17:31:36 +02:00
|
|
|
},
|
|
|
|
"timezone-daylight-name": {
|
|
|
|
"description": "Timezone name used during daylight saving months.",
|
2020-04-26 02:10:02 +02:00
|
|
|
"disable_correlation": true,
|
2018-10-25 17:31:36 +02:00
|
|
|
"misp-attribute": "text",
|
2020-04-26 02:10:02 +02:00
|
|
|
"ui-priority": 0
|
2018-10-25 17:31:36 +02:00
|
|
|
},
|
2020-04-26 02:10:02 +02:00
|
|
|
"timezone-last-write-time": {
|
|
|
|
"description": "Date and time when the timezone key was last updated.",
|
|
|
|
"disable_correlation": true,
|
2018-10-25 17:31:36 +02:00
|
|
|
"misp-attribute": "datetime",
|
2020-04-26 02:10:02 +02:00
|
|
|
"ui-priority": 0
|
2018-10-25 17:31:36 +02:00
|
|
|
},
|
2020-04-26 02:10:02 +02:00
|
|
|
"timezone-standard-bias": {
|
|
|
|
"description": "value in minutes to be added to the value of timezone-bias to generate the bias used during standard time.",
|
|
|
|
"disable_correlation": true,
|
2018-10-25 17:31:36 +02:00
|
|
|
"misp-attribute": "text",
|
2020-04-26 02:10:02 +02:00
|
|
|
"ui-priority": 0
|
2018-10-25 17:31:36 +02:00
|
|
|
},
|
2020-04-26 02:10:02 +02:00
|
|
|
"timezone-standard-date": {
|
|
|
|
"description": "Standard date - non daylight saving months",
|
|
|
|
"disable_correlation": true,
|
|
|
|
"misp-attribute": "datetime",
|
|
|
|
"ui-priority": 0
|
2018-10-25 17:31:36 +02:00
|
|
|
},
|
2020-04-26 02:10:02 +02:00
|
|
|
"timezone-standard-name": {
|
|
|
|
"description": "Timezone standard name used during non-daylight saving months.",
|
|
|
|
"disable_correlation": true,
|
2019-05-01 21:11:30 +02:00
|
|
|
"misp-attribute": "text",
|
2020-04-26 02:10:02 +02:00
|
|
|
"ui-priority": 0
|
2018-10-25 17:31:36 +02:00
|
|
|
}
|
|
|
|
},
|
|
|
|
"description": "Regripper Object template designed to present general system properties extracted from the system-hive.",
|
|
|
|
"meta-category": "misc",
|
2020-04-26 02:10:02 +02:00
|
|
|
"name": "regripper-system-hive-general-configuration",
|
|
|
|
"required": [
|
|
|
|
"computer-name"
|
|
|
|
],
|
2018-10-25 17:31:36 +02:00
|
|
|
"uuid": "5ac85401-cbf1-4d05-a85e-1784546881e4",
|
2021-12-20 21:02:29 +01:00
|
|
|
"version": 3
|
2020-04-26 02:10:02 +02:00
|
|
|
}
|