2020-01-29 03:24:04 +01:00
|
|
|
{
|
|
|
|
"requiredOneOf": [
|
2020-02-03 02:08:44 +01:00
|
|
|
"post",
|
|
|
|
"archive",
|
|
|
|
"url",
|
2020-02-06 10:57:44 +01:00
|
|
|
"link"
|
2020-01-29 03:24:04 +01:00
|
|
|
],
|
|
|
|
"attributes": {
|
|
|
|
"post": {
|
|
|
|
"description": "Raw post.",
|
|
|
|
"ui-priority": 1,
|
|
|
|
"misp-attribute": "text"
|
|
|
|
},
|
2020-01-30 03:55:26 +01:00
|
|
|
"title": {
|
2020-01-30 20:08:19 +01:00
|
|
|
"description": "Title of blog post.",
|
2020-01-30 03:55:26 +01:00
|
|
|
"ui-priority": 1,
|
|
|
|
"misp-attribute": "text"
|
|
|
|
},
|
2020-01-29 03:24:04 +01:00
|
|
|
"url": {
|
|
|
|
"description": "Original URL location of the blog post (potentially malicious).",
|
|
|
|
"ui-priority": 1,
|
|
|
|
"misp-attribute": "url"
|
|
|
|
},
|
|
|
|
"link": {
|
|
|
|
"description": "Original link into the blog post (Supposed harmless).",
|
|
|
|
"ui-priority": 1,
|
|
|
|
"misp-attribute": "link"
|
|
|
|
},
|
2020-01-30 20:08:19 +01:00
|
|
|
"archive": {
|
|
|
|
"description": "Archive of the original document (Internet Archive, Archive.is, etc).",
|
|
|
|
"ui-priority": 1,
|
|
|
|
"multiple": true,
|
|
|
|
"misp-attribute": "link"
|
|
|
|
},
|
2020-01-29 03:24:04 +01:00
|
|
|
"type": {
|
|
|
|
"description": "Type of blog post.",
|
|
|
|
"ui-priority": 1,
|
|
|
|
"misp-attribute": "text",
|
|
|
|
"disable_correlation": true,
|
|
|
|
"sane_default": [
|
|
|
|
"Medium",
|
|
|
|
"WordPress",
|
|
|
|
"Blogger",
|
|
|
|
"Tumbler",
|
|
|
|
"LiveJournal",
|
|
|
|
"Forum",
|
|
|
|
"Other"
|
|
|
|
]
|
|
|
|
},
|
|
|
|
"username": {
|
|
|
|
"description": "Username who posted the blog post.",
|
|
|
|
"ui-priority": 0,
|
|
|
|
"misp-attribute": "text"
|
|
|
|
},
|
|
|
|
"verified-username": {
|
|
|
|
"description": "Is the username account verified by the operator of the blog platform.",
|
|
|
|
"ui-priority": 0,
|
|
|
|
"misp-attribute": "text",
|
|
|
|
"disable_correlation": true,
|
|
|
|
"values_list": [
|
|
|
|
"Verified",
|
|
|
|
"Unverified",
|
|
|
|
"Unknown"
|
|
|
|
]
|
|
|
|
},
|
|
|
|
"creation-date": {
|
|
|
|
"description": "Initial creation of the blog post.",
|
|
|
|
"ui-priority": 0,
|
|
|
|
"misp-attribute": "datetime"
|
|
|
|
},
|
|
|
|
"modification-date": {
|
|
|
|
"description": "Last update of the blog post.",
|
|
|
|
"ui-priority": 0,
|
|
|
|
"misp-attribute": "datetime"
|
|
|
|
},
|
|
|
|
"embedded-link": {
|
|
|
|
"description": "Site linked by the blog post.",
|
|
|
|
"ui-priority": 0,
|
|
|
|
"misp-attribute": "url",
|
|
|
|
"multiple": true
|
|
|
|
},
|
|
|
|
"embedded-safe-link": {
|
|
|
|
"description": "Safe site linked by the blog post.",
|
|
|
|
"ui-priority": 0,
|
|
|
|
"misp-attribute": "link",
|
|
|
|
"multiple": true
|
|
|
|
},
|
|
|
|
"removal-date": {
|
|
|
|
"description": "When the blog post was removed.",
|
|
|
|
"ui-priority": 0,
|
|
|
|
"misp-attribute": "datetime"
|
|
|
|
},
|
|
|
|
"username-quoted": {
|
|
|
|
"description": "Username who are quoted into the blog post.",
|
|
|
|
"ui-priority": 0,
|
|
|
|
"multiple": true,
|
|
|
|
"misp-attribute": "text"
|
|
|
|
}
|
|
|
|
},
|
2020-02-03 02:08:44 +01:00
|
|
|
"version": 14,
|
2020-01-29 03:24:04 +01:00
|
|
|
"description": "Blog post like Medium or WordPress.",
|
|
|
|
"meta-category": "misc",
|
|
|
|
"uuid": "1f165fc0-b158-498f-8bc8-6dc3d2822bb1",
|
|
|
|
"name": "blog"
|
|
|
|
}
|