MISP
/
misp-objects
mirror of https://github.com/MISP/misp-objects
2
0
Fork 0
Code Issues Releases Wiki Activity

Merge pull request #3 from MISP/master 

Update
pull/92/head
eCrimeLabs 2018-04-10 15:57:18 +00:00 committed by GitHub
parent 448867f298 c8e9155a3e
commit 26a53b7b19
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 30 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
objects/file/definition.json
View File

@ -17,7 +17,8 @@
"tlsh", "tlsh",
"pattern-in-file", "pattern-in-file",
"x509-fingerprint-sha1", "x509-fingerprint-sha1",
"malware-sample" "malware-sample",
"path"
], ],
"attributes": { "attributes": {
"md5": { "md5": {
@ -124,6 +125,13 @@
"ui-priority": 1, "ui-priority": 1,
"misp-attribute": "filename" "misp-attribute": "filename"
}, },
"path": {
"description": "Path of the filename complete or partial",
"disable_correlation": true,
"multiple": true,
"ui-priority": 0,
"misp-attribute": "text"
},
"tlsh": { "tlsh": {
"description": "Fuzzy hash by Trend Micro: Locality Sensitive Hash", "description": "Fuzzy hash by Trend Micro: Locality Sensitive Hash",
"ui-priority": 0, "ui-priority": 0,
@ -156,7 +164,7 @@
] ]
} }
}, },
"version": 10, "version": 11,
"description": "File object describing a file with meta-information", "description": "File object describing a file with meta-information",
"meta-category": "file", "meta-category": "file",
"uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",

25
objects/ip-port/definition.json
View File

@ -3,6 +3,7 @@
"dst-port", "dst-port",
"src-port", "src-port",
"domain", "domain",
"hostname",
"ip" "ip"
], ],
"attributes": { "attributes": {
@ -40,7 +41,9 @@
"External analysis" "External analysis"
], ],
"ui-priority": 1, "ui-priority": 1,
"misp-attribute": "port" "misp-attribute": "port",
"disable_correlation": true,
"multiple": true
}, },
"domain": { "domain": {
"description": "Domain", "description": "Domain",
@ -49,7 +52,18 @@
"External analysis" "External analysis"
], ],
"ui-priority": 1, "ui-priority": 1,
"misp-attribute": "domain" "misp-attribute": "domain",
"multiple": true
},
"hostname": {
"description": "Hostname",
"categories": [
"Network activity",
"External analysis"
],
"ui-priority": 1,
"misp-attribute": "hostname",
"multiple": true
}, },
"ip": { "ip": {
"description": "IP Address", "description": "IP Address",
@ -58,11 +72,12 @@
"External analysis" "External analysis"
], ],
"ui-priority": 1, "ui-priority": 1,
"misp-attribute": "ip-dst" "misp-attribute": "ip-dst",
"multiple": true
} }
}, },
"version": 6, "version": 7,
"description": "An IP address (or domain) and a port seen as a tuple (or as a triple) in a specific time frame.", "description": "An IP address (or domain or hostname) and a port seen as a tuple (or as a triple) in a specific time frame.",
"meta-category": "network", "meta-category": "network",
"uuid": "9f8cea74-16fe-4968-a2b4-026676949ac6", "uuid": "9f8cea74-16fe-4968-a2b4-026676949ac6",
"name": "ip-port" "name": "ip-port"