MISP
/
misp-objects
mirror of https://github.com/MISP/misp-objects
2
0
Fork 0
Code Issues Releases Wiki Activity

add: missing timesketch-timeline object template

pull/107/head
Alexandre Dulaunoy 2018-06-22 07:44:20 +02:00
parent d9a616095a
commit 3b21125acd
No known key found for this signature in database
GPG Key ID: 09E2CD4944E6CBCD
1 changed files with 33 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

33
objects/timesketch-timeline/definition.json Normal file
View File

@ -0,0 +1,33 @@
{
"requiredOneOf": [
"message",
"datetime"
],
"attributes": {
"message": {
"description": "Informative message of the event",
"ui-priority": 0,
"misp-attribute": "text"
},
"timestamp": {
"description": "When the log entry was seen in microseconds since Unix epoch",
"ui-priority": 0,
"misp-attribute": "timestamp-microsec"
},
"timestamp_desc": {
"description": "Text explaining what type of timestamp is it",
"ui-priority": 0,
"misp-attribute": "text"
},
"datetime": {
"description": "When the log entry was seen",
"ui-priority": 0,
"misp-attribute": "datetime"
}
},
"version": 2,
"description": "A timesketch timeline object based on mandatory field in timesketch to describe a log entry.",
"meta-category": "misc",
"uuid": "06db0221-cbc0-4ffc-ad98-7f34549310f1",
"name": "timesketch-timeline"
}