MISP
/
misp-objects
mirror of https://github.com/MISP/misp-objects
2
0
Fork 0
Code Issues Releases Wiki Activity

ui-priority

pull/17/head
Alexandre Dulaunoy 2017-07-03 16:44:39 +02:00
parent a0a922ee61
commit 60ebdfc3e7
1 changed files with 22 additions and 22 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

44
objects/r2graphity/definition.json
View File

@ -21,132 +21,132 @@
"callback-average": { "callback-average": {
"description": "Average size of a callback", "description": "Average size of a callback",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"callbacks": { "callbacks": {
"description": "Amount of callbacks (functions started as thread)", "description": "Amount of callbacks (functions started as thread)",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"shortest-path-to-create-thread": { "shortest-path-to-create-thread": {
"description": "Shortest path to the first time the binary calls CreateThread", "description": "Shortest path to the first time the binary calls CreateThread",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"create-thread": { "create-thread": {
"description": "Amount of calls to CreateThread", "description": "Amount of calls to CreateThread",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"memory-allocations": { "memory-allocations": {
"description": "Amount of memory allocations", "description": "Amount of memory allocations",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"get-proc-address": { "get-proc-address": {
"description": "Amount of calls to GetProcAddress", "description": "Amount of calls to GetProcAddress",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"dangling-strings": { "dangling-strings": {
"description": "Amount of dangling strings (string with a code cross reference, that is not within a function. Radare2 failed to detect that function.)", "description": "Amount of dangling strings (string with a code cross reference, that is not within a function. Radare2 failed to detect that function.)",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"referenced-strings": { "referenced-strings": {
"description": "Amount of referenced strings", "description": "Amount of referenced strings",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"callback-largest": { "callback-largest": {
"description": "Largest callback", "description": "Largest callback",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"gml": { "gml": {
"description": "Graph export in G>raph Modelling Language format", "description": "Graph export in G>raph Modelling Language format",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "attachment" "misp-attribute": "attachment"
}, },
"r2-commit-version": { "r2-commit-version": {
"description": "Radare2 commit ID used to generate this object", "description": "Radare2 commit ID used to generate this object",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "text" "misp-attribute": "text"
}, },
"text": { "text": {
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 1, "ui-priority": 1,
"misp-attribute": "text" "misp-attribute": "text"
}, },
"miss-api": { "miss-api": {
"description": "Amount of API call reference that does not resolve to a function offset", "description": "Amount of API call reference that does not resolve to a function offset",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"total-api": { "total-api": {
"description": "Total amount of API calls", "description": "Total amount of API calls",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"unknown-references": { "unknown-references": {
"description": "Amount of API calls not ending in a function (Radare2 bug, probalby)", "description": "Amount of API calls not ending in a function (Radare2 bug, probalby)",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"refsglobalvar": { "refsglobalvar": {
"description": "Amount of API calls outside of code section (glob var, dynamic API)", "description": "Amount of API calls outside of code section (glob var, dynamic API)",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"local-references": { "local-references": {
"description": "Amount of API calls inside a code section", "description": "Amount of API calls inside a code section",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"total-functions": { "total-functions": {
"description": "Total amount of functions in the file.", "description": "Total amount of functions in the file.",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"not-referenced-strings": { "not-referenced-strings": {
"description": "Amount of not referenced strings", "description": "Amount of not referenced strings",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "counter" "misp-attribute": "counter"
}, },
"ratio-functions": { "ratio-functions": {
"description": "Ratio: amount of functions per kilobyte of code section", "description": "Ratio: amount of functions per kilobyte of code section",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "float" "misp-attribute": "float"
}, },
"ratio-api": { "ratio-api": {
"description": "Ratio: amount of API calls per kilobyte of code section", "description": "Ratio: amount of API calls per kilobyte of code section",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "float" "misp-attribute": "float"
}, },
"ratio-string": { "ratio-string": {
"description": "Ratio: amount of referenced strings per kilobyte of code section", "description": "Ratio: amount of referenced strings per kilobyte of code section",
"disable_correlation": true, "disable_correlation": true,
"ui-frequency": 0, "ui-priority": 0,
"misp-attribute": "float" "misp-attribute": "float"
} }
}, },