From 73c246244830c6eb84b47ed49494f14ac1227699 Mon Sep 17 00:00:00 2001
From: Delta-Sierra <deborah.servili@gmail.com>
Date: Thu, 7 Jul 2022 15:17:34 +0200
Subject: [PATCH] Windows Scheduled Task Object - First draft

---
 objects/scheduled-task/definition.json | 103 +++++++++++++++++++++++++
 1 file changed, 103 insertions(+)
 create mode 100644 objects/scheduled-task/definition.json

diff --git a/objects/scheduled-task/definition.json b/objects/scheduled-task/definition.json
new file mode 100644
index 0000000..724cf24
--- /dev/null
+++ b/objects/scheduled-task/definition.json
@@ -0,0 +1,103 @@
+{
+  "attributes": {
+    "Start-time": {
+      "description": "Time when the task is triggered",
+      "misp-attribute": "datetime",
+      "multiple": true,
+      "ui-priority": 1
+    },
+    "author": {
+      "categories": [
+        "Other"
+      ],
+      "description": "Who created the task",
+      "misp-attribute": "text",
+      "ui-priority": 1
+    },
+    "description": {
+      "categories": [
+        "Other"
+      ],
+      "description": "Description of the task ",
+      "misp-attribute": "text",
+      "ui-priority": 1
+    },
+    "highest-privileges": {
+      "description": "Should the task run with the highest privileges",
+      "misp-attribute": "boolean",
+      "ui-priority": 0
+    },
+    "location": {
+      "categories": [
+        "Other"
+      ],
+      "description": "Location (Path) of the scheduled task on the computer",
+      "misp-attribute": "text",
+      "ui-priority": 1
+    },
+    "name": {
+      "categories": [
+        "Other"
+      ],
+      "description": "Name of the scheduled task",
+      "misp-attribute": "text",
+      "ui-priority": 1
+    },
+    "password-stored": {
+      "description": "Should the password be stored (Only if log on is not mandatory)",
+      "misp-attribute": "boolean",
+      "ui-priority": 0
+    },
+    "repeat": {
+      "categories": [
+        "Other"
+      ],
+      "description": "condition to repeat the task",
+      "misp-attribute": "text",
+      "ui-priority": 0
+    },
+    "run-when-user-logged-on-only": {
+      "description": "Should the task run if the user is logged on only",
+      "misp-attribute": "boolean",
+      "ui-priority": 0
+    },
+    "running-account": {
+      "categories": [
+        "Other"
+      ],
+      "description": "User account used when running the task",
+      "misp-attribute": "text",
+      "ui-priority": 0
+    },
+    "trigger": {
+      "categories": [
+        "Other"
+      ],
+      "description": "when should the task being triggered",
+      "misp-attribute": "text",
+      "multiple": true,
+      "sane_default": [
+        "On a schedule",
+        "At log on",
+        "At startup",
+        "On idle",
+        "On an event",
+        "At task creation/modification",
+        "On connection to user session",
+        "On disconnect from user session",
+        "On workstation lock",
+        "On workstation unlock"
+      ],
+      "ui-priority": 0
+    }
+  },
+  "description": "Windows scheduled task description",
+  "meta-category": "misc",
+  "name": "scheduled-task",
+  "requiredOneOf": [
+    "name",
+    "description"
+  ],
+  "uuid": "076f9362-23f7-4326-b370-a98e47531a44",
+  "version": 1
+}
\ No newline at end of file