From 1c4933c1ce7a148f0479b6d81356a243b23bc443 Mon Sep 17 00:00:00 2001 From: Thomas Gardner Date: Tue, 24 Oct 2017 10:23:46 -0400 Subject: [PATCH] disabled AV software correlation and re-ran jq-all-the-things --- objects/av-signature/definition.json | 91 +++++++++---------- objects/virustotal-report/definition.json | 104 +++++++++++----------- 2 files changed, 98 insertions(+), 97 deletions(-) diff --git a/objects/av-signature/definition.json b/objects/av-signature/definition.json index 0a53c4a..345f887 100644 --- a/objects/av-signature/definition.json +++ b/objects/av-signature/definition.json @@ -1,47 +1,48 @@ { - "required": [ - "software", - "signature" - ], - "attributes": { - "software": { - "description": "Name of antivirus software", - "categories": [ - "Antivirus detection" - ], - "ui-priority": 1, - "misp-attribute": "text" - }, - "signature": { - "description": "Name of detection signature", - "categories": [ - "Antivirus detection" - ], - "ui-priority": 2, - "misp-attribute": "text" - }, - "text": { - "description": "Free text value to attach to the file", - "disable_correlation": true, - "categories": [ - "Other" - ], - "ui-priority": 0, - "misp-attribute": "text" - }, - "datetime": { - "description": "Datetime", - "disable_correlation": true, - "categories": [ - "Other" - ], - "ui-priority": 0, - "misp-attribute": "datetime" - } + "required": [ + "software", + "signature" + ], + "attributes": { + "software": { + "description": "Name of antivirus software", + "disable_correlation": true, + "categories": [ + "Antivirus detection" + ], + "ui-priority": 1, + "misp-attribute": "text" }, - "version": 1, - "description": "Antivirus detection signature", - "meta-category": "misc", - "uuid": "4dbb56ef-4763-4c97-8696-a2bfc305cf8e", - "name": "av-signature" -} \ No newline at end of file + "signature": { + "description": "Name of detection signature", + "categories": [ + "Antivirus detection" + ], + "ui-priority": 2, + "misp-attribute": "text" + }, + "text": { + "description": "Free text value to attach to the file", + "disable_correlation": true, + "categories": [ + "Other" + ], + "ui-priority": 0, + "misp-attribute": "text" + }, + "datetime": { + "description": "Datetime", + "disable_correlation": true, + "categories": [ + "Other" + ], + "ui-priority": 0, + "misp-attribute": "datetime" + } + }, + "version": 1, + "description": "Antivirus detection signature", + "meta-category": "misc", + "uuid": "4dbb56ef-4763-4c97-8696-a2bfc305cf8e", + "name": "av-signature" +} diff --git a/objects/virustotal-report/definition.json b/objects/virustotal-report/definition.json index 43a2c8d..5dee6ab 100644 --- a/objects/virustotal-report/definition.json +++ b/objects/virustotal-report/definition.json @@ -1,54 +1,54 @@ { - "required": [ - "permalink" - ], - "attributes": { - "community-score": { - "description": "Community Score", - "disable_correlation": true, - "categories": [ - "External analysis" - ], - "ui-priority": 0, - "misp-attribute": "text" - }, - "detection-ratio": { - "description": "Detection Ratio", - "disable_correlation": true, - "categories": [ - "External analysis" - ], - "ui-priority": 1, - "misp-attribute": "text" - }, - "first-submission": { - "description": "First Submission", - "categories": [ - "Other" - ], - "ui-priority": 0, - "misp-attribute": "datetime" - }, - "last-submission": { - "description": "Last Submission", - "categories": [ - "Other" - ], - "ui-priority": 0, - "misp-attribute": "datetime" - }, - "permalink": { - "description": "Permalink Reference", - "categories": [ - "External analysis" - ], - "ui-priority": 2, - "misp-attribute": "link" - } + "required": [ + "permalink" + ], + "attributes": { + "community-score": { + "description": "Community Score", + "disable_correlation": true, + "categories": [ + "External analysis" + ], + "ui-priority": 0, + "misp-attribute": "text" }, - "version": 1, - "description": "VirusTotal report", - "meta-category": "misc", - "uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", - "name": "virustotal-report" -} \ No newline at end of file + "detection-ratio": { + "description": "Detection Ratio", + "disable_correlation": true, + "categories": [ + "External analysis" + ], + "ui-priority": 1, + "misp-attribute": "text" + }, + "first-submission": { + "description": "First Submission", + "categories": [ + "Other" + ], + "ui-priority": 0, + "misp-attribute": "datetime" + }, + "last-submission": { + "description": "Last Submission", + "categories": [ + "Other" + ], + "ui-priority": 0, + "misp-attribute": "datetime" + }, + "permalink": { + "description": "Permalink Reference", + "categories": [ + "External analysis" + ], + "ui-priority": 2, + "misp-attribute": "link" + } + }, + "version": 1, + "description": "VirusTotal report", + "meta-category": "misc", + "uuid": "d7dd0154-e04f-4c34-a2fb-79f3a3a52aa4", + "name": "virustotal-report" +}