diff --git a/objects/credential/definition.json b/objects/credential/definition.json new file mode 100644 index 0000000..4bec6d3 --- /dev/null +++ b/objects/credential/definition.json @@ -0,0 +1,75 @@ +{ + "requiredOneOf": [ + "password" + ], + "attributes": { + "text": { + "description": "A description of the credential(s)", + "disable_correlation": true, + "ui-priority": 1, + "misp-attribute": "text" + }, + "username": { + "description": "Username related to the password(s)", + "ui-priority": 1, + "misp-attribute": "text" + }, + "password": { + "description": "Password", + "multiple": true, + "ui-priority": 1, + "misp-attribute": "text" + }, + "type": { + "description": "Type of password(s)", + "ui-priority": 1, + "misp-attribute": "text", + "values_list": [ + "password", + "api-key", + "encryption-key", + "unknown" + ] + }, + "origin": { + "description": "Origin of the credential(s)", + "ui-priority": 1, + "misp-attribute": "text", + "values_list": [ + "bruteforce-scanning", + "malware-analysis", + "memory-analysis", + "network-analysis", + "leak", + "unknown" + ] + }, + "format": { + "description": "Format of the password(s)", + "ui-priority": 1, + "misp-attribute": "text", + "values_list": [ + "clear-text", + "hashed", + "encrypted", + "unknown" + ] + }, + "notification": { + "description": "Mention of any notification(s) towards the potential owner(s) of the credential(s)", + "ui-priority": 1, + "misp-attribute": "text", + "multiple": true, + "values_list": [ + "victim-notified", + "service-notified", + "none" + ] + } + }, + "version": 1, + "description": "Credential describes one or more credential(s) including password(s), api key(s) or decryption key(s).", + "meta-category": "misc", + "uuid": "a27e98c9-9b0e-414c-8076-d201e039ca09", + "name": "credential" +}