diff --git a/objects/command-line/definition.json b/objects/command-line/definition.json index f80dd52..678a34f 100644 --- a/objects/command-line/definition.json +++ b/objects/command-line/definition.json @@ -1,20 +1,35 @@ { "attributes": { + "command_line": { + "description": "command code line", + "misp-attribute": "text", + "multiple": true, + "ui-priority": 1 + }, "description": { "description": "description of the command", "misp-attribute": "text", "ui-priority": 1 }, - "value": { - "description": "command code", + "software": { + "description": "type of shell (bash/sh,powershell,cmd.exe)", "misp-attribute": "text", - "multiple": true, + "sane_default": [ + "Shell", + "Bash", + "zsh", + "Powershell", + "cmd.exe" + ], "ui-priority": 1 } }, "description": "Command line and options related to a specific command executed by a program, whether it is malicious or not.", "meta-category": "misc", "name": "command-line", + "required": [ + "command_line" + ], "uuid": "88ebe222-d3cc-11e9-875d-7f13f460adaf", - "version": 1 + "version": 2 } \ No newline at end of file