chg: [cs-beacon-config] updated to add details requested by ShadowServer

2023-12-07 10:54:40 +01:00 · 2023-12-07 10:54:40 +01:00 · fcd2cf2445
parent 7f77dbe685
commit fcd2cf2445
1 changed files with 33 additions and 1 deletions
--- a/objects/cs-beacon-config/definition.json
+++ b/objects/cs-beacon-config/definition.json
@ -1,5 +1,11 @@
 {
  "attributes": {
+    "asn": {
+      "description": "Originating ASN for the CS Beacon Config",
+      "disable_correlation": true,
+      "misp-attribute": "AS",
+      "ui-priority": 0
+    },
    "c2": {
      "categories": [
        "Network activity"
@ -9,6 +15,18 @@
      "multiple": true,
      "ui-priority": 1
    },
+    "city": {
+      "description": "City location of the CS Beacon Config in question",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "ui-priority": 0
+    },
+    "geo": {
+      "description": "Country location of the CS Beacon Config",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "ui-priority": 0
+    },
    "ip": {
      "description": "IP of the C2",
      "misp-attribute": "ip-dst",
@ -36,6 +54,20 @@
      "misp-attribute": "md5",
      "ui-priority": 1
    },
+    "naics": {
+      "description": "North American Industry Classification System Code",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "multiple": true,
+      "ui-priority": 0
+    },
+    "sector": {
+      "description": "Sector of for the CS Beacon Config in question",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "multiple": true,
+      "ui-priority": 0
+    },
    "sha1": {
      "categories": [
        "Payload delivery"
@ -80,5 +112,5 @@
    "watermark"
  ],
  "uuid": "d17355ef-ca1f-4b5a-86cd-65d877991f54",
-  "version": 2
+  "version": 3
 }