Commit Graph

367 Commits (061c0ae2223fdfb4fb0563b704f15821fd72347d)

Author SHA1 Message Date
Alexandre Dulaunoy 061c0ae222
add: Common Alerting Protocol Version (CAP) object templates 2018-02-09 07:38:41 +01:00
Alexandre Dulaunoy 3d2091b33c
fix: use new attribute type mime-type instead of text 2018-02-09 07:34:58 +01:00
Alexandre Dulaunoy 1c8a5031f7
Merge branch 'master' of github.com:MISP/misp-objects 2018-02-08 11:55:19 +01:00
Alexandre Dulaunoy b4d433a845
add: Common Alerting Protocol Version (CAP) resource object 2018-02-08 11:53:05 +01:00
Alexandre Dulaunoy 64f9c60ae6
Merge pull request #78 from chrisr3d/master
Transaction Object definition and readme file updated
2018-02-08 08:06:35 +01:00
Alexandre Dulaunoy 857065e0e8
Merge branch 'master' of github.com:MISP/misp-objects 2018-02-08 08:05:53 +01:00
Alexandre Dulaunoy 49f78f067d
add: Common Alerting Protocol Version (CAP) info object 2018-02-08 07:45:41 +01:00
chrisr3d 9ad2b50895
Updated description and readme 2018-02-07 17:26:09 +01:00
Alexandre Dulaunoy 4f80aee4d3
Merge pull request #76 from chrisr3d/master
Transaction object, first version
2018-02-07 16:26:01 +01:00
chrisr3d 416c91fd5d Merge branch 'master' of github.com:MISP/misp-objects 2018-02-07 15:43:40 +01:00
chrisr3d ad8e01d4c5
Transaction object 2018-02-07 15:36:37 +01:00
Alexandre Dulaunoy 3161533692
fix: trailing dot removed 2018-02-07 14:54:15 +01:00
Alexandre Dulaunoy e1258cd2f7
Common Alerting Protocol Version (CAP) alert object 2018-02-07 14:46:09 +01:00
Alexandre Dulaunoy f03b7549bc
Merge pull request #75 from chrisr3d/master
legal-entity object
2018-02-06 16:11:40 +01:00
chrisr3d fd74fac62b
Fixed disable_correlation variable type 2018-02-06 15:36:57 +01:00
chrisr3d 7966c58db9
typo 2018-02-06 15:06:20 +01:00
chrisr3d d250e62546
Added additional attributes 2018-02-06 14:19:04 +01:00
chrisr3d 6b98de1c86
Updated readme 2018-02-05 17:26:13 +01:00
chrisr3d 77b4f07fda Merge branch 'master' of github.com:MISP/misp-objects 2018-02-05 17:22:37 +01:00
chrisr3d 573873db3b
First version of the legal-entity object 2018-02-05 17:20:39 +01:00
Alexandre Dulaunoy 995db70a22
Merge pull request #74 from chrisr3d/master
Updated person & geolocation objects
2018-02-05 16:43:53 +01:00
chrisr3d b92d92764b
description typo 2018-02-05 16:10:23 +01:00
chrisr3d c11c4a28ab
chg: Added address and zip code attributes 2018-02-05 14:19:58 +01:00
chrisr3d f169fbee36
chg: updated name of the new attribute 2018-02-05 14:18:21 +01:00
chrisr3d b09f0453ab
chg: Added identity card number 2018-02-05 09:26:50 +01:00
Alexandre Dulaunoy 41b0d33ab3
fix: improve ip-port object to add domain instead of IP address 2018-01-31 15:05:55 +01:00
Alexandre Dulaunoy c57b9b867c
fix: increment version of the MISP email object 2018-01-30 08:59:41 +01:00
Alexandre Dulaunoy b736a63170
Merge pull request #73 from d-lord/master
Add email-body to the email object definition
2018-01-30 08:48:00 +01:00
David Lord 8d7e3b34a7
Add email-body to the email object definition 2018-01-30 10:12:53 +10:00
Alexandre Dulaunoy 619c35ea0f
fix: sandbox report 2018-01-29 08:24:40 +01:00
Alexandre Dulaunoy cab597afb2
fix: sandbox signature added. 2018-01-29 07:47:19 +01:00
Alexandre Dulaunoy 2f53450e49
fix: sandbox report object added in the list 2018-01-29 07:46:13 +01:00
Alexandre Dulaunoy 16f01d62a8
add: bank-account added in the list 2018-01-29 07:44:37 +01:00
Alexandre Dulaunoy f91929738b
add: an object describing bank account information based on account description from goAML 4.0.
A generic bank account partially based on the goAML 4.0 standard.
The bank account alone can convey information regarding the type
of transactions seen or suspected which allow to use the object alone
without the need to describe the full list of transactions.

Additional objects could be created like report, transactions and like
to fully support AML.

The existing person in MISP objects was previously updated to include
the field missing from AML.

A potential evolution is based on the transaction status which can
be described as a simple relationship between MISP objects like:

Bought, Sold, Let, Hired, Exchanged, Donated, Destroyed and Other
2018-01-29 07:42:30 +01:00
Alexandre Dulaunoy bd508a3455
fix: Passive DNS records especially on the disabled_correlation fields 2018-01-25 15:07:19 +01:00
Raphaël Vinot 333f9a46e4 fix: Make the schema happy. 2018-01-23 10:46:15 +01:00
Raphaël Vinot 338f7ac85e Merge branch 'LDO-CERT-master' 2018-01-23 10:43:52 +01:00
Raphaël Vinot 8c178fd837 fix: Make JQ happy. 2018-01-23 10:43:36 +01:00
garanews 0f3b8195f5 sandbox-signature
Added object sb-signature
2018-01-23 10:12:07 +01:00
Alexandre Dulaunoy 90e72d5895
fix: person object updated to match AML client record + various fixes 2018-01-22 14:16:46 +01:00
Alexandre Dulaunoy cd528865bb
add: Object to describe mutual exclusion locks (mutex) as seen in memory or computer program 2018-01-22 13:34:33 +01:00
Alexandre Dulaunoy c75015e1a6
fix: registry-key updated 2018-01-18 13:49:03 +01:00
Alexandre Dulaunoy c04d56d7cd
remove registry hive because registry-key is enough 2018-01-18 13:47:57 +01:00
Alexandre Dulaunoy 94cfc57e16
add: registry-hive object describing a Windows registry hive including key, subkey and
value (and associated data if any)
2018-01-18 12:54:01 +01:00
Alexandre Dulaunoy 90475bcf9c
fix: We are in 2018 2018-01-14 23:40:32 +01:00
Alexandre Dulaunoy 21e58b3ddf
Merge pull request #68 from yodresh/patch-1
Update SS7-attack definition.json
2018-01-11 12:26:40 +01:00
Alexandre De Oliveira 1b42b02c99
Update definition.json
Adding the multiple possibility for SMSC GT to cover SMS Spaming case. Also text field for multiple details if needed.
Adding "MapSmsText" attribute to help matching malicious URL, keywords or MSISDN inside SMS.
2018-01-11 11:52:11 +01:00
Alexandre Dulaunoy 2edd725466
Merge pull request #66 from c-goes/sandbox_report_object
added sandbox-report object
2018-01-09 12:02:33 +01:00
c-goes f92eb6e1b7 added sandbox-report object 2018-01-08 17:28:21 +01:00
Alexandre Dulaunoy 735ebf26bc
fix: annotation object 2018-01-08 11:47:19 +01:00