Alexandre Dulaunoy
0e409294c0
fix: port is used instead of text type
2017-09-13 17:26:59 +02:00
Alexandre Dulaunoy
579e851f5e
port type instead of text
2017-09-13 16:42:15 +02:00
Raphaël Vinot
96db4ae070
Disable some correlations
2017-09-11 16:08:03 +02:00
Alexandre Dulaunoy
3bef07bfbb
Be consistent and use hyphen everywhere (not more underscore).
...
Thanks to Terry MacDonald
2017-09-07 15:43:41 +02:00
Alexandre Dulaunoy
d75325fd6d
Feedback from David added (two new relationships - triggers and detected_as)
2017-09-07 15:32:15 +02:00
Alexandre Dulaunoy
50fe0c2993
Updated following Andras feedback
2017-09-06 16:13:35 +02:00
Alexandre Dulaunoy
8814be9527
yabin updated following Andras feedback
2017-09-06 16:13:02 +02:00
Alexandre Dulaunoy
317fd559d6
first version of a yabin object
2017-09-06 16:04:37 +02:00
Alexandre Dulaunoy
0c95f5e3cc
Relationships added to the documentation export
2017-09-06 07:51:02 +02:00
Alexandre Dulaunoy
60f6c15655
Typo fixed
2017-08-29 22:02:10 +02:00
Raphaël Vinot
0445ebd350
Add descriptions in all the objects
2017-08-29 18:36:46 +02:00
Raphaël Vinot
b16cdaa137
Merge branch 'master' of github.com:MISP/misp-objects
2017-08-29 13:26:26 +02:00
Raphaël Vinot
9a3974f383
Update definitions of binaries
2017-08-29 13:25:58 +02:00
Alexandre Dulaunoy
2658e00c04
First version of a documentation generator tool
2017-08-29 11:16:59 +02:00
Raphaël Vinot
9da5eaed35
Merge branch 'master' of github.com:MISP/misp-objects
2017-08-29 10:24:27 +02:00
Raphaël Vinot
314ff6c953
Remove pipe from PE object def
2017-08-29 10:24:18 +02:00
Alexandre Dulaunoy
99dcc88e22
phone object added
2017-08-28 20:16:37 +02:00
Raphaël Vinot
d34dd5fb60
Allow multiple entries of type flag in the ELFSection object
2017-08-27 17:49:53 +02:00
Alexandre Dulaunoy
66e7397397
phone defintion fixed
2017-08-27 08:30:58 +02:00
Alexandre Dulaunoy
73a75d6c72
typo fixed
2017-08-27 08:18:26 +02:00
Alexandre Dulaunoy
41f3792b49
first version of a mobile phone object
2017-08-27 08:16:58 +02:00
Alexandre Dulaunoy
afa08ffb4b
calls relationship type added
2017-08-26 21:50:00 +02:00
Alexandre Dulaunoy
2b913c848d
Mach object file format added
2017-08-26 21:44:49 +02:00
Raphaël Vinot
fc6d54f93b
Merge branch 'master' of github.com:MISP/misp-objects
2017-08-25 15:54:53 +02:00
Raphaël Vinot
7c3aaa30c2
Update ELF definitions, add MachO.
2017-08-25 15:52:32 +02:00
Alexandre Dulaunoy
a002f36de2
New relationship types added
2017-08-24 09:47:28 +02:00
Alexandre Dulaunoy
2345a33740
some more relationship type
2017-08-23 17:17:56 +02:00
Raphaël Vinot
96d7aeb072
Merge branch 'master' of github.com:MISP/misp-objects
2017-08-23 11:01:56 +02:00
Raphaël Vinot
49cd96aa2b
Add mimetype to file object template
2017-08-23 11:01:48 +02:00
Alexandre Dulaunoy
30c4cea1f9
relationships types added + target MISP version
2017-08-14 22:07:09 +02:00
Alexandre Dulaunoy
01a23c205c
Often used relationships added used for malware analysis
2017-08-13 10:41:10 +02:00
Alexandre Dulaunoy
6ff2aad063
Keep it consistent.
2017-08-12 14:20:21 +02:00
Alexandre Dulaunoy
e455b17868
fix: communicate-with relationship added
2017-08-12 10:35:40 +02:00
Raphaël Vinot
dc1dce796e
Add schema for relationships
2017-08-11 12:19:52 +02:00
Alexandre Dulaunoy
ba3c888af8
Make relationship type more generic
...
Make the relationship types more generic especially to avoid issue
with community-designed standards that might change later the types,
broke compatibility or decide to change their mind due to some
proprietary vendors trying to lock-in the users.
2017-08-11 11:22:16 +02:00
Alexandre Dulaunoy
7573465e74
First version of the types of relationships for MISP objects
...
Relationship type can be from existing STIX 2.0 ones, MISP
relationships or other proposed by the community. Please be
careful that a relationship type can influence the ability
of export of MISP events if the type is not supported by
the target format.
2017-08-11 10:52:02 +02:00
Alexandre Dulaunoy
2fd589e151
version updated
2017-08-08 20:39:36 +02:00
Alexandre Dulaunoy
7ef2242139
Merge pull request #18 from truckydev/truckydev_2357
...
add X509-fingerprint
2017-08-08 20:39:02 +02:00
truckydev
ea7bdb5bd7
add X509-fingerprint
...
https://github.com/MISP/MISP/pull/2357
2017-08-08 15:11:47 +02:00
Alexandre Dulaunoy
fb284b3e83
Merge pull request #17 from CenturyLinkCIRT/master
...
added http-request object
2017-08-05 22:38:57 +02:00
Thomas Gardner
8558bef481
added http-request object
2017-08-03 16:11:33 -06:00
Alexandre Dulaunoy
10ca2819a1
Fix: tld type not existing in MISP
2017-08-03 18:27:34 +02:00
Alexandre Dulaunoy
113eb9e5a0
A cookie object has been added.
...
An HTTP cookie (web cookie, browser cookie) is a small piece of data
that a server sends to the user's web browser. The object includes
type which can help to describe the malicious use-case of the cookie.
2017-08-03 12:15:26 +02:00
Alexandre Dulaunoy
08e5ebe995
Typo fixed in key-size - Thanks to @StefanKelm
2017-08-03 12:00:00 +02:00
Raphaël Vinot
ca24684e2f
Update required entries for PE objects
2017-07-21 11:33:38 +02:00
Raphaël Vinot
9256d6e8f8
Merge branch 'master' of github.com:MISP/misp-objects
2017-07-11 13:12:42 +02:00
Alexandre Dulaunoy
6e88746a67
Improved Tor node object to include support of the new Tor monitoring
2017-07-06 14:57:32 +02:00
Alexandre Dulaunoy
92fbb38616
Template definitions are not always distributed along with the objects
2017-07-05 07:41:48 +02:00
Alexandre Dulaunoy
afaf0d0e19
add a comment field
2017-07-05 07:41:07 +02:00
Alexandre Dulaunoy
30976be591
Tor node object template which are part of the Tor network at a time.
2017-07-05 07:33:35 +02:00