Commit Graph

1924 Commits (12c4d69bce296588e94715a559ab380ed99dc126)

Author SHA1 Message Date
Alexandre Dulaunoy b915869ab2
being lax on origin to avoid rebuilding url path for unknown services 2017-11-22 17:08:56 +01:00
Alexandre Dulaunoy 51e873760e
AIL leak template updated to include duplicate of leaks 2017-11-22 16:38:25 +01:00
Alexandre Dulaunoy 10028fb521
add: "followed-by" - "preceding-by" added as relationship type when the time is not known 2017-11-19 16:59:39 +01:00
Alexandre Dulaunoy 0f578a9993
asn added in the default objects 2017-11-19 16:49:50 +01:00
Alexandre Dulaunoy dd4e2d1977
fix: MISP type are case-sensitive - fixing AS number type 2017-11-19 10:22:32 +01:00
Alexandre Dulaunoy b046eb4ba7
fix: AIL leak object to include raw-data 2017-11-15 07:32:49 +01:00
kx499 59a78eef24 dns record and shodan report objects 2017-11-14 15:38:54 -05:00
Alexandre Dulaunoy 1fd5d4f6a7
fix: subnets announced is an ip-src type 2017-11-14 15:02:49 +01:00
Alexandre Dulaunoy 666c7a6916
added: Autonomous system object describing an autonomous system which can include one or more network operators management an entity (e.g. ISP) along with their routing policy, routing prefixes o
r alike.

Fix #50
2017-11-13 20:36:16 +01:00
Raphaël Vinot f9b2bdf22c chg: Fix logic in URL
Fix #21
2017-11-10 15:05:22 -08:00
Raphaël Vinot 805ed85bbe chg: Disable some correlations by default in URL
Fix #47
2017-11-10 15:02:37 -08:00
Raphaël Vinot dade532c1f Merge branch 'master' of github.com:MISP/misp-objects 2017-11-10 13:29:03 -08:00
Raphaël Vinot b4b3e685ea fix: requiredOneOf list of r2graphity was wrong
Fix #20
2017-11-10 13:28:05 -08:00
Alexandre Dulaunoy 66c4578f08
Merge pull request #49 from c-goes/master
Added file attribute screenshot to email object
2017-11-09 19:17:17 +01:00
c-goes 8e47b33787 Added file attribute screenshot to email object 2017-11-09 16:07:54 +01:00
Andras Iklody 6b43b68651
Merge pull request #48 from Delta-Sierra/master
allow multiple ips in domain|ip object
2017-11-07 10:08:24 +01:00
Deborah Servili 51f79bceba allow multiple ips in domain|ip object 2017-11-07 09:34:26 +01:00
Alexandre Dulaunoy f46343b2e2
Merge pull request #46 from Delta-Sierra/master
update ail-leak object
2017-11-06 16:20:25 +01:00
Deborah Servili d171c73660 update ail-leak object 2017-11-06 14:53:58 +01:00
Alexandre Dulaunoy 9d7d85f1f8
fix: structure fixed + CEF dedication added 2017-11-04 14:24:05 +01:00
Alexandre Dulaunoy 2336a80864
Description clarified 2017-11-04 09:07:12 +01:00
Alexandre Dulaunoy be3e2f425b
Typo fixed 2017-11-04 09:01:59 +01:00
Alexandre Dulaunoy 0c5f58ec63
New objects added 2017-11-04 08:59:26 +01:00
Alexandre Dulaunoy 2a2b48a162
fix: origin of credential as sane_default 2017-11-02 21:37:53 +01:00
Alexandre Dulaunoy dab3ad881a
add: credential object (fix #44) 2017-11-02 20:41:02 +01:00
Alexandre Dulaunoy f8b0e0d320 Merge pull request #43 from Delta-Sierra/master
add cert eu relationships
2017-10-27 14:14:56 +02:00
Deborah Servili b19eb276b6 add cert eu relationships 2017-10-27 14:07:46 +02:00
Alexandre Dulaunoy d37a5c480b Merge pull request #42 from Delta-Sierra/master
add cert-eu relationships
2017-10-26 16:23:06 +02:00
Deborah Servili 7484b358ec replace space by dash in names 2017-10-26 15:52:36 +02:00
Deborah Servili 9767ca589c add cert-eu relationships 2017-10-26 15:40:53 +02:00
Raphaël Vinot 28dfbb50f7 Remove the executable flag from the json files 2017-10-25 12:16:17 -04:00
truckydev fe594f98ba regex addon
Add field to specify which type correspond to this regex.
2017-10-25 10:39:39 +02:00
Raphaël Vinot 3569c70407 Add report object 2017-10-24 13:04:41 -04:00
Raphaël Vinot b317712f4d Merge pull request #40 from CenturyLinkCIRT/master
Disabled correlation for software name in av-signature
2017-10-24 10:36:51 -04:00
Thomas Gardner 6e36c162a4 fixed av-signature merge conflicts with upstream 2017-10-24 10:26:24 -04:00
Thomas Gardner 1c4933c1ce disabled AV software correlation and re-ran jq-all-the-things 2017-10-24 10:23:46 -04:00
Alexandre Dulaunoy bbf3e45649
fix: missing description added in asciidoc files 2017-10-23 20:41:08 +02:00
Alexandre Dulaunoy 9410aa99a5
Fix the file object 2017-10-23 20:35:07 +02:00
Alexandre Dulaunoy 0f3261077b
State added to file like signed, harmless... 2017-10-23 20:28:30 +02:00
Raphaël Vinot b801bc6603 jq all the things 2017-10-23 11:51:05 -04:00
Raphaël Vinot d42e4b569b Merge pull request #39 from CenturyLinkCIRT/master
added av-signature and virustotal-report
2017-10-23 10:45:29 -04:00
Thomas Gardner f9204db304 added av-signature and virustotal-report 2017-10-23 10:43:12 -04:00
Alexandre Dulaunoy a5d2f71fef Merge pull request #34 from MISP/fix-31-2
Fix object name
2017-10-16 15:41:33 +02:00
Alexandre Dulaunoy 9375693f72 Merge pull request #33 from MISP/fix-31-1
Fix object name.
2017-10-16 15:41:15 +02:00
Raphaël Vinot 9078fa0e73 Fix object name
Related to: https://github.com/MISP/misp-objects/issues/31
2017-10-16 11:41:22 +02:00
Raphaël Vinot 60a375f85d Fix object name.
Related to: https://github.com/MISP/misp-objects/issues/31
2017-10-16 11:40:20 +02:00
Alexandre Dulaunoy 0ab002e94c
Fix typo in the field 2017-10-13 15:08:25 +02:00
Alexandre Dulaunoy 9b55a361ec
Some updates including description of fields 2017-10-13 15:02:04 +02:00
Alexandre Dulaunoy 94b9bc9aee
First version of Netflow object based on proposal from @JanKoDFNCERT
Open questions:

  - What is a minimal Netflow records? I relax a bit the required fields.
  - How does this work with IPFIX (and variable templates)?
  - How should we express the TCP flags expressed? (S/SA/SAF)
2017-10-13 14:30:10 +02:00
Alexandre Dulaunoy bf8f27d7f5
add: RTIR - Request Tracker for Incident Response added in index 2017-10-12 22:11:09 +02:00