Alexandre Dulaunoy
|
140cdeb088
|
Merge pull request #148 from marcnil815/master
Create splunk object definition.json
|
2019-02-21 23:03:53 +01:00 |
marcnil815
|
03870031db
|
jq'ed definition.json
|
2019-02-21 19:36:07 +01:00 |
marcnil815
|
e26e54b54a
|
Create splunk object definition.json
Adding misp-object for basic splunk search/correlation search values.
|
2019-02-21 16:12:54 +01:00 |
Alexandre Dulaunoy
|
b0f07156ae
|
Merge pull request #147 from Delta-Sierra/master
Person object - Add a (or several) role to a person
|
2019-02-21 07:20:40 +01:00 |
Alexandre Dulaunoy
|
18042c0749
|
chg: [elf] disable correlation on file type
|
2019-02-20 10:43:38 +01:00 |
Deborah Servili
|
0173504050
|
Person object - Add a (several) role to a person
|
2019-02-15 09:46:29 +01:00 |
Alexandre Dulaunoy
|
08798f1262
|
chg: [email] IP and hostname fields from extracted headers
|
2019-02-14 14:33:39 +01:00 |
Alexandre Dulaunoy
|
8a4f2c96b8
|
chg: [file] preferred charset used by the file (if decoded from mime-type parsing)
|
2019-02-14 14:16:01 +01:00 |
Alexandre Dulaunoy
|
be9ea96c2a
|
chg: [doc] to_ids flag was missing in the README
|
2019-02-11 06:58:27 +01:00 |
Alexandre Dulaunoy
|
f9bb8bfa9b
|
chg: [phishing] removed the IDS flag on the email used for takedown - and change attribute type
|
2019-02-11 06:45:18 +01:00 |
Alexandre Dulaunoy
|
3e965a5ee2
|
Merge pull request #144 from MISP/rommelfs-patch-1
added hostname attribute to the phishing object
|
2019-02-07 16:46:39 +01:00 |
Sascha Rommelfangen
|
f09a392d49
|
added hostname attribute to the phishing object
|
2019-02-07 14:58:40 +01:00 |
Alexandre Dulaunoy
|
75ae30f44d
|
Merge pull request #143 from rommelfs/master
added values valuable to operators
|
2019-02-02 09:27:38 +01:00 |
Alexandre Dulaunoy
|
36dc6efab3
|
chg: [anonymisation] add level-of-knowledge to request for more information if needed
|
2019-02-01 10:19:25 +01:00 |
Sascha Rommelfangen
|
732476d7ca
|
added values valuable to operators
|
2019-02-01 09:37:31 +01:00 |
Alexandre Dulaunoy
|
f5c7530e0b
|
chg: [anonymisation] algo list fixed
|
2019-01-31 23:01:08 +01:00 |
Andras Iklody
|
86a116770b
|
Update definition.json
|
2019-01-31 22:57:49 +01:00 |
Alexandre Dulaunoy
|
b141dce581
|
add: [anonymisation] Anonymisation object describing an anonymisation technique which is used in MISP anonymised attributes.
|
2019-01-31 22:41:23 +01:00 |
Alexandre Dulaunoy
|
aec965086f
|
Merge pull request #141 from Delta-Sierra/master
fix jq_all_the_things script
|
2019-01-29 21:24:27 +01:00 |
Deborah Servili
|
b4c2de001c
|
fix jq_all_the_things script
|
2019-01-28 16:06:05 +01:00 |
Alexandre Dulaunoy
|
b6a7ccd2dc
|
Merge pull request #140 from Delta-Sierra/master
add interpol notice object
|
2019-01-28 15:59:54 +01:00 |
Deborah Servili
|
db6297131f
|
Merge https://github.com/MISP/misp-objects
|
2019-01-28 15:44:31 +01:00 |
Deborah Servili
|
0f6f7de384
|
fix required field for interpol notice
|
2019-01-28 15:40:07 +01:00 |
Deborah Servili
|
1533703894
|
add interpol notice object
|
2019-01-28 15:26:49 +01:00 |
Alexandre Dulaunoy
|
beb0ec8bb7
|
chg: [script] added PHP in the most used programming language (at least when looking at malicious WebShells on the Internet)
- I sense a new stackoverflow survey category
Signed-off: 5c45721d-de08-4fff-b9b0-168a02de0b81
|
2019-01-24 13:36:09 +01:00 |
Alexandre Dulaunoy
|
b25388c406
|
Merge pull request #139 from Delta-Sierra/master
Person object - add alias as a requiredOneof attribute
|
2019-01-11 20:31:03 +01:00 |
chrisr3d
|
b94abc9182
|
Merge branch 'master' of github.com:MISP/misp-objects
|
2019-01-11 16:51:18 +01:00 |
chrisr3d
|
cf8c50b72e
|
fix: Disabled correlation for original imported samples
|
2019-01-11 16:50:29 +01:00 |
Deborah Servili
|
d6299e6542
|
update person object version
|
2019-01-11 15:03:11 +01:00 |
Deborah Servili
|
b0d8e91f0f
|
add alias as a requiredOneof attribute
|
2019-01-11 15:02:06 +01:00 |
Alexandre Dulaunoy
|
7d7031a5e4
|
Merge pull request #138 from cvandeplas/master
chg: [http-request] IP as allowed type
|
2019-01-03 15:21:29 +01:00 |
Christophe Vandeplas
|
ae32e23fbf
|
chg: [http-request] IP as allowed type
|
2019-01-03 15:07:08 +01:00 |
Alexandre Dulaunoy
|
12f51e2ad5
|
chg: [doc] copyright date fixed
|
2019-01-02 22:05:02 +01:00 |
Alexandre Dulaunoy
|
e43d7a027b
|
Merge pull request #137 from StefanKelm/master
New object: Information related to known scanning activity (e.g. from research projects)
|
2019-01-02 16:31:46 +01:00 |
Stefan Kelm
|
d98cfd6d16
|
New object: Information related to known scanning activity (e.g. from research projects)
|
2019-01-02 16:19:08 +01:00 |
Alexandre Dulaunoy
|
b6593451c2
|
Merge pull request #136 from eCrimeLabs/master
Updated JA3 to have own data type ja3-fingerprint-md5 and bumped the …
|
2018-12-30 13:13:47 +01:00 |
eCrimeLabs
|
68ca8b0a92
|
Updated JA3 to have own data type ja3-fingerprint-md5 and bumped the version
|
2018-12-30 12:31:17 +01:00 |
Christophe Vandeplas
|
14882579fb
|
Merge pull request #135 from cvandeplas/master
fix: [relationships] removed duplicate
|
2018-12-22 07:25:49 +01:00 |
Christophe Vandeplas
|
25dc125a30
|
fix: [relationships] removed duplicate
|
2018-12-22 07:23:17 +01:00 |
Alexandre Dulaunoy
|
39bd2641aa
|
chg: [relationships] witness-of added
|
2018-12-21 20:50:12 +01:00 |
Alexandre Dulaunoy
|
e634e50e89
|
chg: [doc] facial-composite object added
|
2018-12-21 20:44:01 +01:00 |
Alexandre Dulaunoy
|
9b84576442
|
add: [facial-composite] new facial composite object
|
2018-12-21 20:41:45 +01:00 |
Alexandre Dulaunoy
|
5a9800ab6a
|
chg: [person] portrait added #133
|
2018-12-21 20:28:24 +01:00 |
Alexandre Dulaunoy
|
e771672764
|
Merge pull request #134 from Delta-Sierra/master
Object Victim - Extended requiredOneof
|
2018-12-21 20:06:48 +01:00 |
Deborah Servili
|
7dfa69a743
|
Object Victim - Extended requiredOneof
|
2018-12-21 12:27:11 +01:00 |
Alexandre Dulaunoy
|
11a462e79b
|
chg: [person] OFAC fields - Office of Foreign Assets Control
|
2018-12-04 15:39:51 +01:00 |
Alexandre Dulaunoy
|
6cc29aad3d
|
chg: [microblog] a small clarification about the username to avoid the @
|
2018-11-26 22:21:51 +01:00 |
Raphaël Vinot
|
7fe77c02af
|
Merge pull request #130 from deralexxx/patch-2
new misp object for a timesketch message
|
2018-11-23 15:42:48 +01:00 |
Alexander J
|
e44dd16b18
|
new misp object for a timesketch message
to be able to push timesketch messages (timesketch.org) to a misp event it is handy to have a specific type of object for it.
|
2018-11-23 15:40:57 +01:00 |
Alexandre Dulaunoy
|
7808850ce2
|
chg: [cortex] description updated as TheHive/Cortex observables will be attributes with
relationships from this object
|
2018-11-18 10:29:42 +01:00 |