Commit Graph

335 Commits (16f01d62a8293797266e9cd076c9a6c6fb846efd)

Author SHA1 Message Date
Alexandre Dulaunoy 0e409294c0
fix: port is used instead of text type 2017-09-13 17:26:59 +02:00
Alexandre Dulaunoy 579e851f5e
port type instead of text 2017-09-13 16:42:15 +02:00
Raphaël Vinot 96db4ae070 Disable some correlations 2017-09-11 16:08:03 +02:00
Alexandre Dulaunoy 3bef07bfbb Be consistent and use hyphen everywhere (not more underscore).
Thanks to Terry MacDonald
2017-09-07 15:43:41 +02:00
Alexandre Dulaunoy d75325fd6d Feedback from David added (two new relationships - triggers and detected_as) 2017-09-07 15:32:15 +02:00
Alexandre Dulaunoy 50fe0c2993 Updated following Andras feedback 2017-09-06 16:13:35 +02:00
Alexandre Dulaunoy 8814be9527 yabin updated following Andras feedback 2017-09-06 16:13:02 +02:00
Alexandre Dulaunoy 317fd559d6 first version of a yabin object 2017-09-06 16:04:37 +02:00
Alexandre Dulaunoy 0c95f5e3cc
Relationships added to the documentation export 2017-09-06 07:51:02 +02:00
Alexandre Dulaunoy 60f6c15655
Typo fixed 2017-08-29 22:02:10 +02:00
Raphaël Vinot 0445ebd350 Add descriptions in all the objects 2017-08-29 18:36:46 +02:00
Raphaël Vinot b16cdaa137 Merge branch 'master' of github.com:MISP/misp-objects 2017-08-29 13:26:26 +02:00
Raphaël Vinot 9a3974f383 Update definitions of binaries 2017-08-29 13:25:58 +02:00
Alexandre Dulaunoy 2658e00c04
First version of a documentation generator tool 2017-08-29 11:16:59 +02:00
Raphaël Vinot 9da5eaed35 Merge branch 'master' of github.com:MISP/misp-objects 2017-08-29 10:24:27 +02:00
Raphaël Vinot 314ff6c953 Remove pipe from PE object def 2017-08-29 10:24:18 +02:00
Alexandre Dulaunoy 99dcc88e22
phone object added 2017-08-28 20:16:37 +02:00
Raphaël Vinot d34dd5fb60 Allow multiple entries of type flag in the ELFSection object 2017-08-27 17:49:53 +02:00
Alexandre Dulaunoy 66e7397397
phone defintion fixed 2017-08-27 08:30:58 +02:00
Alexandre Dulaunoy 73a75d6c72
typo fixed 2017-08-27 08:18:26 +02:00
Alexandre Dulaunoy 41f3792b49
first version of a mobile phone object 2017-08-27 08:16:58 +02:00
Alexandre Dulaunoy afa08ffb4b
calls relationship type added 2017-08-26 21:50:00 +02:00
Alexandre Dulaunoy 2b913c848d
Mach object file format added 2017-08-26 21:44:49 +02:00
Raphaël Vinot fc6d54f93b Merge branch 'master' of github.com:MISP/misp-objects 2017-08-25 15:54:53 +02:00
Raphaël Vinot 7c3aaa30c2 Update ELF definitions, add MachO. 2017-08-25 15:52:32 +02:00
Alexandre Dulaunoy a002f36de2 New relationship types added 2017-08-24 09:47:28 +02:00
Alexandre Dulaunoy 2345a33740 some more relationship type 2017-08-23 17:17:56 +02:00
Raphaël Vinot 96d7aeb072 Merge branch 'master' of github.com:MISP/misp-objects 2017-08-23 11:01:56 +02:00
Raphaël Vinot 49cd96aa2b Add mimetype to file object template 2017-08-23 11:01:48 +02:00
Alexandre Dulaunoy 30c4cea1f9
relationships types added + target MISP version 2017-08-14 22:07:09 +02:00
Alexandre Dulaunoy 01a23c205c
Often used relationships added used for malware analysis 2017-08-13 10:41:10 +02:00
Alexandre Dulaunoy 6ff2aad063
Keep it consistent. 2017-08-12 14:20:21 +02:00
Alexandre Dulaunoy e455b17868
fix: communicate-with relationship added 2017-08-12 10:35:40 +02:00
Raphaël Vinot dc1dce796e Add schema for relationships 2017-08-11 12:19:52 +02:00
Alexandre Dulaunoy ba3c888af8
Make relationship type more generic
Make the relationship types more generic especially to avoid issue
with community-designed standards that might change later the types,
broke compatibility or decide to change their mind due to some
proprietary vendors trying to lock-in the users.
2017-08-11 11:22:16 +02:00
Alexandre Dulaunoy 7573465e74
First version of the types of relationships for MISP objects
Relationship type can be from existing STIX 2.0 ones, MISP
relationships or other proposed by the community. Please be
careful that a relationship type can influence the ability
of export of MISP events if the type is not supported by
the target format.
2017-08-11 10:52:02 +02:00
Alexandre Dulaunoy 2fd589e151
version updated 2017-08-08 20:39:36 +02:00
Alexandre Dulaunoy 7ef2242139 Merge pull request #18 from truckydev/truckydev_2357
add X509-fingerprint
2017-08-08 20:39:02 +02:00
truckydev ea7bdb5bd7 add X509-fingerprint
https://github.com/MISP/MISP/pull/2357
2017-08-08 15:11:47 +02:00
Alexandre Dulaunoy fb284b3e83 Merge pull request #17 from CenturyLinkCIRT/master
added http-request object
2017-08-05 22:38:57 +02:00
Thomas Gardner 8558bef481 added http-request object 2017-08-03 16:11:33 -06:00
Alexandre Dulaunoy 10ca2819a1
Fix: tld type not existing in MISP 2017-08-03 18:27:34 +02:00
Alexandre Dulaunoy 113eb9e5a0
A cookie object has been added.
An HTTP cookie (web cookie, browser cookie) is a small piece of data
that a server sends to the user's web browser. The object includes
type which can help to describe the malicious use-case of the cookie.
2017-08-03 12:15:26 +02:00
Alexandre Dulaunoy 08e5ebe995
Typo fixed in key-size - Thanks to @StefanKelm 2017-08-03 12:00:00 +02:00
Raphaël Vinot ca24684e2f Update required entries for PE objects 2017-07-21 11:33:38 +02:00
Raphaël Vinot 9256d6e8f8 Merge branch 'master' of github.com:MISP/misp-objects 2017-07-11 13:12:42 +02:00
Alexandre Dulaunoy 6e88746a67 Improved Tor node object to include support of the new Tor monitoring 2017-07-06 14:57:32 +02:00
Alexandre Dulaunoy 92fbb38616 Template definitions are not always distributed along with the objects 2017-07-05 07:41:48 +02:00
Alexandre Dulaunoy afaf0d0e19 add a comment field 2017-07-05 07:41:07 +02:00
Alexandre Dulaunoy 30976be591 Tor node object template which are part of the Tor network at a time. 2017-07-05 07:33:35 +02:00