Alexandre Dulaunoy
94b9bc9aee
First version of Netflow object based on proposal from @JanKoDFNCERT
...
Open questions:
- What is a minimal Netflow records? I relax a bit the required fields.
- How does this work with IPFIX (and variable templates)?
- How should we express the TCP flags expressed? (S/SA/SAF)
2017-10-13 14:30:10 +02:00
Alexandre Dulaunoy
bf8f27d7f5
add: RTIR - Request Tracker for Incident Response added in index
2017-10-12 22:11:09 +02:00
Alexandre Dulaunoy
2b9ba3ac00
add: RTIR object added (as requested by CSP - Cyber Security Core Service Platform)
2017-10-12 22:08:09 +02:00
Alexandre Dulaunoy
bc5795dc18
Merge branch 'ater49-patch-4'
2017-10-06 08:23:06 +02:00
Alexandre Dulaunoy
deda8abfb1
use url attribute type for link inside a post
2017-10-06 08:22:41 +02:00
Alexandre Dulaunoy
c4bc232be2
Merge branch 'patch-4' of https://github.com/ater49/misp-objects into ater49-patch-4
2017-10-06 08:22:00 +02:00
Alexandre Dulaunoy
e3974c4e35
Merge pull request #29 from ater49/patch-2
...
New attribute: title
2017-10-04 19:26:17 +02:00
ater49
a13726c138
Update definition.json
...
Link attribute added in case of url present into the post.
Multiple set to true for "username-quoted"
2017-10-04 13:31:25 +02:00
ater49
71860b21e9
New attributes: title
...
In case of paste or post has a title.
Ghostbin.com origin added
2017-10-04 13:24:29 +02:00
Alexandre Dulaunoy
028bb2e0c1
Paste added
2017-09-29 16:18:26 +02:00
Alexandre Dulaunoy
bc7c84ca5a
add: Paste or similar post from a website allowing to share privately or publicly posts.
2017-09-29 14:59:39 +02:00
Alexandre Dulaunoy
4b520f0d05
microblog object added
2017-09-29 14:33:54 +02:00
Alexandre Dulaunoy
a52847edad
Merge pull request #28 from deralexxx/patch-1
...
mention uuid
2017-09-29 11:36:47 +02:00
Alexander J
8a2745fe61
mention uuid
...
How to create a uuid and also mention the UUID in the example.
https://twitter.com/alexanderjaeger/status/913505371817435138
2017-09-29 10:52:04 +02:00
Alexandre Dulaunoy
b210163927
Merge branch 'ater49-patch-1'
2017-09-28 22:07:45 +02:00
Alexandre Dulaunoy
f10f361df0
jq all and fix the space ;-)
2017-09-28 22:07:15 +02:00
ater49
4c69154ad3
Attributes username-quoted added
...
Added Attributes: "username-quoted"
Added types: LinkedIn, Reddit, Google+, Instagram
2017-09-28 21:36:27 +02:00
Alexandre Dulaunoy
5a80d5c4d2
add: Microblog post object like a Twitter tweet or a post on a Facebook wall.
2017-09-28 19:32:31 +02:00
Alexandre Dulaunoy
5b66865268
Carbon copy field added
2017-09-27 16:43:21 +02:00
Alexandre Dulaunoy
81d242cf36
Documentation links added
2017-09-26 07:37:24 +02:00
Alexandre Dulaunoy
140b55254a
return-path added in email object
2017-09-25 20:37:02 +02:00
Alexandre Dulaunoy
1c3629ac3c
Fixed the release version
2017-09-24 23:43:23 +02:00
Alexandre Dulaunoy
b97f0a1e1a
sane_default added in the documentation
2017-09-24 21:36:36 +02:00
Alexandre Dulaunoy
dc73dd3e86
victim object added to the list
2017-09-24 21:27:08 +02:00
Alexandre Dulaunoy
9d14620739
Victim object added mainly based on the STIX 2.0 victim proposal
2017-09-24 21:21:33 +02:00
Alexandre Dulaunoy
d3306be50c
ja3 and person added in the list
2017-09-24 20:22:08 +02:00
Alexandre Dulaunoy
3ecace4d12
First version of the ja3 object based on the proposal from @delbs
2017-09-24 20:10:59 +02:00
Alexandre Dulaunoy
a5c0c4e192
Fixing typo in the credit-card object
2017-09-21 15:35:05 +02:00
Alexandre Dulaunoy
5d7bd3f1ea
2.4.80 released
2017-09-18 23:01:07 +02:00
Alexandre Dulaunoy
d22ced3b82
whois template fixed
2017-09-18 09:01:57 +02:00
Alexandre Dulaunoy
3e00c3129c
Fix #22
2017-09-18 08:11:25 +02:00
Alexandre Dulaunoy
0e25309411
values_list added in the documentation
2017-09-17 13:55:49 +02:00
iglocska
10b21c6aac
fix: Fixed typo
2017-09-17 12:46:51 +02:00
iglocska
18cf14d376
fix: Updated the required value field to values list
2017-09-17 12:43:42 +02:00
iglocska
8662818177
fix: Updated the required_value field with the new name: values_list
2017-09-17 12:43:09 +02:00
iglocska
8643f0dc47
fix: Fixed an issue with the email object not having the correct requiredoneof fieldnames, fixes MISP/MISP#2481
2017-09-17 12:31:50 +02:00
Alexandre Dulaunoy
777ef97aeb
An object describing a regular expression (regex or regexp).
...
The object can be linked via a relationship to other attributes
or objects to describe how it can be represented as a regular expression.
2017-09-15 21:02:11 +02:00
Alexandre Dulaunoy
d781a0eb05
add: first version of a person object (partially based on the PNR types)
2017-09-14 07:49:50 +02:00
Alexandre Dulaunoy
cf08f87406
link fixed
2017-09-13 21:43:10 +02:00
Alexandre Dulaunoy
3f672b5edf
url fixed
2017-09-13 21:40:47 +02:00
Alexandre Dulaunoy
bc27dc6d42
add: first version of the credit-card object
2017-09-13 21:18:16 +02:00
Alexandre Dulaunoy
0e409294c0
fix: port is used instead of text type
2017-09-13 17:26:59 +02:00
Alexandre Dulaunoy
579e851f5e
port type instead of text
2017-09-13 16:42:15 +02:00
Raphaël Vinot
96db4ae070
Disable some correlations
2017-09-11 16:08:03 +02:00
Alexandre Dulaunoy
3bef07bfbb
Be consistent and use hyphen everywhere (not more underscore).
...
Thanks to Terry MacDonald
2017-09-07 15:43:41 +02:00
Alexandre Dulaunoy
d75325fd6d
Feedback from David added (two new relationships - triggers and detected_as)
2017-09-07 15:32:15 +02:00
Alexandre Dulaunoy
50fe0c2993
Updated following Andras feedback
2017-09-06 16:13:35 +02:00
Alexandre Dulaunoy
8814be9527
yabin updated following Andras feedback
2017-09-06 16:13:02 +02:00
Alexandre Dulaunoy
317fd559d6
first version of a yabin object
2017-09-06 16:04:37 +02:00
Alexandre Dulaunoy
0c95f5e3cc
Relationships added to the documentation export
2017-09-06 07:51:02 +02:00