Commit Graph

363 Commits (64f9c60ae6c9a910d132d4e34eb33a35c457b086)

Author SHA1 Message Date
Raphaël Vinot 8ec59dca1a Merge pull request #8 from sebdraven/master
add elf,elf-section and number of sections in a pe, and move pehash in pe object
2017-03-13 17:30:09 +01:00
Sébastien Larinier 3ec78c72e4 add elf,elf-section and number of sections in a pe, and move pehash in pe 2017-03-13 17:23:42 +01:00
Alexandre Dulaunoy fad8757a5a Merge pull request #7 from sebdraven/master
add characteristics and ssdeep to pe-sections
2017-03-13 16:41:16 +01:00
Sébastien Larinier 47725c5742 correct bug on characteristics 2017-03-13 16:37:20 +01:00
Sébastien Larinier 6c1020b98a correct bug 2017-03-13 16:33:50 +01:00
Sébastien Larinier 2838d5aed4 correct bug 2017-03-13 16:08:27 +01:00
Sébastien Larinier 878d0a30ca add characteristics and ssdeep to pe-sections 2017-03-13 15:55:29 +01:00
Raphaël Vinot c84a830f33 Add disable_correlation 2017-03-13 15:13:36 +01:00
Raphaël Vinot 16c7164816 Merge branch 'master' of github.com:MISP/misp-objects 2017-03-13 14:50:08 +01:00
Raphaël Vinot b90fd9ddc1 Update file/PE objects
* Add sane defaults
* Disable correlation when it doesn't make sense
2017-03-13 14:49:25 +01:00
Alexandre Dulaunoy bd79ee4224 Add sane_default to the schema 2017-03-13 08:22:28 +01:00
Alexandre Dulaunoy 6185e68498 JQifized 2017-03-13 08:19:27 +01:00
Alexandre Dulaunoy 92710e85ad url object added 2017-03-13 07:46:51 +01:00
Alexandre Dulaunoy 8685efd136 url object JQified 2017-03-13 07:45:38 +01:00
Alexandre Dulaunoy 1da88ddb99 url object describes an url along with its normalized field (e.g. using
faup parsing library) and its metadata.
2017-03-13 07:45:06 +01:00
Alexandre Dulaunoy 645b0dc5ed PE section added 2017-03-13 07:19:09 +01:00
Raphaël Vinot face9af8b0 Merge branch 'master' of github.com:MISP/misp-objects 2017-03-12 23:06:48 +01:00
Raphaël Vinot a755d50e92 Update file and pe, add pe-section 2017-03-12 23:06:39 +01:00
Alexandre Dulaunoy 464a9cded6 Portable Executable format added 2017-03-11 09:52:24 +01:00
Raphaël Vinot e931bbbd1c Add PE object 2017-03-09 14:14:36 +01:00
Raphaël Vinot e5dc47e4c8 Update schema 2017-03-07 11:09:55 +01:00
Alexandre Dulaunoy 7e00825715 jq all the things 2017-03-05 16:51:02 +01:00
Alexandre Dulaunoy 18e84ca2c8 required_value for protocol added 2017-03-05 16:41:52 +01:00
Alexandre Dulaunoy 3af5bcff47 required_value and sane_default description added 2017-03-05 13:39:10 +01:00
Alexandre Dulaunoy 85544674f8 DDoS object added 2017-03-05 13:04:24 +01:00
Alexandre Dulaunoy 1ec1761307 First proposal of a DDoS object in MISP 2017-03-05 13:01:02 +01:00
Raphaël Vinot 4409445360 Add forgotten dep for travis 2017-02-13 11:26:54 +01:00
Raphaël Vinot a68e678f50 JQ all the things 2017-02-13 11:18:42 +01:00
Raphaël Vinot 1f2633c6f1 Add testing, update travis 2017-02-13 11:15:51 +01:00
Alexandre Dulaunoy 4f40e2e497 registry-key and email objects added 2016-12-12 20:57:04 +01:00
Alexandre Dulaunoy 284c4e4084 Merge pull request #1 from mike1703/master
email object added
2016-12-12 20:54:03 +01:00
Alexandre Dulaunoy 8dd0b293b0 Merge pull request #2 from MISP/Rafiot-patch-1
Update definition.json
2016-12-12 20:53:29 +01:00
Raphaël Vinot 72ca71a1cc Update definition.json 2016-12-12 20:10:31 +01:00
Michael Kerscher 30512f69af registry key object added 2016-12-07 16:39:31 +01:00
Michael Kerscher 1d97cbbd2d email object added 2016-12-07 16:06:52 +01:00
Alexandre Dulaunoy 2859c85d9b Passive dns link fixed 2016-11-02 10:10:32 +01:00
Alexandre Dulaunoy ed24f46c04 Clarification regarding the multiple field as discussed with @igloska
as used in the vulnerability object.
2016-05-28 20:44:04 +02:00
Alexandre Dulaunoy 497b7b7b7e First version of the vulnerability object (basic CVE support) 2016-05-27 22:36:18 +02:00
Raphaël Vinot a493cc59a3 Fix json files (file and whois) 2016-04-11 13:00:04 +02:00
Raphaël Vinot 3dff596372 Add Travis file (validate json files) 2016-04-11 12:55:27 +02:00
Alexandre Dulaunoy d6ca58be66 raw-base64 attribute added 2016-02-16 07:52:26 +01:00
Alexandre Dulaunoy 7bcc98177c x509 object added 2016-02-16 07:43:17 +01:00
Alexandre Dulaunoy f0b968be56 ip-port added 2016-02-16 07:27:54 +01:00
Alexandre Dulaunoy f3afabc91b ip-port added.
An IP address and a port seen as a tuple (or as a triple) in a specific
time frame.
2016-02-16 07:25:54 +01:00
Alexandre Dulaunoy 5b3eff4e7b Passive DNS record added as misp-object 2016-02-13 18:21:17 +01:00
Alexandre Dulaunoy 7c30ab3977 Passive DNS object added 2016-02-13 18:19:27 +01:00
Alexandre Dulaunoy 2fe9742251 Typo fixed 2016-02-13 18:17:22 +01:00
Alexandre Dulaunoy d5a911d902 Definition and some clarification 2016-02-10 09:43:48 +01:00
Alexandre Dulaunoy 10431c3c42 optional text attributes added 2016-02-09 21:46:45 +01:00
Alexandre Dulaunoy 415adea9a7 pattern-in-file added 2016-02-09 21:23:48 +01:00