Alexandre Dulaunoy
|
e6fbcf9d53
|
information leak object as defined by the AIL Analysis Information Leak framework.
|
2017-03-22 06:54:11 +01:00 |
Raphaël Vinot
|
d7a1f85100
|
Update attributes os r2graphity object
|
2017-03-21 16:46:41 +01:00 |
Raphaël Vinot
|
2f74b709d4
|
Updade r2graphity definition
|
2017-03-20 14:30:45 +01:00 |
Raphaël Vinot
|
29a66cd4d6
|
Add initial version of the r2graphity object
|
2017-03-17 18:42:10 +01:00 |
Raphaël Vinot
|
c0d95f58b5
|
Remove duplicate entries in file object
|
2017-03-17 18:00:37 +01:00 |
Raphaël Vinot
|
2c5208aab2
|
Merge branch 'master' of github.com:MISP/misp-objects
|
2017-03-17 17:32:21 +01:00 |
Raphaël Vinot
|
2c2c11c9ca
|
Add and enforce UUID in the object definitions
|
2017-03-17 17:31:09 +01:00 |
Alexandre Dulaunoy
|
6fb4acb9da
|
jq all
|
2017-03-16 23:06:36 +01:00 |
Alexandre Dulaunoy
|
0da065163a
|
Merge branch 'master' of github.com:MISP/misp-objects
|
2017-03-16 23:05:11 +01:00 |
Raphaël Vinot
|
c0bd545347
|
Add malware-sample to file object
|
2017-03-16 18:18:51 +01:00 |
Sébastien Larinier
|
140fcbf251
|
correct travis
|
2017-03-15 11:30:54 +01:00 |
Sébastien Larinier
|
22f2bb8825
|
add impfuzzy
|
2017-03-15 11:19:08 +01:00 |
Alexandre Dulaunoy
|
37c1722d3e
|
disable_correlation added
|
2017-03-15 07:42:14 +01:00 |
Raphaël Vinot
|
15488f0633
|
Update PE object
|
2017-03-14 15:57:05 +01:00 |
Sébastien Larinier
|
16f41b2b4a
|
correct travis failed
|
2017-03-14 10:05:48 +01:00 |
Sébastien Larinier
|
fb5ec25000
|
add type of sections
|
2017-03-13 18:04:21 +01:00 |
Sébastien Larinier
|
681d18f4eb
|
add attributes
|
2017-03-13 17:58:56 +01:00 |
Sébastien Larinier
|
684d4d0631
|
delete attribute
|
2017-03-13 17:32:51 +01:00 |
Sébastien Larinier
|
3ec78c72e4
|
add elf,elf-section and number of sections in a pe, and move pehash in pe
|
2017-03-13 17:23:42 +01:00 |
Sébastien Larinier
|
47725c5742
|
correct bug on characteristics
|
2017-03-13 16:37:20 +01:00 |
Sébastien Larinier
|
6c1020b98a
|
correct bug
|
2017-03-13 16:33:50 +01:00 |
Sébastien Larinier
|
2838d5aed4
|
correct bug
|
2017-03-13 16:08:27 +01:00 |
Sébastien Larinier
|
878d0a30ca
|
add characteristics and ssdeep to pe-sections
|
2017-03-13 15:55:29 +01:00 |
Raphaël Vinot
|
16c7164816
|
Merge branch 'master' of github.com:MISP/misp-objects
|
2017-03-13 14:50:08 +01:00 |
Raphaël Vinot
|
b90fd9ddc1
|
Update file/PE objects
* Add sane defaults
* Disable correlation when it doesn't make sense
|
2017-03-13 14:49:25 +01:00 |
Alexandre Dulaunoy
|
6185e68498
|
JQifized
|
2017-03-13 08:19:27 +01:00 |
Alexandre Dulaunoy
|
8685efd136
|
url object JQified
|
2017-03-13 07:45:38 +01:00 |
Alexandre Dulaunoy
|
1da88ddb99
|
url object describes an url along with its normalized field (e.g. using
faup parsing library) and its metadata.
|
2017-03-13 07:45:06 +01:00 |
Raphaël Vinot
|
a755d50e92
|
Update file and pe, add pe-section
|
2017-03-12 23:06:39 +01:00 |
Raphaël Vinot
|
e931bbbd1c
|
Add PE object
|
2017-03-09 14:14:36 +01:00 |
Alexandre Dulaunoy
|
7e00825715
|
jq all the things
|
2017-03-05 16:51:02 +01:00 |
Alexandre Dulaunoy
|
18e84ca2c8
|
required_value for protocol added
|
2017-03-05 16:41:52 +01:00 |
Alexandre Dulaunoy
|
1ec1761307
|
First proposal of a DDoS object in MISP
|
2017-03-05 13:01:02 +01:00 |
Raphaël Vinot
|
a68e678f50
|
JQ all the things
|
2017-02-13 11:18:42 +01:00 |
Alexandre Dulaunoy
|
284c4e4084
|
Merge pull request #1 from mike1703/master
email object added
|
2016-12-12 20:54:03 +01:00 |
Raphaël Vinot
|
72ca71a1cc
|
Update definition.json
|
2016-12-12 20:10:31 +01:00 |
Michael Kerscher
|
30512f69af
|
registry key object added
|
2016-12-07 16:39:31 +01:00 |
Michael Kerscher
|
1d97cbbd2d
|
email object added
|
2016-12-07 16:06:52 +01:00 |
Alexandre Dulaunoy
|
497b7b7b7e
|
First version of the vulnerability object (basic CVE support)
|
2016-05-27 22:36:18 +02:00 |
Raphaël Vinot
|
a493cc59a3
|
Fix json files (file and whois)
|
2016-04-11 13:00:04 +02:00 |
Alexandre Dulaunoy
|
7bcc98177c
|
x509 object added
|
2016-02-16 07:43:17 +01:00 |
Alexandre Dulaunoy
|
f3afabc91b
|
ip-port added.
An IP address and a port seen as a tuple (or as a triple) in a specific
time frame.
|
2016-02-16 07:25:54 +01:00 |
Alexandre Dulaunoy
|
7c30ab3977
|
Passive DNS object added
|
2016-02-13 18:19:27 +01:00 |
Alexandre Dulaunoy
|
2fe9742251
|
Typo fixed
|
2016-02-13 18:17:22 +01:00 |
Alexandre Dulaunoy
|
10431c3c42
|
optional text attributes added
|
2016-02-09 21:46:45 +01:00 |
Alexandre Dulaunoy
|
415adea9a7
|
pattern-in-file added
|
2016-02-09 21:23:48 +01:00 |
Alexandre Dulaunoy
|
8587b1a71b
|
First version of the file object
|
2016-02-09 21:04:39 +01:00 |
Alexandre Dulaunoy
|
fc5ecd7c69
|
Whois object added
|
2016-02-09 16:08:15 +01:00 |
Alexandre Dulaunoy
|
433d7c5669
|
misp-attribute is more logical
|
2016-02-08 17:52:30 +01:00 |
Alexandre Dulaunoy
|
88f20e3b24
|
Everything is meta...
|
2016-02-08 16:56:11 +01:00 |
Alexandre Dulaunoy
|
474c9d8b98
|
Adding a category field to classify the object (e.g. quick filter)
|
2016-02-08 16:55:24 +01:00 |
Alexandre Dulaunoy
|
095a75d282
|
Updated version based on feedback from Andras
|
2016-02-08 16:51:38 +01:00 |
Alexandre Dulaunoy
|
f8f67f77c9
|
Proposal updated based on feedback from Andras
|
2016-02-08 15:26:49 +01:00 |
Alexandre Dulaunoy
|
39c570824a
|
A first experimental description of a MISP combined object
|
2016-02-08 15:09:46 +01:00 |