Andras Iklody
ed271a3b7d
Merge pull request #173 from haxpak/master
...
added option "Further Analysis Required" to attribute stage of object course-of-action
2019-04-16 07:42:32 +02:00
haxpak
4066da31e4
changed device type drop down from category to sane_default
2019-04-16 08:31:43 +05:30
haxpak
befa47d2c5
[added] relationship 'executes' : Describes a an object that executes another object
2019-04-15 18:04:44 +05:30
haxpak
2d6522887d
added relationship "executes"
2019-04-15 18:00:21 +05:30
haxpak
89b8e10fbe
added option "Further Analysis Required" to attribute stage
2019-04-15 17:41:39 +05:30
Andras Iklody
3a82eb6b1a
Merge pull request #172 from haxpak/haxpak/#24
...
updated device object
2019-04-15 10:53:00 +02:00
Andras Iklody
a8e89e3eaa
Merge branch 'master' into haxpak/#24
2019-04-15 10:52:48 +02:00
Andras Iklody
f5555225aa
Merge pull request #170 from haxpak/haxpak-objects
...
Haxpak objects
2019-04-15 10:37:58 +02:00
haxpak
9f4e7737a1
added attribute DNS name to device object
...
changed MAC address misp attribute to mac-address
2019-04-15 10:33:08 +05:30
haxpak
3cef676f34
added OS, version, dns-name attribute to device
...
changed misp-attribute of mac-address from text to mac-address
2019-04-15 10:29:09 +05:30
haxpak
836bd04a75
meta category for organization changed back to misc since schema_objects.json does not recognize organization as a meta category
2019-04-14 11:32:55 +05:30
haxpak
2053c17fa4
corrected typo
2019-04-14 11:27:29 +05:30
haxpak
4f1745a095
added meta category organization
2019-04-14 11:26:12 +05:30
haxpak
8fe63dfccc
modified: relationships/definition.json
2019-04-14 11:14:35 +05:30
haxpak
b24336499a
modified: objects/device/definition.json
...
modified: objects/phishing-kit/definition.json
2019-04-14 11:04:57 +05:30
haxpak
bb9ff86b2f
added MAC address to device
...
meta category of organization changed to organization
meta category of person object changed to organization
new object phishing-kit
2019-04-14 10:53:57 +05:30
Alexandre Dulaunoy
81924c519f
chg: [doc] new organization and device object added
2019-04-13 15:04:23 +02:00
Alexandre Dulaunoy
e470413f41
chg: [schema] category removed
2019-04-13 14:59:38 +02:00
Alexandre Dulaunoy
cb193524c8
Merge pull request #166 from haxpak/haxpak-objects
...
Added new objects
2019-04-13 14:57:06 +02:00
haxpak
9f3fb14ed5
changed organization meta category to misc
2019-04-13 14:57:55 +05:30
haxpak
6917beee5f
reverted device to misc category
2019-04-13 14:02:26 +05:30
haxpak
63fff149f0
added requiredOneOf to device definition
2019-04-13 13:49:16 +05:30
haxpak
df91c999e6
fixed typos and ran jq_all_things
2019-04-13 13:45:05 +05:30
haxpak
23ab735119
- added : attachment attribute to annotation
...
- added : new object type device
2019-04-13 13:32:56 +05:30
Alexandre Dulaunoy
6cbac470ef
Merge pull request #163 from haxpak/master
...
add : relationship "creates"
2019-04-13 09:28:04 +02:00
haxpak
26987ca80a
added : meta_category "organization" #162
2019-04-13 12:11:43 +05:30
haxpak
161f72678a
modified : person object "changed UI priority of the attributes"
...
modified : report object "added attachment to report"
2019-04-13 12:05:51 +05:30
haxpak
71419a999a
new-object : Organization "Defines an organization"
2019-04-13 11:55:38 +05:30
haxpak
bfa883751a
add : relationship "creates"
2019-04-13 11:00:45 +05:30
Alexandre Dulaunoy
c5532621b6
chg: [ip-port] ip-src added to fix #149
2019-04-07 22:28:36 +02:00
Alexandre Dulaunoy
006aa1d1a2
chg: [script] filename added to fix #149
2019-04-07 22:24:58 +02:00
Alexandre Dulaunoy
bfcfe7aae9
chg: [doc] tor-hiddenservices added
2019-04-05 11:24:54 +02:00
Alexandre Dulaunoy
b4478a6c2b
add: [tor-hiddenservice] a simple object template to describe Tor Onion Service
2019-04-05 11:22:22 +02:00
Alexandre Dulaunoy
aca06cec1f
chg: [lnk] new LNK object (Windows Shortcut)
2019-04-03 14:05:39 +02:00
Alexandre Dulaunoy
4793bf33ae
chg: [process] fix the type - fix #160
2019-04-02 19:56:59 +02:00
Alexandre Dulaunoy
ba31488e5a
Merge pull request #161 from geekscrapy/geekscrapy-patch-1
...
Username is often utilised alongside a credential
2019-04-02 19:55:59 +02:00
Alexandre Dulaunoy
302182e594
Merge pull request #159 from geekscrapy/patch-1
...
Added current-directory to required field
2019-04-02 19:55:03 +02:00
Alexandre Dulaunoy
4ae7448b0c
Merge pull request #158 from geekscrapy/patch-2
...
Added issuer as one of the required fields
2019-04-02 19:54:38 +02:00
molley
a50986361f
Username is often utilised alongside a credential
...
Username can often identify malicious behavior, and is usually part of the credential tuple - it can also be used to highlight common user accounts without password/api key
2019-04-02 18:26:00 +01:00
molley
490d760a4b
Added current-directory to required field
...
This field will often indicate where a malicious binary is started from, therefore a good candidate for solo use
2019-04-02 17:41:07 +01:00
molley
a85178255c
Added issuer as one of the required fields
...
This is often a field used on it's own to identify a malicious cert
2019-04-02 17:28:49 +01:00
Raphaël Vinot
0c6b7b4302
chg: Bump vehicle object
2019-04-02 17:09:02 +02:00
Alexandre Dulaunoy
047595ddeb
chg: [person] Spanish IDs added (NIE, NIF and DNI)
2019-03-15 14:36:12 +01:00
kx1499
e61344c981
Merge remote-tracking branch 'upstream/master'
2019-03-14 21:42:12 -04:00
chrisr3d
59f8621fe2
add: New relationship "retrieved-from"
2019-03-12 17:21:52 +01:00
Alexandre Dulaunoy
d0886ba6af
Merge pull request #155 from Delta-Sierra/master
...
remove accent from ilr objects
2019-02-27 07:14:02 +01:00
Deborah Servili
55f5716b5d
remove accent from ilr objects - bis
2019-02-26 16:00:23 +01:00
Deborah Servili
96751b2af7
remove accent from ilrobjects
2019-02-26 15:57:58 +01:00
Alexandre Dulaunoy
0f10d25558
Merge pull request #154 from Delta-Sierra/master
...
add ilr-notification-incident object
2019-02-26 15:54:24 +01:00
Deborah Servili
41dd469869
add ilr-notification-incident object
2019-02-26 15:51:20 +01:00