Commit Graph

1435 Commits (b6c6de5632bb412b559532205db3e78ff8cc9977)

Author SHA1 Message Date
Andras Iklody ed271a3b7d
Merge pull request #173 from haxpak/master
added option "Further Analysis Required" to attribute stage of object course-of-action
2019-04-16 07:42:32 +02:00
haxpak 4066da31e4 changed device type drop down from category to sane_default 2019-04-16 08:31:43 +05:30
haxpak befa47d2c5 [added] relationship 'executes' : Describes a an object that executes another object 2019-04-15 18:04:44 +05:30
haxpak 2d6522887d added relationship "executes" 2019-04-15 18:00:21 +05:30
haxpak 89b8e10fbe added option "Further Analysis Required" to attribute stage 2019-04-15 17:41:39 +05:30
Andras Iklody 3a82eb6b1a
Merge pull request #172 from haxpak/haxpak/#24
updated device object
2019-04-15 10:53:00 +02:00
Andras Iklody a8e89e3eaa
Merge branch 'master' into haxpak/#24 2019-04-15 10:52:48 +02:00
Andras Iklody f5555225aa
Merge pull request #170 from haxpak/haxpak-objects
Haxpak objects
2019-04-15 10:37:58 +02:00
haxpak 9f4e7737a1 added attribute DNS name to device object
changed MAC address misp attribute to mac-address
2019-04-15 10:33:08 +05:30
haxpak 3cef676f34 added OS, version, dns-name attribute to device
changed misp-attribute of mac-address from text to mac-address
2019-04-15 10:29:09 +05:30
haxpak 836bd04a75 meta category for organization changed back to misc since schema_objects.json does not recognize organization as a meta category 2019-04-14 11:32:55 +05:30
haxpak 2053c17fa4 corrected typo 2019-04-14 11:27:29 +05:30
haxpak 4f1745a095 added meta category organization 2019-04-14 11:26:12 +05:30
haxpak 8fe63dfccc modified: relationships/definition.json 2019-04-14 11:14:35 +05:30
haxpak b24336499a modified: objects/device/definition.json
modified:   objects/phishing-kit/definition.json
2019-04-14 11:04:57 +05:30
haxpak bb9ff86b2f added MAC address to device
meta category of organization changed to organization
meta category of person object changed to organization
new object phishing-kit
2019-04-14 10:53:57 +05:30
Alexandre Dulaunoy 81924c519f
chg: [doc] new organization and device object added 2019-04-13 15:04:23 +02:00
Alexandre Dulaunoy e470413f41
chg: [schema] category removed 2019-04-13 14:59:38 +02:00
Alexandre Dulaunoy cb193524c8
Merge pull request #166 from haxpak/haxpak-objects
Added new objects
2019-04-13 14:57:06 +02:00
haxpak 9f3fb14ed5 changed organization meta category to misc 2019-04-13 14:57:55 +05:30
haxpak 6917beee5f reverted device to misc category 2019-04-13 14:02:26 +05:30
haxpak 63fff149f0 added requiredOneOf to device definition 2019-04-13 13:49:16 +05:30
haxpak df91c999e6 fixed typos and ran jq_all_things 2019-04-13 13:45:05 +05:30
haxpak 23ab735119 - added : attachment attribute to annotation
- added : new object type device
2019-04-13 13:32:56 +05:30
Alexandre Dulaunoy 6cbac470ef
Merge pull request #163 from haxpak/master
add : relationship "creates"
2019-04-13 09:28:04 +02:00
haxpak 26987ca80a added : meta_category "organization" #162 2019-04-13 12:11:43 +05:30
haxpak 161f72678a modified : person object "changed UI priority of the attributes"
modified : report object "added attachment to report"
2019-04-13 12:05:51 +05:30
haxpak 71419a999a new-object : Organization "Defines an organization" 2019-04-13 11:55:38 +05:30
haxpak bfa883751a add : relationship "creates" 2019-04-13 11:00:45 +05:30
Alexandre Dulaunoy c5532621b6
chg: [ip-port] ip-src added to fix #149 2019-04-07 22:28:36 +02:00
Alexandre Dulaunoy 006aa1d1a2
chg: [script] filename added to fix #149 2019-04-07 22:24:58 +02:00
Alexandre Dulaunoy bfcfe7aae9
chg: [doc] tor-hiddenservices added 2019-04-05 11:24:54 +02:00
Alexandre Dulaunoy b4478a6c2b
add: [tor-hiddenservice] a simple object template to describe Tor Onion Service 2019-04-05 11:22:22 +02:00
Alexandre Dulaunoy aca06cec1f
chg: [lnk] new LNK object (Windows Shortcut) 2019-04-03 14:05:39 +02:00
Alexandre Dulaunoy 4793bf33ae
chg: [process] fix the type - fix #160 2019-04-02 19:56:59 +02:00
Alexandre Dulaunoy ba31488e5a
Merge pull request #161 from geekscrapy/geekscrapy-patch-1
Username is often utilised alongside a credential
2019-04-02 19:55:59 +02:00
Alexandre Dulaunoy 302182e594
Merge pull request #159 from geekscrapy/patch-1
Added current-directory to required field
2019-04-02 19:55:03 +02:00
Alexandre Dulaunoy 4ae7448b0c
Merge pull request #158 from geekscrapy/patch-2
Added issuer as one of the required fields
2019-04-02 19:54:38 +02:00
molley a50986361f
Username is often utilised alongside a credential
Username can often identify malicious behavior, and is usually part of the credential tuple - it can also be used to highlight common user accounts without password/api key
2019-04-02 18:26:00 +01:00
molley 490d760a4b
Added current-directory to required field
This field will often indicate where a malicious binary is started from, therefore a good candidate for solo use
2019-04-02 17:41:07 +01:00
molley a85178255c
Added issuer as one of the required fields
This is often a field used on it's own to identify a malicious cert
2019-04-02 17:28:49 +01:00
Raphaël Vinot 0c6b7b4302 chg: Bump vehicle object 2019-04-02 17:09:02 +02:00
Alexandre Dulaunoy 047595ddeb
chg: [person] Spanish IDs added (NIE, NIF and DNI) 2019-03-15 14:36:12 +01:00
kx1499 e61344c981 Merge remote-tracking branch 'upstream/master' 2019-03-14 21:42:12 -04:00
chrisr3d 59f8621fe2
add: New relationship "retrieved-from" 2019-03-12 17:21:52 +01:00
Alexandre Dulaunoy d0886ba6af
Merge pull request #155 from Delta-Sierra/master
remove accent from ilr objects
2019-02-27 07:14:02 +01:00
Deborah Servili 55f5716b5d
remove accent from ilr objects - bis 2019-02-26 16:00:23 +01:00
Deborah Servili 96751b2af7
remove accent from ilrobjects 2019-02-26 15:57:58 +01:00
Alexandre Dulaunoy 0f10d25558
Merge pull request #154 from Delta-Sierra/master
add ilr-notification-incident object
2019-02-26 15:54:24 +01:00
Deborah Servili 41dd469869
add ilr-notification-incident object 2019-02-26 15:51:20 +01:00