Deborah Servili
0051ad8167
ddos v5 - add destination domain attribute
2017-11-23 14:43:04 +01:00
c-goes
39319e1cd6
allow multiple filenames
2017-11-23 09:57:49 +01:00
Alexandre Dulaunoy
59edaa978f
raw data is now an attachment
2017-11-22 20:52:26 +01:00
Alexandre Dulaunoy
b915869ab2
being lax on origin to avoid rebuilding url path for unknown services
2017-11-22 17:08:56 +01:00
Alexandre Dulaunoy
51e873760e
AIL leak template updated to include duplicate of leaks
2017-11-22 16:38:25 +01:00
Alexandre Dulaunoy
dd4e2d1977
fix: MISP type are case-sensitive - fixing AS number type
2017-11-19 10:22:32 +01:00
Alexandre Dulaunoy
b046eb4ba7
fix: AIL leak object to include raw-data
2017-11-15 07:32:49 +01:00
Alexandre Dulaunoy
1fd5d4f6a7
fix: subnets announced is an ip-src type
2017-11-14 15:02:49 +01:00
Alexandre Dulaunoy
666c7a6916
added: Autonomous system object describing an autonomous system which can include one or more network operators management an entity (e.g. ISP) along with their routing policy, routing prefixes o
...
r alike.
Fix #50
2017-11-13 20:36:16 +01:00
Raphaël Vinot
f9b2bdf22c
chg: Fix logic in URL
...
Fix #21
2017-11-10 15:05:22 -08:00
Raphaël Vinot
805ed85bbe
chg: Disable some correlations by default in URL
...
Fix #47
2017-11-10 15:02:37 -08:00
Raphaël Vinot
dade532c1f
Merge branch 'master' of github.com:MISP/misp-objects
2017-11-10 13:29:03 -08:00
Raphaël Vinot
b4b3e685ea
fix: requiredOneOf list of r2graphity was wrong
...
Fix #20
2017-11-10 13:28:05 -08:00
c-goes
8e47b33787
Added file attribute screenshot to email object
2017-11-09 16:07:54 +01:00
Andras Iklody
6b43b68651
Merge pull request #48 from Delta-Sierra/master
...
allow multiple ips in domain|ip object
2017-11-07 10:08:24 +01:00
Deborah Servili
51f79bceba
allow multiple ips in domain|ip object
2017-11-07 09:34:26 +01:00
Alexandre Dulaunoy
f46343b2e2
Merge pull request #46 from Delta-Sierra/master
...
update ail-leak object
2017-11-06 16:20:25 +01:00
Deborah Servili
d171c73660
update ail-leak object
2017-11-06 14:53:58 +01:00
Alexandre Dulaunoy
2a2b48a162
fix: origin of credential as sane_default
2017-11-02 21:37:53 +01:00
Alexandre Dulaunoy
dab3ad881a
add: credential object ( fix #44 )
2017-11-02 20:41:02 +01:00
Raphaël Vinot
28dfbb50f7
Remove the executable flag from the json files
2017-10-25 12:16:17 -04:00
Raphaël Vinot
3569c70407
Add report object
2017-10-24 13:04:41 -04:00
Thomas Gardner
6e36c162a4
fixed av-signature merge conflicts with upstream
2017-10-24 10:26:24 -04:00
Thomas Gardner
1c4933c1ce
disabled AV software correlation and re-ran jq-all-the-things
2017-10-24 10:23:46 -04:00
Alexandre Dulaunoy
9410aa99a5
Fix the file object
2017-10-23 20:35:07 +02:00
Alexandre Dulaunoy
0f3261077b
State added to file like signed, harmless...
2017-10-23 20:28:30 +02:00
Raphaël Vinot
b801bc6603
jq all the things
2017-10-23 11:51:05 -04:00
Thomas Gardner
f9204db304
added av-signature and virustotal-report
2017-10-23 10:43:12 -04:00
Alexandre Dulaunoy
a5d2f71fef
Merge pull request #34 from MISP/fix-31-2
...
Fix object name
2017-10-16 15:41:33 +02:00
Raphaël Vinot
9078fa0e73
Fix object name
...
Related to: https://github.com/MISP/misp-objects/issues/31
2017-10-16 11:41:22 +02:00
Raphaël Vinot
60a375f85d
Fix object name.
...
Related to: https://github.com/MISP/misp-objects/issues/31
2017-10-16 11:40:20 +02:00
Alexandre Dulaunoy
0ab002e94c
Fix typo in the field
2017-10-13 15:08:25 +02:00
Alexandre Dulaunoy
9b55a361ec
Some updates including description of fields
2017-10-13 15:02:04 +02:00
Alexandre Dulaunoy
94b9bc9aee
First version of Netflow object based on proposal from @JanKoDFNCERT
...
Open questions:
- What is a minimal Netflow records? I relax a bit the required fields.
- How does this work with IPFIX (and variable templates)?
- How should we express the TCP flags expressed? (S/SA/SAF)
2017-10-13 14:30:10 +02:00
Alexandre Dulaunoy
2b9ba3ac00
add: RTIR object added (as requested by CSP - Cyber Security Core Service Platform)
2017-10-12 22:08:09 +02:00
Alexandre Dulaunoy
deda8abfb1
use url attribute type for link inside a post
2017-10-06 08:22:41 +02:00
Alexandre Dulaunoy
c4bc232be2
Merge branch 'patch-4' of https://github.com/ater49/misp-objects into ater49-patch-4
2017-10-06 08:22:00 +02:00
ater49
a13726c138
Update definition.json
...
Link attribute added in case of url present into the post.
Multiple set to true for "username-quoted"
2017-10-04 13:31:25 +02:00
ater49
71860b21e9
New attributes: title
...
In case of paste or post has a title.
Ghostbin.com origin added
2017-10-04 13:24:29 +02:00
Alexandre Dulaunoy
bc7c84ca5a
add: Paste or similar post from a website allowing to share privately or publicly posts.
2017-09-29 14:59:39 +02:00
Alexandre Dulaunoy
f10f361df0
jq all and fix the space ;-)
2017-09-28 22:07:15 +02:00
ater49
4c69154ad3
Attributes username-quoted added
...
Added Attributes: "username-quoted"
Added types: LinkedIn, Reddit, Google+, Instagram
2017-09-28 21:36:27 +02:00
Alexandre Dulaunoy
5a80d5c4d2
add: Microblog post object like a Twitter tweet or a post on a Facebook wall.
2017-09-28 19:32:31 +02:00
Alexandre Dulaunoy
5b66865268
Carbon copy field added
2017-09-27 16:43:21 +02:00
Alexandre Dulaunoy
140b55254a
return-path added in email object
2017-09-25 20:37:02 +02:00
Alexandre Dulaunoy
9d14620739
Victim object added mainly based on the STIX 2.0 victim proposal
2017-09-24 21:21:33 +02:00
Alexandre Dulaunoy
3ecace4d12
First version of the ja3 object based on the proposal from @delbs
2017-09-24 20:10:59 +02:00
Alexandre Dulaunoy
a5c0c4e192
Fixing typo in the credit-card object
2017-09-21 15:35:05 +02:00
Alexandre Dulaunoy
d22ced3b82
whois template fixed
2017-09-18 09:01:57 +02:00
Alexandre Dulaunoy
3e00c3129c
Fix #22
2017-09-18 08:11:25 +02:00