Commit Graph

1891 Commits (v2.4.198)

Author SHA1 Message Date
Alexandre Dulaunoy 7f77dbe685
chg: [shadowserver-malware-url-report] sane default added for severity
Ref: https://github.com/The-Shadowserver-Foundation/report_schema/blob/main/severity.md
2023-12-07 08:50:15 +01:00
Alexandre Dulaunoy f02af50725
chg: [shadowserver-malware-url-report] sane_default added 2023-12-06 09:50:54 +01:00
Alexandre Dulaunoy 23e41b2262
chg: [shadowserver-malware-url-report] severity added 2023-12-06 09:46:08 +01:00
Alexandre Dulaunoy 047d442311
fix: [report] typo fixed 2023-12-06 09:32:13 +01:00
Alexandre Dulaunoy 08db16c162
chg: [report] `title` field added to the report object template 2023-12-06 09:05:16 +01:00
Alexandre Dulaunoy c536f2f318
fix: [shadowserver-malware-url-report] `port` field added 2023-12-06 08:45:51 +01:00
Alexandre Dulaunoy 4dd61cb063
Merge branch 'mFaou-main' into main 2023-12-05 20:58:48 +01:00
Alexandre Dulaunoy a240e70334
fix: [victim] object updated 2023-12-05 20:58:22 +01:00
Matthieu Faou 5a19c46498
Changed academic research to academia - university to align with the sector cluster 2023-12-05 12:25:32 -05:00
Matthieu Faou d7007fe456
Added 5 sectors to the victim object 2023-12-05 11:50:38 -05:00
Alexandre Dulaunoy c18a240153
new: [shadowserver-malware-url-report] first version
Transposition of the `malware_url` from Shadowserver
2023-11-22 09:20:56 +01:00
Alexandre Dulaunoy 8ebd4af6af
Merge pull request #409 from matthijsvp/main
Updated attack-step
2023-11-21 15:12:47 +01:00
Matthijs van P fd90274503
Merge branch 'MISP:main' into main 2023-11-21 14:03:33 +01:00
Alexandre Dulaunoy d105769d6f
chg: [doc] MISP objects list updated 2023-11-21 08:29:49 +01:00
Alexandre Dulaunoy 1980c79260
Merge branch 'akshayjain-1-main' into main 2023-11-21 08:21:15 +01:00
Alexandre Dulaunoy d4b6596a9d
fix: [crowdstrike-report] jq all the things 2023-11-21 08:20:35 +01:00
akshayjain-1 516d5ac668
Update definition.json
Changed the file hash attribute type to sha256 from text
2023-11-20 13:54:12 -05:00
akshayjain-1 feeaa600b7
Create definition.json for Crowdstrike report 2023-11-20 12:09:18 -05:00
Matthijs van Polen f90ff8c3c0 [attack-step] Fixed typo, added multiples. 2023-11-10 15:18:48 +01:00
Christian Studer ca371d4567 Merge branch 'chrisr3d_patch' of github.com:MISP/misp-objects 2023-11-09 12:24:52 +01:00
Christian Studer a1d2ca28fb Merge branch 'main' of github.com:MISP/misp-objects 2023-11-09 12:24:38 +01:00
Christian Studer 8fb566fc60
add: [intrusion-set] Added `first_seen` & `last_seen` attributes 2023-11-09 12:10:52 +01:00
Christian Studer 4828fbad62 Merge branch 'main' of github.com:MISP/misp-objects into chrisr3d_patch 2023-11-09 12:08:26 +01:00
Alexandre Dulaunoy 0e4c819354
Merge pull request #405 from bynt/main
new misp-object: c2-list
2023-11-07 21:19:55 +01:00
Christian Studer 21f683a993
Merge pull request #406 from MISP/chrisr3d_patch
Add an `email` attribute to the `user-account` template
2023-10-31 16:00:28 +01:00
Christian Studer d1653d9783
add: [user-account] Added email attribute 2023-10-31 15:49:44 +01:00
Christian Studer a800441266 Merge branch 'main' of github.com:MISP/misp-objects into chrisr3d_patch 2023-10-31 15:48:46 +01:00
Alexandre Dulaunoy 5feb052732
chg: [cs-beacon-config] some updates 2023-10-13 16:29:01 +02:00
Alexandre Dulaunoy 3c2b62d3c3
chg: [cryptocurrency-transaction] fix the UUID 2023-09-28 10:18:32 +02:00
Alexandre Dulaunoy 40323d411e
new: [cryptocurrency-transaction] generic transaction object for any
cryptocurrency
2023-09-28 10:14:34 +02:00
Alexandre Dulaunoy 64e37f4bc8
chg: [coin-address] add a generic crypto address if the address format
is not known or supported
2023-09-28 10:06:02 +02:00
Martin Waleczek 652f0f7120 reorder elements 2023-09-19 17:05:06 +02:00
Martin Waleczek aa3bbd44fa add c2-ip to definition.json 2023-09-19 16:58:06 +02:00
Martin Waleczek 4e10e5501e add definition.json for c2-list 2023-09-19 16:31:10 +02:00
Christian Studer 364f747e9d
fix: [relationship] JQed... 2023-09-14 16:58:57 +02:00
Christian Studer bb21ca8350
fix: [ilr-notification-incident] Typo 2023-09-14 16:58:22 +02:00
Christian Studer aee9ae631f Merge branch 'chrisr3d_patch' of github.com:MISP/misp-objects 2023-09-14 15:42:10 +02:00
Christian Studer 6d5b06ec52 Merge branch 'main' of github.com:MISP/misp-objects 2023-09-14 15:41:54 +02:00
Christian Studer 27a568d1ce
add: [relationships] Added a few relationship types & opposites 2023-09-14 15:40:18 +02:00
Christian Studer a773592707 Merge branch 'main' of github.com:MISP/misp-objects into chrisr3d_patch 2023-09-14 15:18:24 +02:00
Alexandre Dulaunoy 0edf925a59
chg: [email] email-body-attachment added 2023-09-11 11:28:39 +02:00
Alexandre Dulaunoy d32f9b1add
fix: [virustotal-report] bump version 2023-09-01 09:34:08 +02:00
Christian Studer 582e5b5455 Merge branch 'main' of github.com:MISP/misp-objects into chrisr3d_patch 2023-08-23 13:34:02 +02:00
Alexandre Dulaunoy 8b64898157
Merge pull request #404 from MISP/chrisr3d_patch
Artifact object update
2023-08-17 16:10:06 +02:00
Christian Studer 1ddb03e342
fix: [artifact] Properly JQed the end of file 2023-08-17 14:49:44 +02:00
Christian Studer 8e1a620554 Merge branch 'main' of github.com:MISP/misp-objects into chrisr3d_patch 2023-08-16 23:33:53 +02:00
Christian Studer 9a63309ba4
chg: [artifact] Changed the `hashes` attribute into the different hash type attributes
- A change to adopt the same logic as file objects
  regarding the different hash values
- In STIX 2.1 an Artifact object is not necessarily
  linked to a File object and both referenced by
  an Observed Data object. In some cases Artifact
  objects are referenced for instance by Malware
  objects, in which case they describe the actual
  malware sample. It is then usefull to have the
  different hash values in single attributes rather
  than concatenated in a text attribute
2023-08-16 23:25:32 +02:00
Alexandre Dulaunoy b41a39e986
Merge pull request #403 from MISP/chrisr3d_patch
Malware & Malware Analysis objects
2023-08-16 22:40:01 +02:00
Christian Studer c784a4a6e4
add: [readme] Added `malware` and `malware-analysis` to the list of available object templates, with a small description for each 2023-08-16 22:27:37 +02:00
Christian Studer b87cafc35e
fix: [malware] Fixed `is_family` attribute type 2023-08-10 11:39:44 +02:00