misp-objects/objects
Christophe Vandeplas 28328aa53d
chg: [registry-key] added Artifacts dropped as potential category
2024-04-25 11:18:26 +02:00
..
ADS fix: [jq] JSON fixed 2022-12-15 14:39:52 +01:00
abuseipdb fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
ai-chat-prompt fix: [ai-chat-prompt] improved ai-chat-prompt template 2023-04-16 10:50:30 +02:00
ail-leak chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
ais fix: forgot to jq all the things. 2023-03-01 15:13:39 +01:00
ais-info chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
android-app new: android-app object template 2020-06-21 21:45:46 +02:00
android-permission chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
annotation chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
anonymisation chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
apivoid-email-verification new: Add apivoid email verification API result object 2022-02-07 17:54:31 +01:00
artifact chg: [artifact] Changed the `payload_bin` attribute to attachment type 2024-01-19 23:15:41 +01:00
asn fix: [objects description] ref #384 - Grammar fixes included in the JSON files. 2023-02-02 10:51:32 +01:00
attack-pattern chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
attack-step [attack-step] Fixed typo, added multiples. 2023-11-10 15:18:48 +01:00
authentication-failure-report add: [d4] authentication failure report object 2020-06-16 15:59:02 +02:00
authenticode-signerinfo chg: Update objects to match lief output for authenticode 2021-01-19 15:38:31 +01:00
av-signature chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
availability-impact wip: [impacts] New template for different types of impacts as described in STIX 2.1 Incident object extensions 2023-06-22 15:16:48 +02:00
bank-account Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
bgp-hijack chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
bgp-ranking fix: Disabling correlation for all the bgp-ranking object attributes 2020-09-09 10:09:07 +02:00
blog chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
boleto chg: [boleto] JSON fixed 2020-05-04 13:19:59 +02:00
btc-transaction chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
btc-wallet fix: [objects description] ref #384 - Grammar fixes included in the JSON files. 2023-02-02 10:51:32 +01:00
c2-list reorder elements 2023-09-19 17:05:06 +02:00
cap-alert chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
cap-info chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
cap-resource chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
cert-pl-phishing chg: [cert-pl-phishing] fixed 2024-04-04 16:53:46 +02:00
cloth test 2022-03-21 10:08:36 +00:00
coin-address chg: [coin-address] add a generic crypto address if the address format 2023-09-28 10:06:02 +02:00
command chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
command-line chg: [command-line] added sane_default 2024-03-16 09:48:29 +01:00
concordia-mtmf-intrusion-set fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
confidentiality-impact fix: [impacts] Typo 2023-06-22 15:50:54 +02:00
cookie chg: [cookie] cookie can be also only a key or a value 2023-06-14 17:36:22 +02:00
cortex fix: [objects description] ref #384 - Grammar fixes included in the JSON files. 2023-02-02 10:51:32 +01:00
cortex-taxonomy fix: [objects description] ref #384 - Grammar fixes included in the JSON files. 2023-02-02 10:51:32 +01:00
course-of-action chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
covid19-csse-daily-report fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
covid19-dxy-live-city chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
covid19-dxy-live-province chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
cowrie chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
cpe-asset chg: Using the actual attribute type for cpe and weakness instead of text 2020-10-22 22:11:50 +02:00
credential chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
credit-card chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
crowdsec-ip-context change type of ans name 2024-03-07 12:02:23 +00:00
crowdstrike-report fix: [crowdstrike-report] jq all the things 2023-11-21 08:20:35 +01:00
crypto-material chg: [crypto-material] add a public field for public cryptographic materials 2020-12-30 14:21:37 +01:00
cryptocurrency-transaction chg: [cryptocurrency-transaction] fix the UUID 2023-09-28 10:18:32 +02:00
cs-beacon-config fix: [cs-beacong-config] typo fixed 2024-04-24 16:29:33 +02:00
cytomic-orion-file chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
cytomic-orion-machine chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
dark-pattern-item chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
ddos fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
device chg: [device] ui-priority added 2021-10-25 16:05:04 +02:00
diameter-attack fix: [JSON] updated 2022-02-03 17:44:17 +01:00
diamond fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
directory add: [directory] New object template for directories 2023-02-27 10:56:31 +01:00
dkim fix: [dkim] clean-up 2021-02-25 07:25:09 +01:00
dns-record Add more rrtypes to dns-record 2020-08-15 14:57:53 +02:00
domain-crawled chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
domain-ip chg: [domain-ip] added the multiple flag back to ports 2022-05-30 18:07:25 +02:00
edr-report Ran jq_all_the_things.sh 2021-10-06 20:13:39 +02:00
elf chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
elf-section chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
email chg: [email] email-body-attachment added 2023-09-11 11:28:39 +02:00
employee add: [employee] Added a `full-name` object_relation for cases when we are not sure which name is the first and the last 2022-03-31 20:21:12 +02:00
error-message new: [error-message] new template to create error-message from MISP processing scripts 2022-02-17 16:47:08 +01:00
event wip: [event] New object template to describe events that can happen during an incident 2023-06-22 12:28:47 +02:00
exploit Add software impacted by exploit 2024-03-18 14:19:35 +00:00
exploit-poc chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
external-impact wip: [impacts] New template for different types of impacts as described in STIX 2.1 Incident object extensions 2023-06-22 15:16:48 +02:00
facebook-account chg: [dev] add user avatar 2020-05-28 16:40:21 -04:00
facebook-group fix: [facebook-group] add an optional ID reference to the facebook id 2022-09-09 07:24:05 +02:00
facebook-page chg: [dev] run rq 2020-05-28 15:32:43 -04:00
facebook-post chg: [dev] change post-id attribute type to text 2020-05-28 15:48:18 -04:00
facebook-reaction new: [facebook-reaction] new object to link reaction with facebook posts or alike 2022-09-09 07:21:59 +02:00
facial-composite chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
fail2ban fix: [fail2ban] incorrect UUID fixed 2022-12-11 12:54:24 +01:00
favicon chg: [favicon] jq all the things 2020-12-27 16:21:09 +01:00
file add: [file] Added creation, modification & access time attributes 2023-02-20 19:31:59 +01:00
flowintel-cm-case chg: [flowintel-cm] notes 2024-04-18 14:40:16 +02:00
flowintel-cm-task chg: [flowintel-cm] notes 2024-04-18 14:40:16 +02:00
flowintel-cm-task-note chg: [flowintel-cm] notes 2024-04-18 14:40:16 +02:00
forensic-case chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
forensic-evidence chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
forged-document chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
ftm-Airplane fix: [ftm] missing description fix #363 2022-06-30 17:19:33 +02:00
ftm-Assessment fix: [ftm] missing description fix #363 2022-06-30 17:19:33 +02:00
ftm-Asset fix: [ftm] missing description fix #363 2022-06-30 17:19:33 +02:00
ftm-Associate new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-Audio fix: [ftm] missing description fix #363 2022-06-30 17:19:33 +02:00
ftm-BankAccount fix: [ftm] missing description fix #363 2022-06-30 17:19:33 +02:00
ftm-Call chg: [ftm-Call] fixed missing description 2022-06-30 17:12:25 +02:00
ftm-Company fix: [template] missing newlines 2022-01-06 16:52:43 +01:00
ftm-Contract new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-ContractAward new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-CourtCase fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-CourtCaseParty fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Debt new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-Directorship fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Document fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Documentation fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-EconomicActivity new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-Email fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Event fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Family new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-Folder fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-HyperText fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Image fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Land fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-LegalEntity new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-License new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-Membership fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Message fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Organization fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Ownership fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Package fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Page fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Pages fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Passport new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-Payment new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-Person new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-PlainText fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-PublicBody new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-RealEstate new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-Representation new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-Row fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Sanction new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-Succession new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-Table fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-TaxRoll new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-UnknownLink fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-UserAccount fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Vehicle fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Vessel new: Objects and relations for FollowTheMoney 2020-05-05 11:02:53 +02:00
ftm-Video fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Workbook fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
game-cheat added cheat types and minor changes 2022-03-15 03:37:26 +01:00
generalizing-persuasion-framework new: [gpf] Split actors_speaker and settings_competition into more 2024-04-14 07:26:53 +02:00
geolocation chg: [geolocation] countrycode added as requested for the VarIOT. 2021-10-25 15:35:23 +02:00
git-vuln-finder new: Preliminary version of git-vuln-finder object template 2020-05-26 12:31:45 +02:00
github-user fix: [template] missing newlines 2022-01-06 16:52:43 +01:00
gitlab-user chg: [gitlab-user] because -r is important 2020-10-07 09:20:54 +02:00
google-safe-browsing Added a is-malicious attribute for abuseipdb and added a google-safe-browsing object for the google-safe-browsing expansion module 2023-07-13 09:25:26 -04:00
greynoise-ip chg: [greynoise-intelligence] JSON fixed 2023-03-10 15:34:32 +01:00
gtp-attack fix: [JSON] updated 2022-02-03 17:44:17 +01:00
hashlookup chg: [hashlookup] add KnownMalicious field in hashlookup record 2021-09-24 15:33:53 +02:00
hhhash chg: [hhhash] newline fixed 2023-07-10 16:40:22 +02:00
http-request chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
identity new: [identity] from STIX 2.1 - 4.5 - new object template 2022-01-31 07:45:38 +01:00
ilr-impact chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
ilr-notification-incident fix: [ilr-notification-incident] Typo 2023-09-14 16:58:22 +02:00
image new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image. 2020-05-29 21:10:02 -04:00
impersonation chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
imsi-catcher fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
incident add: [incident] Added the score attribute 2023-07-07 11:36:42 +02:00
infrastructure new: [infrastructure] infrastructure object added (STIX 2.1 - 4.8) 2022-02-14 11:30:09 +01:00
instant-message chg: [instant-message] remove newlines 2024-04-24 14:30:19 +02:00
instant-message-group chg: [instan-message-*] add Tox as potential chat application 2022-01-16 16:39:06 +01:00
integrity-impact fix: [impacts] Typo 2023-06-22 15:50:54 +02:00
intel471-vulnerability-intelligence Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
intelmq_event fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
intelmq_report fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
internal-reference chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
interpol-notice chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
intrusion-set add: [intrusion-set] Added `first_seen` & `last_seen` attributes 2023-11-09 12:10:52 +01:00
iot-device chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
iot-firmware chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
ip-api-address fix: Normalised object relations of the ip-api-address object 2020-09-03 14:10:02 +02:00
ip-port fix: [ip-port] jq all the things 2022-03-11 10:21:09 +01:00
irc chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
ja3 chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
ja3s chg: [ja3s] Add domain and hostname attributes 2023-07-20 10:24:42 +03:00
jarm chg: [jarm] jq all the things 2021-01-05 14:49:34 +01:00
keybase-account chg: Sort json 2020-09-16 15:17:43 +02:00
language-content new: [language-content] New object template language-content based on 2022-02-15 07:21:58 +01:00
leaked-document chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
legal-entity chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
lnk chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
macho chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
macho-section chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
mactime-timeline-analysis fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
malware fix: [malware] Fixed `is_family` attribute type 2023-08-10 11:39:44 +02:00
malware-analysis add: [malware-analysis] New object template to describe a static or dynamic analysis performed on a malware instance or family 2023-07-25 15:24:39 +02:00
malware-config fix: [malware-config] typo fixed 2023-07-31 11:21:29 +02:00
meme-image Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
microblog chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
monetary-impact wip: [impacts] New template for different types of impacts as described in STIX 2.1 Incident object extensions 2023-06-22 15:16:48 +02:00
mutex chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
narrative chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
netflow fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
network-connection fix: [network-connection] Using the `size-in-bytes` attribute type for information expressed in bytes 2024-04-11 09:42:06 +02:00
network-profile chg: [network-element] jq 2021-02-24 06:48:10 +01:00
network-socket fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
network-traffic chg: [network-traffic] Going for the `protocol` attribute in singular 2024-04-11 12:04:55 +02:00
news-agency chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
news-media chg: [news-media] add governmental communication and also news agency 2024-04-12 10:22:53 +02:00
open-data-security new: [open-data-security] new object template based on open data 2021-05-17 15:55:23 +02:00
organization chg: [person/organization] `impersonated` added to the role of person 2024-03-05 08:59:45 +01:00
original-imported-file chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
paloalto-threat-event fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
parler-account Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
parler-comment chg: [dev] add Parler app objects 2020-07-05 22:03:16 -04:00
parler-post Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
passive-dns chg: [passive-dns] jq 2021-05-03 07:20:51 +02:00
passive-dns-dnsdbflex fix: [passive-dns-dnsdbflex] newline 2021-05-26 14:12:10 +02:00
passive-ssh add: [passive-ssh] Added `port` attribute 2022-05-06 17:01:13 +02:00
paste Typo and version number correction + adding a field in twitter-post 2020-12-14 23:01:12 +01:00
pcap-metadata chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
pe fix: [pe] Removing the `disable_correlation` flag for a `size-in-bytes` attribute type 2024-04-03 17:33:30 +02:00
pe-optional-header add: [pe-optional-header] New object template for PE optional headers 2024-04-03 17:32:47 +02:00
pe-section chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
persnona fix: [jq] JSON fixed 2022-12-15 14:39:52 +01:00
person chg: [person/organization] `impersonated` added to the role of person 2024-03-05 08:59:45 +01:00
personification chg: [personification] fixed 2022-03-24 15:42:35 +01:00
pgp-meta chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
phishing chg: [phishing] newline 2021-05-11 15:44:35 +02:00
phishing-kit fix: Normalised object relations of the phishing objects 2020-09-03 14:12:05 +02:00
phone chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
physical-impact wip: [impacts] New template for different types of impacts as described in STIX 2.1 Incident object extensions 2023-06-22 15:16:48 +02:00
postal-address chg: add requiredOneOf for postal-address 2021-12-20 14:15:10 +01:00
probabilistic-data-structure fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
process add: [process] Environment variables attribute 2024-01-30 15:19:54 +01:00
publication chg: [publication] modify requiredOneOf, contributor type to text attribute 2020-04-28 18:58:59 -04:00
python-etvx-event-log chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
query chg: [query] add Kusto Query Language (KQL) 2022-06-25 19:20:13 +02:00
r2graphity fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
ransom-negotiation Added fields 2022-05-20 15:53:29 +02:00
ransomware-group-post fix: [ransomware-group-post] added the missing descriptions for `actor-geo-stats-30d` and `actor-total-stats-30d` 2024-04-24 16:47:47 +02:00
reddit-account chg: [dev] make Reddit attributes (mostly) reflect Reddit API. 2020-06-08 11:16:59 -04:00
reddit-comment chg: [dev] make Reddit attributes (mostly) reflect Reddit API. 2020-06-08 11:16:59 -04:00
reddit-post chg: [dev] make Reddit attributes (mostly) reflect Reddit API. 2020-06-08 11:16:59 -04:00
reddit-subreddit chg: [dev] make Reddit attributes (mostly) reflect Reddit API. 2020-06-08 11:16:59 -04:00
regexp chg: [regexp] fixed 2021-02-19 21:56:35 +01:00
registry-key chg: [registry-key] added Artifacts dropped as potential category 2024-04-25 11:18:26 +02:00
registry-key-value add: [registry-key-value] New template to describe registry key values 2023-03-01 20:50:30 +01:00
regripper-NTUser Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
regripper-sam-hive-single-user chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
regripper-sam-hive-user-group chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
regripper-software-hive-BHO chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
regripper-software-hive-appInit-DLLS chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
regripper-software-hive-application-paths chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
regripper-software-hive-applications-installed chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
regripper-software-hive-command-shell chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
regripper-software-hive-software-run chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
regripper-software-hive-userprofile-winlogon Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
regripper-software-hive-windows-general-info chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
regripper-system-hive-firewall-configuration Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
regripper-system-hive-general-configuration Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
regripper-system-hive-network-information Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
regripper-system-hive-services-drivers chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
report fix: [report] typo fixed 2023-12-06 09:32:13 +01:00
research-scanner chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
risk-assessment-report new: [risk-assessment-report] New object template Risk assessment report 2023-04-13 10:41:39 +02:00
rogue-dns chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
rtir chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
sandbox-report chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
sb-signature chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
scan-result fix: [scan-results] JSON and trailing comma ;-) 2023-08-03 10:47:45 +02:00
scheduled-event chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
scheduled-task chg: [scheduled-task] disable_correlation + clarification 2022-07-08 15:03:27 +02:00
scrippsco2-c13-daily fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
scrippsco2-c13-monthly chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
scrippsco2-co2-daily fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
scrippsco2-co2-monthly chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
scrippsco2-o18-daily fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
scrippsco2-o18-monthly chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
script chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
security-playbook chg: [security-playbook] JSON fixed 2022-08-25 10:17:48 +02:00
shadowserver-malware-url-report chg: [shadowserver-malware-url-report] resource path added to improve 2023-12-08 15:18:32 +01:00
shell-commands chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
shodan-report chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
short-message-service chg: [sms] format fixed 2020-05-14 18:17:09 +02:00
shortened-link chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
sigma new: [sigma] a sigma attribute exists in MISP but the object was 2022-08-03 11:44:37 +02:00
sigmf-archive fix: jq all the things 2023-08-03 09:30:58 +02:00
sigmf-expanded-recording fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
sigmf-recording fix: minor fixes 2023-08-03 08:07:47 +02:00
social-media-group chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
software new: [software] software template object added based 6.14 (STIX 2.1) 2022-02-14 11:06:53 +01:00
spearphishing-attachment jq_all_the_things 2022-08-25 16:03:59 -05:00
spearphishing-link jq_all_the_things 2022-08-25 16:03:59 -05:00
splunk fix: [splunk] fixed 2021-02-15 15:10:20 +01:00
ss7-attack modified by ./jq_all_the_things.sh 2022-03-21 15:04:26 +01:00
ssh-authorized-keys chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
stairwell fixed parse error 2024-03-15 14:04:07 -05:00
stix2-pattern chg: [stix2-pattern] add STIX 2.1 2022-01-14 16:43:01 +01:00
stock chg: [stock] newline fixed 2022-06-18 17:00:13 +02:00
submarine fix: Changed a few attribute types in different template 2024-04-13 12:24:58 +02:00
suricata chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
target-system chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
task wip: [task] New object template for tasks as described in STIX 2.1 Incident object extensions 2023-06-22 15:39:02 +02:00
tattoo test 2022-03-21 10:08:36 +00:00
telegram-account chg: [telegram-account] required attributes 2021-01-26 11:39:22 +01:00
telegram-bot add username field in telegram-bot object 2022-10-13 13:45:52 +02:00
temporal-event fix: [temporal-event] newline issue 2021-12-21 08:15:06 +01:00
thaicert-group-cards fix: [jq] all 2022-12-22 13:15:10 +01:00
threatgrid-report chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
timecode chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
timesketch-timeline chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
timesketch_message chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
timestamp chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
tor-hiddenservice chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
tor-node chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
traceability-impact wip: [impacts] New template for different types of impacts as described in STIX 2.1 Incident object extensions 2023-06-22 15:16:48 +02:00
tracking-id chg: [dev] update tracking-id to disable correlation on id description. minor changes to attribute descriptions. 2020-05-28 15:19:27 -04:00
transaction chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
translation chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
transport-ticket chg: [transport-ticket] update to add the type of ticket (e.g. boarding pass versus ticket) 2023-01-27 15:55:08 +01:00
trustar_report chg: [trustar_report] Updated to add "THREAT_ACTOR" 2021-01-05 09:30:28 +01:00
tsk-chats chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
tsk-web-bookmark chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
tsk-web-cookie chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
tsk-web-downloads chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
tsk-web-history chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
tsk-web-search-query chg: [tsk-web-search-query] jq all the things 2021-07-25 09:11:42 +02:00
twitter-account fix: JSON Validation 2020-09-09 10:36:20 +02:00
twitter-list chg: [dev] run validate_all/jq 2020-06-02 11:11:43 -04:00
twitter-post chg: [twitter-post] jq 2020-12-20 10:52:40 +01:00
typosquatting-finder chg: [typosquatting] jq_all_the_things 2023-01-16 08:45:20 +01:00
typosquatting-finder-result chg: [typosquatting] jq_all_the_things 2023-01-16 08:45:20 +01:00
url chg: [url] jq all the things 2021-02-02 11:57:41 +01:00
user-account add: [user-account] Added email attribute 2023-10-31 15:49:44 +01:00
vehicle fix: [vehicle] jq all the things 2022-12-30 07:37:54 +01:00
victim fix: [victim] object updated 2023-12-05 20:58:22 +01:00
virustotal-graph chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
virustotal-report fix: [virustotal-report] bump version 2023-09-01 09:34:08 +02:00
virustotal-submission Fixes wrong category and typo in value list 2022-04-26 15:05:05 +02:00
vulnerability chg: [vulnerability] fixed 2020-10-15 22:49:29 +02:00
weakness chg: Using the actual attribute type for cpe and weakness instead of text 2020-10-22 22:11:50 +02:00
whois chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
windows-service new: [windows-service] windows-service object added 2021-02-13 17:01:44 +01:00
x-header new: [x-header] new generic X header object for SMTP, HTTP and others 2023-08-07 14:36:24 +02:00
x509 Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
yabin chg: Sort all the entries in the templates by default 2020-04-26 02:13:18 +02:00
yara fix: [yara] add a reference link to the YARA object template 2022-08-03 11:46:30 +02:00
youtube-channel new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image. 2020-05-29 21:10:02 -04:00
youtube-comment new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image. 2020-05-29 21:10:02 -04:00
youtube-playlist new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image. 2020-05-29 21:10:02 -04:00
youtube-video new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image. 2020-05-29 21:10:02 -04:00