.. |
ADS
|
fix: [jq] JSON fixed
|
2022-12-15 14:39:52 +01:00 |
abuseipdb
|
Fixed json formatting
|
2023-07-13 09:48:12 -04:00 |
ai-chat-prompt
|
fix: [ai-chat-prompt] improved ai-chat-prompt template
|
2023-04-16 10:50:30 +02:00 |
ail-leak
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
ais
|
fix: forgot to jq all the things.
|
2023-03-01 15:13:39 +01:00 |
ais-info
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
android-app
|
new: android-app object template
|
2020-06-21 21:45:46 +02:00 |
android-permission
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
annotation
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
anonymisation
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
apivoid-email-verification
|
new: Add apivoid email verification API result object
|
2022-02-07 17:54:31 +01:00 |
artifact
|
chg: [artifact] Changed the `payload_bin` attribute to attachment type
|
2024-01-19 23:15:41 +01:00 |
asn
|
fix: [objects description] ref #384 - Grammar fixes included in the JSON files.
|
2023-02-02 10:51:32 +01:00 |
attack-pattern
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
attack-step
|
[attack-step] Fixed typo, added multiples.
|
2023-11-10 15:18:48 +01:00 |
authentication-failure-report
|
add: [d4] authentication failure report object
|
2020-06-16 15:59:02 +02:00 |
authenticode-signerinfo
|
chg: Update objects to match lief output for authenticode
|
2021-01-19 15:38:31 +01:00 |
av-signature
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
availability-impact
|
wip: [impacts] New template for different types of impacts as described in STIX 2.1 Incident object extensions
|
2023-06-22 15:16:48 +02:00 |
bank-account
|
Add sane default for boolean objects
|
2021-12-20 20:02:29 +00:00 |
bgp-hijack
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
bgp-ranking
|
fix: Disabling correlation for all the bgp-ranking object attributes
|
2020-09-09 10:09:07 +02:00 |
blog
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
boleto
|
chg: [boleto] JSON fixed
|
2020-05-04 13:19:59 +02:00 |
btc-transaction
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
btc-wallet
|
fix: [objects description] ref #384 - Grammar fixes included in the JSON files.
|
2023-02-02 10:51:32 +01:00 |
c2-list
|
reorder elements
|
2023-09-19 17:05:06 +02:00 |
cap-alert
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
cap-info
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
cap-resource
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
cert-pl-phishing
|
new: [cert-pl-phishing] first draft of a template for the CERT.PL
|
2024-04-04 16:45:33 +02:00 |
cloth
|
test
|
2022-03-21 10:08:36 +00:00 |
coin-address
|
chg: [coin-address] add a generic crypto address if the address format
|
2023-09-28 10:06:02 +02:00 |
command
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
command-line
|
chg: [command-line] added sane_default
|
2024-03-16 09:48:29 +01:00 |
concordia-mtmf-intrusion-set
|
fix: incorrect entry in CMTMF_ATCKID
|
2021-12-20 13:17:46 +01:00 |
confidentiality-impact
|
fix: [impacts] Typo
|
2023-06-22 15:50:54 +02:00 |
cookie
|
chg: [cookie] cookie can be also only a key or a value
|
2023-06-14 17:36:22 +02:00 |
cortex
|
fix: [objects description] ref #384 - Grammar fixes included in the JSON files.
|
2023-02-02 10:51:32 +01:00 |
cortex-taxonomy
|
fix: [objects description] ref #384 - Grammar fixes included in the JSON files.
|
2023-02-02 10:51:32 +01:00 |
course-of-action
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
covid19-csse-daily-report
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
covid19-dxy-live-city
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
covid19-dxy-live-province
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
cowrie
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
cpe-asset
|
chg: Using the actual attribute type for cpe and weakness instead of text
|
2020-10-22 22:11:50 +02:00 |
credential
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
credit-card
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
crowdsec-ip-context
|
change type of ans name
|
2024-03-07 12:02:23 +00:00 |
crowdstrike-report
|
fix: [crowdstrike-report] jq all the things
|
2023-11-21 08:20:35 +01:00 |
crypto-material
|
chg: [crypto-material] add a public field for public cryptographic materials
|
2020-12-30 14:21:37 +01:00 |
cryptocurrency-transaction
|
chg: [cryptocurrency-transaction] fix the UUID
|
2023-09-28 10:18:32 +02:00 |
cs-beacon-config
|
fix: [cs-beacon-config] Partial info from CS beacon are possible
|
2024-03-06 07:24:37 +01:00 |
cytomic-orion-file
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
cytomic-orion-machine
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
dark-pattern-item
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
ddos
|
chg: [ddos] object type alone authorized if the source/target cannot be
|
2024-03-29 16:22:07 +01:00 |
device
|
chg: [device] ui-priority added
|
2021-10-25 16:05:04 +02:00 |
diameter-attack
|
fix: [JSON] updated
|
2022-02-03 17:44:17 +01:00 |
diamond
|
ran jq_all_the_things.sh
|
2023-06-14 11:54:46 +00:00 |
directory
|
add: [directory] New object template for directories
|
2023-02-27 10:56:31 +01:00 |
dkim
|
fix: [dkim] clean-up
|
2021-02-25 07:25:09 +01:00 |
dns-record
|
Add more rrtypes to dns-record
|
2020-08-15 14:57:53 +02:00 |
domain-crawled
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
domain-ip
|
chg: [domain-ip] added the multiple flag back to ports
|
2022-05-30 18:07:25 +02:00 |
edr-report
|
Ran jq_all_the_things.sh
|
2021-10-06 20:13:39 +02:00 |
elf
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
elf-section
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
email
|
chg: [email] email-body-attachment added
|
2023-09-11 11:28:39 +02:00 |
employee
|
add: [employee] Added a `full-name` object_relation for cases when we are not sure which name is the first and the last
|
2022-03-31 20:21:12 +02:00 |
error-message
|
new: [error-message] new template to create error-message from MISP processing scripts
|
2022-02-17 16:47:08 +01:00 |
event
|
wip: [event] New object template to describe events that can happen during an incident
|
2023-06-22 12:28:47 +02:00 |
exploit
|
Add software impacted by exploit
|
2024-03-18 14:19:35 +00:00 |
exploit-poc
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
external-impact
|
wip: [impacts] New template for different types of impacts as described in STIX 2.1 Incident object extensions
|
2023-06-22 15:16:48 +02:00 |
facebook-account
|
chg: [dev] add user avatar
|
2020-05-28 16:40:21 -04:00 |
facebook-group
|
fix: [facebook-group] add an optional ID reference to the facebook id
|
2022-09-09 07:24:05 +02:00 |
facebook-page
|
chg: [dev] run rq
|
2020-05-28 15:32:43 -04:00 |
facebook-post
|
chg: [dev] change post-id attribute type to text
|
2020-05-28 15:48:18 -04:00 |
facebook-reaction
|
new: [facebook-reaction] new object to link reaction with facebook posts or alike
|
2022-09-09 07:21:59 +02:00 |
facial-composite
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
fail2ban
|
fix: [fail2ban] incorrect UUID fixed
|
2022-12-11 12:54:24 +01:00 |
favicon
|
chg: [favicon] jq all the things
|
2020-12-27 16:21:09 +01:00 |
file
|
add: [file] Added creation, modification & access time attributes
|
2023-02-20 19:31:59 +01:00 |
flowintel-cm-case
|
chg: [validation] jq all
|
2024-01-10 12:07:32 +01:00 |
flowintel-cm-task
|
chg: [flowintel-task] add case-uuid
|
2024-01-15 09:11:00 +01:00 |
forensic-case
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
forensic-evidence
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
forged-document
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
ftm-Airplane
|
fix: [ftm] missing description fix #363
|
2022-06-30 17:19:33 +02:00 |
ftm-Assessment
|
fix: [ftm] missing description fix #363
|
2022-06-30 17:19:33 +02:00 |
ftm-Asset
|
fix: [ftm] missing description fix #363
|
2022-06-30 17:19:33 +02:00 |
ftm-Associate
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-Audio
|
fix: [ftm] missing description fix #363
|
2022-06-30 17:19:33 +02:00 |
ftm-BankAccount
|
fix: [ftm] missing description fix #363
|
2022-06-30 17:19:33 +02:00 |
ftm-Call
|
chg: [ftm-Call] fixed missing description
|
2022-06-30 17:12:25 +02:00 |
ftm-Company
|
fix: [template] missing newlines
|
2022-01-06 16:52:43 +01:00 |
ftm-Contract
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-ContractAward
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-CourtCase
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-CourtCaseParty
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Debt
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-Directorship
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Document
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Documentation
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-EconomicActivity
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-Email
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Event
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Family
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-Folder
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-HyperText
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Image
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Land
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-LegalEntity
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-License
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-Membership
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Message
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Organization
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Ownership
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Package
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Page
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Pages
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Passport
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-Payment
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-Person
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-PlainText
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-PublicBody
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-RealEstate
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-Representation
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-Row
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Sanction
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-Succession
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-Table
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-TaxRoll
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-UnknownLink
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-UserAccount
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Vehicle
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Vessel
|
new: Objects and relations for FollowTheMoney
|
2020-05-05 11:02:53 +02:00 |
ftm-Video
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
ftm-Workbook
|
fix: [ftm-*] Fixing missing description - #363
|
2022-06-30 17:43:44 +02:00 |
game-cheat
|
added cheat types and minor changes
|
2022-03-15 03:37:26 +01:00 |
geolocation
|
chg: [geolocation] countrycode added as requested for the VarIOT.
|
2021-10-25 15:35:23 +02:00 |
git-vuln-finder
|
new: Preliminary version of git-vuln-finder object template
|
2020-05-26 12:31:45 +02:00 |
github-user
|
fix: [template] missing newlines
|
2022-01-06 16:52:43 +01:00 |
gitlab-user
|
chg: [gitlab-user] because -r is important
|
2020-10-07 09:20:54 +02:00 |
google-safe-browsing
|
Added a is-malicious attribute for abuseipdb and added a google-safe-browsing object for the google-safe-browsing expansion module
|
2023-07-13 09:25:26 -04:00 |
greynoise-ip
|
chg: [greynoise-intelligence] JSON fixed
|
2023-03-10 15:34:32 +01:00 |
gtp-attack
|
fix: [JSON] updated
|
2022-02-03 17:44:17 +01:00 |
hashlookup
|
chg: [hashlookup] add KnownMalicious field in hashlookup record
|
2021-09-24 15:33:53 +02:00 |
hhhash
|
chg: [hhhash] newline fixed
|
2023-07-10 16:40:22 +02:00 |
http-request
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
identity
|
new: [identity] from STIX 2.1 - 4.5 - new object template
|
2022-01-31 07:45:38 +01:00 |
ilr-impact
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
ilr-notification-incident
|
fix: [ilr-notification-incident] Typo
|
2023-09-14 16:58:22 +02:00 |
image
|
new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image.
|
2020-05-29 21:10:02 -04:00 |
impersonation
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
imsi-catcher
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
incident
|
add: [incident] Added the score attribute
|
2023-07-07 11:36:42 +02:00 |
infrastructure
|
new: [infrastructure] infrastructure object added (STIX 2.1 - 4.8)
|
2022-02-14 11:30:09 +01:00 |
instant-message
|
chg: [instant-message] Jabber and Twitter added + updated required fields
|
2022-03-17 09:14:39 +01:00 |
instant-message-group
|
chg: [instan-message-*] add Tox as potential chat application
|
2022-01-16 16:39:06 +01:00 |
integrity-impact
|
fix: [impacts] Typo
|
2023-06-22 15:50:54 +02:00 |
intel471-vulnerability-intelligence
|
Add sane default for boolean objects
|
2021-12-20 20:02:29 +00:00 |
intelmq_event
|
Disable correlation for IntelMQ time fields
|
2024-03-05 11:22:17 +01:00 |
intelmq_report
|
Disable correlation for IntelMQ time fields
|
2024-03-05 11:22:17 +01:00 |
internal-reference
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
interpol-notice
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
intrusion-set
|
add: [intrusion-set] Added `first_seen` & `last_seen` attributes
|
2023-11-09 12:10:52 +01:00 |
iot-device
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
iot-firmware
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
ip-api-address
|
fix: Normalised object relations of the ip-api-address object
|
2020-09-03 14:10:02 +02:00 |
ip-port
|
fix: [ip-port] jq all the things
|
2022-03-11 10:21:09 +01:00 |
irc
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
ja3
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
ja3s
|
chg: [ja3s] Add domain and hostname attributes
|
2023-07-20 10:24:42 +03:00 |
jarm
|
chg: [jarm] jq all the things
|
2021-01-05 14:49:34 +01:00 |
keybase-account
|
chg: Sort json
|
2020-09-16 15:17:43 +02:00 |
language-content
|
new: [language-content] New object template language-content based on
|
2022-02-15 07:21:58 +01:00 |
leaked-document
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
legal-entity
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
lnk
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
macho
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
macho-section
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
mactime-timeline-analysis
|
fix: [mactim-timeline-analysis] invalid UUID fixed
|
2022-12-11 13:03:18 +01:00 |
malware
|
fix: [malware] Fixed `is_family` attribute type
|
2023-08-10 11:39:44 +02:00 |
malware-analysis
|
add: [malware-analysis] New object template to describe a static or dynamic analysis performed on a malware instance or family
|
2023-07-25 15:24:39 +02:00 |
malware-config
|
fix: [malware-config] typo fixed
|
2023-07-31 11:21:29 +02:00 |
meme-image
|
Add sane default for boolean objects
|
2021-12-20 20:02:29 +00:00 |
microblog
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
monetary-impact
|
wip: [impacts] New template for different types of impacts as described in STIX 2.1 Incident object extensions
|
2023-06-22 15:16:48 +02:00 |
mutex
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
narrative
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
netflow
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
network-connection
|
fix: [network-connection, network-socket] Bytes count if also better with an S
|
2023-03-07 23:26:51 +01:00 |
network-profile
|
chg: [network-element] jq
|
2021-02-24 06:48:10 +01:00 |
network-socket
|
add: [network-socket] Added MAC address attributes
|
2023-03-31 11:30:33 +02:00 |
news-agency
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
news-media
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
open-data-security
|
new: [open-data-security] new object template based on open data
|
2021-05-17 15:55:23 +02:00 |
organization
|
chg: [person/organization] `impersonated` added to the role of person
|
2024-03-05 08:59:45 +01:00 |
original-imported-file
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
paloalto-threat-event
|
chg: [paloalto-threat-event] Hungary access to the git repository has been sanctioned
|
2022-05-11 15:38:24 +02:00 |
parler-account
|
Add sane default for boolean objects
|
2021-12-20 20:02:29 +00:00 |
parler-comment
|
chg: [dev] add Parler app objects
|
2020-07-05 22:03:16 -04:00 |
parler-post
|
Add sane default for boolean objects
|
2021-12-20 20:02:29 +00:00 |
passive-dns
|
chg: [passive-dns] jq
|
2021-05-03 07:20:51 +02:00 |
passive-dns-dnsdbflex
|
fix: [passive-dns-dnsdbflex] newline
|
2021-05-26 14:12:10 +02:00 |
passive-ssh
|
add: [passive-ssh] Added `port` attribute
|
2022-05-06 17:01:13 +02:00 |
paste
|
Typo and version number correction + adding a field in twitter-post
|
2020-12-14 23:01:12 +01:00 |
pcap-metadata
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
pe
|
fix: [pe] Removing the `disable_correlation` flag for a `size-in-bytes` attribute type
|
2024-04-03 17:33:30 +02:00 |
pe-optional-header
|
add: [pe-optional-header] New object template for PE optional headers
|
2024-04-03 17:32:47 +02:00 |
pe-section
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
persnona
|
fix: [jq] JSON fixed
|
2022-12-15 14:39:52 +01:00 |
person
|
chg: [person/organization] `impersonated` added to the role of person
|
2024-03-05 08:59:45 +01:00 |
personification
|
chg: [personification] fixed
|
2022-03-24 15:42:35 +01:00 |
pgp-meta
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
phishing
|
chg: [phishing] newline
|
2021-05-11 15:44:35 +02:00 |
phishing-kit
|
fix: Normalised object relations of the phishing objects
|
2020-09-03 14:12:05 +02:00 |
phone
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
physical-impact
|
wip: [impacts] New template for different types of impacts as described in STIX 2.1 Incident object extensions
|
2023-06-22 15:16:48 +02:00 |
postal-address
|
chg: add requiredOneOf for postal-address
|
2021-12-20 14:15:10 +01:00 |
probabilistic-data-structure
|
chg: [probabilistic-data-structure] updated followng JL feedback
|
2021-12-29 16:27:26 +01:00 |
process
|
add: [process] Environment variables attribute
|
2024-01-30 15:19:54 +01:00 |
publication
|
chg: [publication] modify requiredOneOf, contributor type to text attribute
|
2020-04-28 18:58:59 -04:00 |
python-etvx-event-log
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
query
|
chg: [query] add Kusto Query Language (KQL)
|
2022-06-25 19:20:13 +02:00 |
r2graphity
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
ransom-negotiation
|
Added fields
|
2022-05-20 15:53:29 +02:00 |
ransomware-group-post
|
new: [ransomware-group-post] First draft object for ransomlook.io
|
2023-02-17 10:33:59 +01:00 |
reddit-account
|
chg: [dev] make Reddit attributes (mostly) reflect Reddit API.
|
2020-06-08 11:16:59 -04:00 |
reddit-comment
|
chg: [dev] make Reddit attributes (mostly) reflect Reddit API.
|
2020-06-08 11:16:59 -04:00 |
reddit-post
|
chg: [dev] make Reddit attributes (mostly) reflect Reddit API.
|
2020-06-08 11:16:59 -04:00 |
reddit-subreddit
|
chg: [dev] make Reddit attributes (mostly) reflect Reddit API.
|
2020-06-08 11:16:59 -04:00 |
regexp
|
chg: [regexp] fixed
|
2021-02-19 21:56:35 +01:00 |
registry-key
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
registry-key-value
|
add: [registry-key-value] New template to describe registry key values
|
2023-03-01 20:50:30 +01:00 |
regripper-NTUser
|
Add sane default for boolean objects
|
2021-12-20 20:02:29 +00:00 |
regripper-sam-hive-single-user
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
regripper-sam-hive-user-group
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
regripper-software-hive-BHO
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
regripper-software-hive-appInit-DLLS
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
regripper-software-hive-application-paths
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
regripper-software-hive-applications-installed
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
regripper-software-hive-command-shell
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
regripper-software-hive-software-run
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
regripper-software-hive-userprofile-winlogon
|
Add sane default for boolean objects
|
2021-12-20 20:02:29 +00:00 |
regripper-software-hive-windows-general-info
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
regripper-system-hive-firewall-configuration
|
Add sane default for boolean objects
|
2021-12-20 20:02:29 +00:00 |
regripper-system-hive-general-configuration
|
Add sane default for boolean objects
|
2021-12-20 20:02:29 +00:00 |
regripper-system-hive-network-information
|
Add sane default for boolean objects
|
2021-12-20 20:02:29 +00:00 |
regripper-system-hive-services-drivers
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
report
|
fix: [report] typo fixed
|
2023-12-06 09:32:13 +01:00 |
research-scanner
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
risk-assessment-report
|
new: [risk-assessment-report] New object template Risk assessment report
|
2023-04-13 10:41:39 +02:00 |
rogue-dns
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
rtir
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
sandbox-report
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
sb-signature
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
scan-result
|
fix: [scan-results] JSON and trailing comma ;-)
|
2023-08-03 10:47:45 +02:00 |
scheduled-event
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
scheduled-task
|
chg: [scheduled-task] disable_correlation + clarification
|
2022-07-08 15:03:27 +02:00 |
scrippsco2-c13-daily
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
scrippsco2-c13-monthly
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
scrippsco2-co2-daily
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
scrippsco2-co2-monthly
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
scrippsco2-o18-daily
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
scrippsco2-o18-monthly
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
script
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
security-playbook
|
chg: [security-playbook] JSON fixed
|
2022-08-25 10:17:48 +02:00 |
shadowserver-malware-url-report
|
chg: [shadowserver-malware-url-report] resource path added to improve
|
2023-12-08 15:18:32 +01:00 |
shell-commands
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
shodan-report
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
short-message-service
|
chg: [sms] format fixed
|
2020-05-14 18:17:09 +02:00 |
shortened-link
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
sigma
|
new: [sigma] a sigma attribute exists in MISP but the object was
|
2022-08-03 11:44:37 +02:00 |
sigmf-archive
|
fix: jq all the things
|
2023-08-03 09:30:58 +02:00 |
sigmf-expanded-recording
|
fix: minor fixes
|
2023-08-03 08:07:47 +02:00 |
sigmf-recording
|
fix: minor fixes
|
2023-08-03 08:07:47 +02:00 |
social-media-group
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
software
|
new: [software] software template object added based 6.14 (STIX 2.1)
|
2022-02-14 11:06:53 +01:00 |
spearphishing-attachment
|
jq_all_the_things
|
2022-08-25 16:03:59 -05:00 |
spearphishing-link
|
jq_all_the_things
|
2022-08-25 16:03:59 -05:00 |
splunk
|
fix: [splunk] fixed
|
2021-02-15 15:10:20 +01:00 |
ss7-attack
|
modified by ./jq_all_the_things.sh
|
2022-03-21 15:04:26 +01:00 |
ssh-authorized-keys
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
stairwell
|
fixed parse error
|
2024-03-15 14:04:07 -05:00 |
stix2-pattern
|
chg: [stix2-pattern] add STIX 2.1
|
2022-01-14 16:43:01 +01:00 |
stock
|
chg: [stock] newline fixed
|
2022-06-18 17:00:13 +02:00 |
submarine
|
chg: [submarine] fixes and list of types added
|
2021-11-12 08:39:35 +01:00 |
suricata
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
target-system
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
task
|
wip: [task] New object template for tasks as described in STIX 2.1 Incident object extensions
|
2023-06-22 15:39:02 +02:00 |
tattoo
|
test
|
2022-03-21 10:08:36 +00:00 |
telegram-account
|
chg: [telegram-account] required attributes
|
2021-01-26 11:39:22 +01:00 |
telegram-bot
|
add username field in telegram-bot object
|
2022-10-13 13:45:52 +02:00 |
temporal-event
|
fix: [temporal-event] newline issue
|
2021-12-21 08:15:06 +01:00 |
thaicert-group-cards
|
fix: [jq] all
|
2022-12-22 13:15:10 +01:00 |
threatgrid-report
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
timecode
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
timesketch-timeline
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
timesketch_message
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
timestamp
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
tor-hiddenservice
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
tor-node
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
traceability-impact
|
wip: [impacts] New template for different types of impacts as described in STIX 2.1 Incident object extensions
|
2023-06-22 15:16:48 +02:00 |
tracking-id
|
chg: [dev] update tracking-id to disable correlation on id description. minor changes to attribute descriptions.
|
2020-05-28 15:19:27 -04:00 |
transaction
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
translation
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
transport-ticket
|
chg: [transport-ticket] update to add the type of ticket (e.g. boarding pass versus ticket)
|
2023-01-27 15:55:08 +01:00 |
trustar_report
|
chg: [trustar_report] Updated to add "THREAT_ACTOR"
|
2021-01-05 09:30:28 +01:00 |
tsk-chats
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
tsk-web-bookmark
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
tsk-web-cookie
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
tsk-web-downloads
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
tsk-web-history
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
tsk-web-search-query
|
chg: [tsk-web-search-query] jq all the things
|
2021-07-25 09:11:42 +02:00 |
twitter-account
|
fix: JSON Validation
|
2020-09-09 10:36:20 +02:00 |
twitter-list
|
chg: [dev] run validate_all/jq
|
2020-06-02 11:11:43 -04:00 |
twitter-post
|
chg: [twitter-post] jq
|
2020-12-20 10:52:40 +01:00 |
typosquatting-finder
|
chg: [typosquatting] jq_all_the_things
|
2023-01-16 08:45:20 +01:00 |
typosquatting-finder-result
|
chg: [typosquatting] jq_all_the_things
|
2023-01-16 08:45:20 +01:00 |
url
|
chg: [url] jq all the things
|
2021-02-02 11:57:41 +01:00 |
user-account
|
add: [user-account] Added email attribute
|
2023-10-31 15:49:44 +01:00 |
vehicle
|
fix: [vehicle] jq all the things
|
2022-12-30 07:37:54 +01:00 |
victim
|
fix: [victim] object updated
|
2023-12-05 20:58:22 +01:00 |
virustotal-graph
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
virustotal-report
|
fix: [virustotal-report] bump version
|
2023-09-01 09:34:08 +02:00 |
virustotal-submission
|
Fixes wrong category and typo in value list
|
2022-04-26 15:05:05 +02:00 |
vulnerability
|
chg: [vulnerability] fixed
|
2020-10-15 22:49:29 +02:00 |
weakness
|
chg: Using the actual attribute type for cpe and weakness instead of text
|
2020-10-22 22:11:50 +02:00 |
whois
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
windows-service
|
new: [windows-service] windows-service object added
|
2021-02-13 17:01:44 +01:00 |
x-header
|
new: [x-header] new generic X header object for SMTP, HTTP and others
|
2023-08-07 14:36:24 +02:00 |
x509
|
Add sane default for boolean objects
|
2021-12-20 20:02:29 +00:00 |
yabin
|
chg: Sort all the entries in the templates by default
|
2020-04-26 02:13:18 +02:00 |
yara
|
fix: [yara] add a reference link to the YARA object template
|
2022-08-03 11:46:30 +02:00 |
youtube-channel
|
new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image.
|
2020-05-29 21:10:02 -04:00 |
youtube-comment
|
new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image.
|
2020-05-29 21:10:02 -04:00 |
youtube-playlist
|
new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image.
|
2020-05-29 21:10:02 -04:00 |
youtube-video
|
new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image.
|
2020-05-29 21:10:02 -04:00 |