.. |
ail-leak
|
modify ail-leak object for the tagging system
|
2018-06-12 11:47:44 +02:00 |
ais-info
|
Chg: jq all the things
|
2018-06-19 21:11:24 +02:00 |
android-permission
|
…
|
|
annotation
|
…
|
|
asn
|
…
|
|
av-signature
|
…
|
|
bank-account
|
fix: jq all the things
|
2018-02-23 08:25:35 +01:00 |
cap-alert
|
fix: trailing dot removed
|
2018-02-07 14:54:15 +01:00 |
cap-info
|
add: Common Alerting Protocol Version (CAP) info object
|
2018-02-08 07:45:41 +01:00 |
cap-resource
|
add: Common Alerting Protocol Version (CAP) resource object
|
2018-02-08 11:53:05 +01:00 |
coin-address
|
chg: [coin-address] XMR type address added in addition to the default Bitcoin address format
|
2018-07-04 11:10:50 +02:00 |
cookie
|
…
|
|
course-of-action
|
Course of Action object
|
2018-04-11 16:48:05 +02:00 |
cowrie
|
fix: disable correlation for compression algorithms
|
2018-03-01 21:09:04 +01:00 |
credential
|
…
|
|
credit-card
|
…
|
|
ddos
|
…
|
|
diameter-attack
|
…
|
|
domain-ip
|
…
|
|
elf
|
…
|
|
elf-section
|
…
|
|
email
|
chg: Update email template
|
2018-05-03 20:49:48 +02:00 |
exploit-poc
|
chg: [exploit-poc] a same context can contains multiple PoC samples
|
2018-07-10 09:32:12 +02:00 |
fail2ban
|
new: Attach logfile to fail2ban
|
2018-03-27 10:25:54 +02:00 |
file
|
fix: file path added in file object
|
2018-04-09 15:56:39 +02:00 |
geolocation
|
fix: missing ui-priority
|
2018-06-09 10:59:01 +02:00 |
gtp-attack
|
…
|
|
http-request
|
Changed http request object template
|
2018-02-09 09:43:39 +01:00 |
ip-port
|
fix: add hostname to ip-port template and make attributes multiple
|
2018-04-10 14:46:36 +02:00 |
ja3
|
…
|
|
legal-entity
|
Fixed disable_correlation variable type
|
2018-02-06 15:36:57 +01:00 |
macho
|
…
|
|
macho-section
|
…
|
|
microblog
|
…
|
|
mutex
|
add: Object to describe mutual exclusion locks (mutex) as seen in memory or computer program
|
2018-01-22 13:34:33 +01:00 |
netflow
|
…
|
|
network-connection
|
add: Added hostname (src & dst) attributes
|
2018-05-08 09:03:57 +02:00 |
network-socket
|
add: Added protocol attribute in the network socket object
|
2018-05-08 09:26:24 +02:00 |
passive-dns
|
fix: Passive DNS records especially on the disabled_correlation fields
|
2018-01-25 15:07:19 +01:00 |
paste
|
chg: username of the author added + disable correlation for origin
|
2018-06-04 19:46:58 +02:00 |
pe
|
…
|
|
pe-section
|
…
|
|
person
|
description typo
|
2018-02-05 16:10:23 +01:00 |
phone
|
…
|
|
process
|
Attribute typo
|
2018-05-25 09:13:14 +02:00 |
r2graphity
|
…
|
|
regexp
|
regexp object - change version
|
2018-04-13 10:56:56 +02:00 |
registry-key
|
fix: registry-key updated
|
2018-01-18 13:49:03 +01:00 |
report
|
…
|
|
rtir
|
…
|
|
sandbox-report
|
…
|
|
sb-signature
|
fix: Make the schema happy.
|
2018-01-23 10:46:15 +01:00 |
script
|
chg: new script template object
|
2018-06-09 11:36:58 +02:00 |
shortened-link
|
renamed url attributed, versioning date based
|
2018-06-05 14:39:12 +02:00 |
ss7-attack
|
chg: change version of the SS7 template object
|
2018-05-29 16:07:50 +02:00 |
stix2-pattern
|
fix: version field added if stix2-pattern has multiple version in the future
|
2018-03-19 17:33:45 +01:00 |
suricata
|
fix: [suricata] allow multiple Suricata rules in the object (similar context) and fix the rule to be in Snort format
|
2018-07-09 21:50:44 +02:00 |
target-system
|
moved object into internal
|
2018-04-10 16:08:04 +00:00 |
timecode
|
chg: Timecode object to describe a start of video sequence (e.g. CCTV evidence) and the end of the video sequence.
|
2018-05-21 10:19:54 +02:00 |
timesketch-timeline
|
add: missing timesketch-timeline object template
|
2018-06-22 07:44:20 +02:00 |
timestamp
|
add: new timestamp object
|
2018-04-30 16:27:17 +02:00 |
tor-node
|
…
|
|
transaction
|
Fixed the bank-account meta-category
|
2018-02-20 15:44:02 +01:00 |
url
|
fix: some parts of the URL can be repeated such as resource path, anchor...
|
2018-03-15 09:38:53 +01:00 |
victim
|
…
|
|
virustotal-report
|
Adding ui-priority fields
|
2018-04-23 11:22:39 +02:00 |
vulnerability
|
chg: [vulnerability] is now in its own vulnerability meta-category
|
2018-07-10 07:38:28 +02:00 |
whois
|
Update definition.json
|
2018-04-26 16:53:24 +02:00 |
x509
|
fix: Feedback from @sheidan
|
2018-03-28 15:26:35 +02:00 |
yabin
|
…
|
|
yara
|
add: Context where the YARA rule can be applied
|
2018-05-01 11:21:05 +02:00 |