MISP
/
misp-objects
mirror of https://github.com/MISP/misp-objects
2
0
Fork 0
Code Issues Releases Wiki Activity
misp-objects/objects/ftm-Email/definition.json

433 lines
11 KiB
JSON
Raw Blame History

{
"attributes": {
"address": {
"description": "Address",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"alephUrl": {
"description": "Aleph URL",
"disable_correlation": false,
"misp-attribute": "url",
"multiple": true,
"ui-priority": 0
},
"alias": {
"description": "Other name",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"author": {
"description": "The original author, not the uploader",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"authoredAt": {
"description": "Authored on",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"bcc": {
"description": "Blind carbon copy",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"bodyHtml": {
"description": "HTML",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"bodyText": {
"description": "Text",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"cc": {
"description": "Carbon copy",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"companiesMentioned": {
"description": "Detected companies",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"contentHash": {
"description": "SHA1 hash of the data",
"disable_correlation": false,
"misp-attribute": "sha1",
"multiple": true,
"ui-priority": 0
},
"country": {
"description": "Country",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 1
},
"crawler": {
"description": "The crawler used to acquire this file",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"date": {
"description": "If not otherwise specified",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"description": {
"description": "Description",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"detectedCountry": {
"description": "Detected country",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"detectedLanguage": {
"description": "Detected language",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"emailMentioned": {
"description": "Detected e-mail addresses",
"disable_correlation": false,
"misp-attribute": "email-src",
"multiple": true,
"ui-priority": 0
},
"encoding": {
"description": "File encoding",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"extension": {
"description": "File extension",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"fileName": {
"description": "File name",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 1
},
"fileSize": {
"description": "File size",
"disable_correlation": true,
"misp-attribute": "float",
"multiple": true,
"ui-priority": 0
},
"from": {
"description": "From",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 1
},
"generator": {
"description": "The program used to generate this file",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"headers": {
"description": "Raw headers",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"ibanMentioned": {
"description": "Detected IBANs",
"disable_correlation": false,
"misp-attribute": "iban",
"multiple": true,
"ui-priority": 0
},
"inReplyTo": {
"description": "Message ID of the preceding email in the thread",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"indexText": {
"description": "Index text",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"indexUpdatedAt": {
"description": "Index updated at",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"ipMentioned": {
"description": "Detected IP addresses",
"disable_correlation": false,
"misp-attribute": "ip-src",
"multiple": true,
"ui-priority": 0
},
"keywords": {
"description": "Keywords",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"language": {
"description": "Language",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"locationMentioned": {
"description": "Detected locations",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"messageId": {
"description": "Message ID of a document; unique in most cases",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"mimeType": {
"description": "MIME type",
"disable_correlation": true,
"misp-attribute": "mime-type",
"multiple": true,
"ui-priority": 1
},
"modifiedAt": {
"description": "Modified on",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"name": {
"description": "Name",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 1
},
"namesMentioned": {
"description": "Detected names",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"notes": {
"description": "Notes",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"peopleMentioned": {
"description": "Detected people",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"phoneMentioned": {
"description": "Detected phones",
"disable_correlation": false,
"misp-attribute": "phone-number",
"multiple": true,
"ui-priority": 0
},
"previousName": {
"description": "Previous name",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"processingError": {
"description": "Processing error",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"processingStatus": {
"description": "Processing status",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"program": {
"description": "Program",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"publishedAt": {
"description": "Published on",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"publisher": {
"description": "Publishing source",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"publisherUrl": {
"description": "Publishing source URL",
"disable_correlation": false,
"misp-attribute": "url",
"multiple": true,
"ui-priority": 0
},
"retrievedAt": {
"description": "Retrieved on",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"sender": {
"description": "Sender",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"sourceUrl": {
"description": "Source link",
"disable_correlation": false,
"misp-attribute": "url",
"multiple": true,
"ui-priority": 0
},
"subject": {
"description": "Subject",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 1
},
"summary": {
"description": "Summary",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"threadTopic": {
"description": "Thread topic",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"title": {
"description": "Title",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 1
},
"to": {
"description": "To",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"topics": {
"description": "Topics",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"weakAlias": {
"description": "Weak alias",
"disable_correlation": true,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"wikidataId": {
"description": "Wikidata ID",
"disable_correlation": false,
"misp-attribute": "text",
"multiple": true,
"ui-priority": 0
},
"wikipediaUrl": {
"description": "Wikipedia Article",
"disable_correlation": false,
"misp-attribute": "url",
"multiple": true,
"ui-priority": 0
}
},
"description": "Email",
"meta-category": "followthemoney",
"name": "ftm-Email",
"required": [
"name",
"fileName"
],
"uuid": "2bafc93f-b99d-4f64-aa74-3252d4ac6030",
"version": 3
}
Reference in New Issue View Git Blame Copy Permalink