..
ADS
fix: [jq] JSON fixed
2022-12-15 14:39:52 +01:00
ai-chat-prompt
fix: [ai-chat-prompt] improved ai-chat-prompt template
2023-04-16 10:50:30 +02:00
ail-leak
…
ais
fix: forgot to jq all the things.
2023-03-01 15:13:39 +01:00
ais-info
…
android-app
new: android-app object template
2020-06-21 21:45:46 +02:00
android-permission
…
annotation
…
anonymisation
…
apivoid-email-verification
new: Add apivoid email verification API result object
2022-02-07 17:54:31 +01:00
artifact
fix: [objects description] ref #384 - Grammar fixes included in the JSON files.
2023-02-02 10:51:32 +01:00
asn
fix: [objects description] ref #384 - Grammar fixes included in the JSON files.
2023-02-02 10:51:32 +01:00
attack-pattern
…
attack-step
chg: Fixed typo in disable_correlation
2022-07-01 16:59:03 +02:00
authentication-failure-report
add: [d4] authentication failure report object
2020-06-16 15:59:02 +02:00
authenticode-signerinfo
chg: Update objects to match lief output for authenticode
2021-01-19 15:38:31 +01:00
av-signature
…
bank-account
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
bgp-hijack
…
bgp-ranking
fix: Disabling correlation for all the bgp-ranking object attributes
2020-09-09 10:09:07 +02:00
blog
…
boleto
…
btc-transaction
…
btc-wallet
fix: [objects description] ref #384 - Grammar fixes included in the JSON files.
2023-02-02 10:51:32 +01:00
cap-alert
…
cap-info
…
cap-resource
…
cloth
test
2022-03-21 10:08:36 +00:00
coin-address
…
command
…
command-line
…
concordia-mtmf-intrusion-set
fix: incorrect entry in CMTMF_ATCKID
2021-12-20 13:17:46 +01:00
cookie
fix: [objects description] ref #384 - Grammar fixes included in the JSON files.
2023-02-02 10:51:32 +01:00
cortex
fix: [objects description] ref #384 - Grammar fixes included in the JSON files.
2023-02-02 10:51:32 +01:00
cortex-taxonomy
fix: [objects description] ref #384 - Grammar fixes included in the JSON files.
2023-02-02 10:51:32 +01:00
course-of-action
…
covid19-csse-daily-report
…
covid19-dxy-live-city
…
covid19-dxy-live-province
…
cowrie
…
cpe-asset
chg: Using the actual attribute type for cpe and weakness instead of text
2020-10-22 22:11:50 +02:00
credential
…
credit-card
…
crowdsec-ip-context
chg: [crowdsec] jq all the things
2023-05-12 10:34:19 +02:00
crypto-material
chg: [crypto-material] add a public field for public cryptographic materials
2020-12-30 14:21:37 +01:00
cs-beacon-config
adding cobalt strike beacon config object
2023-05-19 14:07:24 -05:00
cytomic-orion-file
…
cytomic-orion-machine
…
dark-pattern-item
…
ddos
chg: [ddos] because newline
2022-03-09 11:06:19 +01:00
device
chg: [device] ui-priority added
2021-10-25 16:05:04 +02:00
diameter-attack
fix: [JSON] updated
2022-02-03 17:44:17 +01:00
directory
add: [directory] New object template for directories
2023-02-27 10:56:31 +01:00
dkim
fix: [dkim] clean-up
2021-02-25 07:25:09 +01:00
dns-record
Add more rrtypes to dns-record
2020-08-15 14:57:53 +02:00
domain-crawled
…
domain-ip
chg: [domain-ip] added the multiple flag back to ports
2022-05-30 18:07:25 +02:00
edr-report
Ran jq_all_the_things.sh
2021-10-06 20:13:39 +02:00
elf
…
elf-section
…
email
Ran jq_all_the_things_.sh
2021-11-26 15:37:32 +02:00
employee
add: [employee] Added a `full-name` object_relation for cases when we are not sure which name is the first and the last
2022-03-31 20:21:12 +02:00
error-message
new: [error-message] new template to create error-message from MISP processing scripts
2022-02-17 16:47:08 +01:00
exploit
add: [exploit] Added `description` and `title` attributes
2022-10-23 23:11:48 +02:00
exploit-poc
…
facebook-account
chg: [dev] add user avatar
2020-05-28 16:40:21 -04:00
facebook-group
fix: [facebook-group] add an optional ID reference to the facebook id
2022-09-09 07:24:05 +02:00
facebook-page
chg: [dev] run rq
2020-05-28 15:32:43 -04:00
facebook-post
chg: [dev] change post-id attribute type to text
2020-05-28 15:48:18 -04:00
facebook-reaction
new: [facebook-reaction] new object to link reaction with facebook posts or alike
2022-09-09 07:21:59 +02:00
facial-composite
…
fail2ban
fix: [fail2ban] incorrect UUID fixed
2022-12-11 12:54:24 +01:00
favicon
chg: [favicon] jq all the things
2020-12-27 16:21:09 +01:00
file
add: [file] Added creation, modification & access time attributes
2023-02-20 19:31:59 +01:00
forensic-case
…
forensic-evidence
…
forged-document
…
ftm-Airplane
fix: [ftm] missing description fix #363
2022-06-30 17:19:33 +02:00
ftm-Assessment
fix: [ftm] missing description fix #363
2022-06-30 17:19:33 +02:00
ftm-Asset
fix: [ftm] missing description fix #363
2022-06-30 17:19:33 +02:00
ftm-Associate
…
ftm-Audio
fix: [ftm] missing description fix #363
2022-06-30 17:19:33 +02:00
ftm-BankAccount
fix: [ftm] missing description fix #363
2022-06-30 17:19:33 +02:00
ftm-Call
chg: [ftm-Call] fixed missing description
2022-06-30 17:12:25 +02:00
ftm-Company
fix: [template] missing newlines
2022-01-06 16:52:43 +01:00
ftm-Contract
…
ftm-ContractAward
…
ftm-CourtCase
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-CourtCaseParty
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Debt
…
ftm-Directorship
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Document
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Documentation
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-EconomicActivity
…
ftm-Email
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Event
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Family
…
ftm-Folder
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-HyperText
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Image
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Land
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-LegalEntity
…
ftm-License
…
ftm-Membership
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Message
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Organization
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Ownership
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Package
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Page
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Pages
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Passport
…
ftm-Payment
…
ftm-Person
…
ftm-PlainText
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-PublicBody
…
ftm-RealEstate
…
ftm-Representation
…
ftm-Row
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Sanction
…
ftm-Succession
…
ftm-Table
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-TaxRoll
…
ftm-UnknownLink
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-UserAccount
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Vehicle
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Vessel
…
ftm-Video
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
ftm-Workbook
fix: [ftm-*] Fixing missing description - #363
2022-06-30 17:43:44 +02:00
game-cheat
added cheat types and minor changes
2022-03-15 03:37:26 +01:00
geolocation
chg: [geolocation] countrycode added as requested for the VarIOT.
2021-10-25 15:35:23 +02:00
git-vuln-finder
…
github-user
fix: [template] missing newlines
2022-01-06 16:52:43 +01:00
gitlab-user
chg: [gitlab-user] because -r is important
2020-10-07 09:20:54 +02:00
greynoise-ip
chg: [greynoise-intelligence] JSON fixed
2023-03-10 15:34:32 +01:00
gtp-attack
fix: [JSON] updated
2022-02-03 17:44:17 +01:00
hashlookup
chg: [hashlookup] add KnownMalicious field in hashlookup record
2021-09-24 15:33:53 +02:00
http-request
…
identity
new: [identity] from STIX 2.1 - 4.5 - new object template
2022-01-31 07:45:38 +01:00
ilr-impact
…
ilr-notification-incident
fix: Validation issue fixed
2020-09-03 14:21:06 +02:00
image
new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image.
2020-05-29 21:10:02 -04:00
impersonation
…
imsi-catcher
…
infrastructure
new: [infrastructure] infrastructure object added (STIX 2.1 - 4.8)
2022-02-14 11:30:09 +01:00
instant-message
chg: [instant-message] Jabber and Twitter added + updated required fields
2022-03-17 09:14:39 +01:00
instant-message-group
chg: [instan-message-*] add Tox as potential chat application
2022-01-16 16:39:06 +01:00
intel471-vulnerability-intelligence
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
intelmq_event
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
intelmq_report
…
internal-reference
…
interpol-notice
…
intrusion-set
new: [intrusion-set] based on the STIX 2.1 definition
2022-09-29 07:32:52 +02:00
iot-device
…
iot-firmware
…
ip-api-address
fix: Normalised object relations of the ip-api-address object
2020-09-03 14:10:02 +02:00
ip-port
fix: [ip-port] jq all the things
2022-03-11 10:21:09 +01:00
irc
…
ja3
…
ja3s
chg: [ja3s] updated
2021-11-14 22:38:47 +01:00
jarm
chg: [jarm] jq all the things
2021-01-05 14:49:34 +01:00
keybase-account
chg: Sort json
2020-09-16 15:17:43 +02:00
language-content
new: [language-content] New object template language-content based on
2022-02-15 07:21:58 +01:00
leaked-document
…
legal-entity
…
lnk
…
macho
…
macho-section
…
mactime-timeline-analysis
fix: [mactim-timeline-analysis] invalid UUID fixed
2022-12-11 13:03:18 +01:00
malware-config
…
meme-image
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
microblog
…
mutex
…
narrative
…
netflow
…
network-connection
fix: [network-connection, network-socket] Bytes count if also better with an S
2023-03-07 23:26:51 +01:00
network-profile
chg: [network-element] jq
2021-02-24 06:48:10 +01:00
network-socket
add: [network-socket] Added MAC address attributes
2023-03-31 11:30:33 +02:00
news-agency
…
news-media
…
open-data-security
new: [open-data-security] new object template based on open data
2021-05-17 15:55:23 +02:00
organization
chg: [organization] NL fixed
2022-04-04 14:49:44 +02:00
original-imported-file
…
paloalto-threat-event
chg: [paloalto-threat-event] Hungary access to the git repository has been sanctioned
2022-05-11 15:38:24 +02:00
parler-account
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
parler-comment
chg: [dev] add Parler app objects
2020-07-05 22:03:16 -04:00
parler-post
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
passive-dns
chg: [passive-dns] jq
2021-05-03 07:20:51 +02:00
passive-dns-dnsdbflex
fix: [passive-dns-dnsdbflex] newline
2021-05-26 14:12:10 +02:00
passive-ssh
add: [passive-ssh] Added `port` attribute
2022-05-06 17:01:13 +02:00
paste
Typo and version number correction + adding a field in twitter-post
2020-12-14 23:01:12 +01:00
pcap-metadata
…
pe
chg: Update objects to match lief output for authenticode
2021-01-19 15:38:31 +01:00
pe-section
…
persnona
fix: [jq] JSON fixed
2022-12-15 14:39:52 +01:00
person
fix: [person] add a missing passport-creation date field.
2022-11-19 12:21:16 +01:00
personification
chg: [personification] fixed
2022-03-24 15:42:35 +01:00
pgp-meta
…
phishing
chg: [phishing] newline
2021-05-11 15:44:35 +02:00
phishing-kit
fix: Normalised object relations of the phishing objects
2020-09-03 14:12:05 +02:00
phone
…
postal-address
chg: add requiredOneOf for postal-address
2021-12-20 14:15:10 +01:00
probabilistic-data-structure
chg: [probabilistic-data-structure] updated followng JL feedback
2021-12-29 16:27:26 +01:00
process
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
publication
…
python-etvx-event-log
…
query
chg: [query] add Kusto Query Language (KQL)
2022-06-25 19:20:13 +02:00
r2graphity
…
ransom-negotiation
Added fields
2022-05-20 15:53:29 +02:00
ransomware-group-post
new: [ransomware-group-post] First draft object for ransomlook.io
2023-02-17 10:33:59 +01:00
reddit-account
chg: [dev] make Reddit attributes (mostly) reflect Reddit API.
2020-06-08 11:16:59 -04:00
reddit-comment
chg: [dev] make Reddit attributes (mostly) reflect Reddit API.
2020-06-08 11:16:59 -04:00
reddit-post
chg: [dev] make Reddit attributes (mostly) reflect Reddit API.
2020-06-08 11:16:59 -04:00
reddit-subreddit
chg: [dev] make Reddit attributes (mostly) reflect Reddit API.
2020-06-08 11:16:59 -04:00
regexp
chg: [regexp] fixed
2021-02-19 21:56:35 +01:00
registry-key
…
registry-key-value
add: [registry-key-value] New template to describe registry key values
2023-03-01 20:50:30 +01:00
regripper-NTUser
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
regripper-sam-hive-single-user
…
regripper-sam-hive-user-group
…
regripper-software-hive-BHO
…
regripper-software-hive-appInit-DLLS
…
regripper-software-hive-application-paths
…
regripper-software-hive-applications-installed
…
regripper-software-hive-command-shell
…
regripper-software-hive-software-run
…
regripper-software-hive-userprofile-winlogon
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
regripper-software-hive-windows-general-info
…
regripper-system-hive-firewall-configuration
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
regripper-system-hive-general-configuration
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
regripper-system-hive-network-information
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
regripper-system-hive-services-drivers
…
report
chg: [report] add Zotero item types in addition to the default type
2022-06-18 16:10:41 +02:00
research-scanner
…
risk-assessment-report
new: [risk-assessment-report] New object template Risk assessment report
2023-04-13 10:41:39 +02:00
rogue-dns
…
rtir
…
sandbox-report
…
sb-signature
…
scan-result
new: [scan-result] object for scanning result
2023-05-22 14:04:48 +02:00
scheduled-event
…
scheduled-task
chg: [scheduled-task] disable_correlation + clarification
2022-07-08 15:03:27 +02:00
scrippsco2-c13-daily
…
scrippsco2-c13-monthly
…
scrippsco2-co2-daily
…
scrippsco2-co2-monthly
…
scrippsco2-o18-daily
…
scrippsco2-o18-monthly
…
script
…
security-playbook
chg: [security-playbook] JSON fixed
2022-08-25 10:17:48 +02:00
shell-commands
…
shodan-report
…
short-message-service
…
shortened-link
…
sigma
new: [sigma] a sigma attribute exists in MISP but the object was
2022-08-03 11:44:37 +02:00
social-media-group
…
software
new: [software] software template object added based 6.14 (STIX 2.1)
2022-02-14 11:06:53 +01:00
spearphishing-attachment
jq_all_the_things
2022-08-25 16:03:59 -05:00
spearphishing-link
jq_all_the_things
2022-08-25 16:03:59 -05:00
splunk
fix: [splunk] fixed
2021-02-15 15:10:20 +01:00
ss7-attack
modified by ./jq_all_the_things.sh
2022-03-21 15:04:26 +01:00
ssh-authorized-keys
…
stix2-pattern
chg: [stix2-pattern] add STIX 2.1
2022-01-14 16:43:01 +01:00
stock
chg: [stock] newline fixed
2022-06-18 17:00:13 +02:00
submarine
chg: [submarine] fixes and list of types added
2021-11-12 08:39:35 +01:00
suricata
…
target-system
…
tattoo
test
2022-03-21 10:08:36 +00:00
telegram-account
chg: [telegram-account] required attributes
2021-01-26 11:39:22 +01:00
telegram-bot
add username field in telegram-bot object
2022-10-13 13:45:52 +02:00
temporal-event
fix: [temporal-event] newline issue
2021-12-21 08:15:06 +01:00
thaicert-group-cards
fix: [jq] all
2022-12-22 13:15:10 +01:00
threatgrid-report
…
timecode
…
timesketch-timeline
…
timesketch_message
…
timestamp
…
tor-hiddenservice
…
tor-node
…
tracking-id
…
transaction
…
translation
…
transport-ticket
chg: [transport-ticket] update to add the type of ticket (e.g. boarding pass versus ticket)
2023-01-27 15:55:08 +01:00
trustar_report
chg: [trustar_report] Updated to add "THREAT_ACTOR"
2021-01-05 09:30:28 +01:00
tsk-chats
…
tsk-web-bookmark
…
tsk-web-cookie
…
tsk-web-downloads
…
tsk-web-history
…
tsk-web-search-query
chg: [tsk-web-search-query] jq all the things
2021-07-25 09:11:42 +02:00
twitter-account
fix: JSON Validation
2020-09-09 10:36:20 +02:00
twitter-list
chg: [dev] run validate_all/jq
2020-06-02 11:11:43 -04:00
twitter-post
chg: [twitter-post] jq
2020-12-20 10:52:40 +01:00
typosquatting-finder
chg: [typosquatting] jq_all_the_things
2023-01-16 08:45:20 +01:00
typosquatting-finder-result
chg: [typosquatting] jq_all_the_things
2023-01-16 08:45:20 +01:00
url
chg: [url] jq all the things
2021-02-02 11:57:41 +01:00
user-account
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
vehicle
fix: [vehicle] jq all the things
2022-12-30 07:37:54 +01:00
victim
fix: [victim] format fixed
2023-02-02 10:58:30 +01:00
virustotal-graph
…
virustotal-report
fix: keys order in VT object
2021-02-02 15:31:00 +01:00
virustotal-submission
Fixes wrong category and typo in value list
2022-04-26 15:05:05 +02:00
vulnerability
chg: [vulnerability] fixed
2020-10-15 22:49:29 +02:00
weakness
chg: Using the actual attribute type for cpe and weakness instead of text
2020-10-22 22:11:50 +02:00
whois
…
windows-service
new: [windows-service] windows-service object added
2021-02-13 17:01:44 +01:00
x509
Add sane default for boolean objects
2021-12-20 20:02:29 +00:00
yabin
…
yara
fix: [yara] add a reference link to the YARA object template
2022-08-03 11:46:30 +02:00
youtube-channel
new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image.
2020-05-29 21:10:02 -04:00
youtube-comment
new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image.
2020-05-29 21:10:02 -04:00
youtube-playlist
new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image.
2020-05-29 21:10:02 -04:00
youtube-video
new: [dev] add Twitter objects: twitter-account, twitter-list, twitter-post. add YouTube objects: youtube-channel, youtube-comment, youtube-playlist, youtube-video. add object: image.
2020-05-29 21:10:02 -04:00