MISP
/
misp-objects
mirror of https://github.com/MISP/misp-objects
2
0
Fork 0
Code Issues Releases Wiki Activity
misp-objects/objects
History
Christian Studer 9e4afdfb7a
add: [network-socket] Added MAC address attributes 
- Even though they are not exactly part of the
  socket fields, it could be interesting to have
  them to have the information about them like
  they are described within the packets that are
  sent using the socket
 		2023-03-31 11:30:33 +02:00
..
ADS fix: [jq] JSON fixed 2022-12-15 14:39:52 +01:00
ail-leak
ais fix: forgot to jq all the things. 2023-03-01 15:13:39 +01:00
ais-info
android-app
android-permission
annotation
anonymisation
apivoid-email-verification new: Add apivoid email verification API result object 2022-02-07 17:54:31 +01:00
artifact fix: [objects description] ref #384 - Grammar fixes included in the JSON files. 2023-02-02 10:51:32 +01:00
asn fix: [objects description] ref #384 - Grammar fixes included in the JSON files. 2023-02-02 10:51:32 +01:00
attack-pattern
attack-step chg: Fixed typo in disable_correlation 2022-07-01 16:59:03 +02:00
authentication-failure-report
authenticode-signerinfo chg: Update objects to match lief output for authenticode 2021-01-19 15:38:31 +01:00
av-signature
bank-account Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
bgp-hijack
bgp-ranking fix: Disabling correlation for all the bgp-ranking object attributes 2020-09-09 10:09:07 +02:00
blog
boleto
btc-transaction
btc-wallet fix: [objects description] ref #384 - Grammar fixes included in the JSON files. 2023-02-02 10:51:32 +01:00
cap-alert
cap-info
cap-resource
cloth test 2022-03-21 10:08:36 +00:00
coin-address
command
command-line
concordia-mtmf-intrusion-set fix: incorrect entry in CMTMF_ATCKID 2021-12-20 13:17:46 +01:00
cookie fix: [objects description] ref #384 - Grammar fixes included in the JSON files. 2023-02-02 10:51:32 +01:00
cortex fix: [objects description] ref #384 - Grammar fixes included in the JSON files. 2023-02-02 10:51:32 +01:00
cortex-taxonomy fix: [objects description] ref #384 - Grammar fixes included in the JSON files. 2023-02-02 10:51:32 +01:00
course-of-action
covid19-csse-daily-report
covid19-dxy-live-city
covid19-dxy-live-province
cowrie
cpe-asset chg: Using the actual attribute type for cpe and weakness instead of text 2020-10-22 22:11:50 +02:00
credential
credit-card
crypto-material chg: [crypto-material] add a public field for public cryptographic materials 2020-12-30 14:21:37 +01:00
cytomic-orion-file
cytomic-orion-machine
dark-pattern-item
ddos chg: [ddos] because newline 2022-03-09 11:06:19 +01:00
device chg: [device] ui-priority added 2021-10-25 16:05:04 +02:00
diameter-attack fix: [JSON] updated 2022-02-03 17:44:17 +01:00
directory add: [directory] New object template for directories 2023-02-27 10:56:31 +01:00
dkim fix: [dkim] clean-up 2021-02-25 07:25:09 +01:00
dns-record
domain-crawled
domain-ip chg: [domain-ip] added the multiple flag back to ports 2022-05-30 18:07:25 +02:00
edr-report Ran jq_all_the_things.sh 2021-10-06 20:13:39 +02:00
elf
elf-section
email Ran jq_all_the_things_.sh 2021-11-26 15:37:32 +02:00
employee add: [employee] Added a `full-name` object_relation for cases when we are not sure which name is the first and the last 2022-03-31 20:21:12 +02:00
error-message new: [error-message] new template to create error-message from MISP processing scripts 2022-02-17 16:47:08 +01:00
exploit add: [exploit] Added `description` and `title` attributes 2022-10-23 23:11:48 +02:00
exploit-poc
facebook-account
facebook-group fix: [facebook-group] add an optional ID reference to the facebook id 2022-09-09 07:24:05 +02:00
facebook-page
facebook-post
facebook-reaction new: [facebook-reaction] new object to link reaction with facebook posts or alike 2022-09-09 07:21:59 +02:00
facial-composite
fail2ban fix: [fail2ban] incorrect UUID fixed 2022-12-11 12:54:24 +01:00
favicon chg: [favicon] jq all the things 2020-12-27 16:21:09 +01:00
file add: [file] Added creation, modification & access time attributes 2023-02-20 19:31:59 +01:00
forensic-case
forensic-evidence
forged-document
ftm-Airplane fix: [ftm] missing description fix #363 2022-06-30 17:19:33 +02:00
ftm-Assessment fix: [ftm] missing description fix #363 2022-06-30 17:19:33 +02:00
ftm-Asset fix: [ftm] missing description fix #363 2022-06-30 17:19:33 +02:00
ftm-Associate
ftm-Audio fix: [ftm] missing description fix #363 2022-06-30 17:19:33 +02:00
ftm-BankAccount fix: [ftm] missing description fix #363 2022-06-30 17:19:33 +02:00
ftm-Call chg: [ftm-Call] fixed missing description 2022-06-30 17:12:25 +02:00
ftm-Company fix: [template] missing newlines 2022-01-06 16:52:43 +01:00
ftm-Contract
ftm-ContractAward
ftm-CourtCase fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-CourtCaseParty fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Debt
ftm-Directorship fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Document fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Documentation fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-EconomicActivity
ftm-Email fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Event fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Family
ftm-Folder fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-HyperText fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Image fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Land fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-LegalEntity
ftm-License
ftm-Membership fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Message fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Organization fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Ownership fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Package fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Page fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Pages fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Passport
ftm-Payment
ftm-Person
ftm-PlainText fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-PublicBody
ftm-RealEstate
ftm-Representation
ftm-Row fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Sanction
ftm-Succession
ftm-Table fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-TaxRoll
ftm-UnknownLink fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-UserAccount fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Vehicle fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Vessel
ftm-Video fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
ftm-Workbook fix: [ftm-*] Fixing missing description - #363 2022-06-30 17:43:44 +02:00
game-cheat added cheat types and minor changes 2022-03-15 03:37:26 +01:00
geolocation chg: [geolocation] countrycode added as requested for the VarIOT. 2021-10-25 15:35:23 +02:00
git-vuln-finder
github-user fix: [template] missing newlines 2022-01-06 16:52:43 +01:00
gitlab-user chg: [gitlab-user] because -r is important 2020-10-07 09:20:54 +02:00
greynoise-ip chg: [greynoise-intelligence] JSON fixed 2023-03-10 15:34:32 +01:00
gtp-attack fix: [JSON] updated 2022-02-03 17:44:17 +01:00
hashlookup chg: [hashlookup] add KnownMalicious field in hashlookup record 2021-09-24 15:33:53 +02:00
http-request
identity new: [identity] from STIX 2.1 - 4.5 - new object template 2022-01-31 07:45:38 +01:00
ilr-impact
ilr-notification-incident fix: Validation issue fixed 2020-09-03 14:21:06 +02:00
image
impersonation
imsi-catcher
infrastructure new: [infrastructure] infrastructure object added (STIX 2.1 - 4.8) 2022-02-14 11:30:09 +01:00
instant-message chg: [instant-message] Jabber and Twitter added + updated required fields 2022-03-17 09:14:39 +01:00
instant-message-group chg: [instan-message-*] add Tox as potential chat application 2022-01-16 16:39:06 +01:00
intel471-vulnerability-intelligence Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
intelmq_event Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
intelmq_report
internal-reference
interpol-notice
intrusion-set new: [intrusion-set] based on the STIX 2.1 definition 2022-09-29 07:32:52 +02:00
iot-device
iot-firmware
ip-api-address fix: Normalised object relations of the ip-api-address object 2020-09-03 14:10:02 +02:00
ip-port fix: [ip-port] jq all the things 2022-03-11 10:21:09 +01:00
irc
ja3
ja3s chg: [ja3s] updated 2021-11-14 22:38:47 +01:00
jarm chg: [jarm] jq all the things 2021-01-05 14:49:34 +01:00
keybase-account chg: Sort json 2020-09-16 15:17:43 +02:00
language-content new: [language-content] New object template language-content based on 2022-02-15 07:21:58 +01:00
leaked-document
legal-entity
lnk
macho
macho-section
mactime-timeline-analysis fix: [mactim-timeline-analysis] invalid UUID fixed 2022-12-11 13:03:18 +01:00
malware-config
meme-image Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
microblog
mutex
narrative
netflow
network-connection fix: [network-connection, network-socket] Bytes count if also better with an S 2023-03-07 23:26:51 +01:00
network-profile chg: [network-element] jq 2021-02-24 06:48:10 +01:00
network-socket add: [network-socket] Added MAC address attributes 2023-03-31 11:30:33 +02:00
news-agency
news-media
open-data-security new: [open-data-security] new object template based on open data 2021-05-17 15:55:23 +02:00
organization chg: [organization] NL fixed 2022-04-04 14:49:44 +02:00
original-imported-file
paloalto-threat-event chg: [paloalto-threat-event] Hungary access to the git repository has been sanctioned 2022-05-11 15:38:24 +02:00
parler-account Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
parler-comment
parler-post Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
passive-dns chg: [passive-dns] jq 2021-05-03 07:20:51 +02:00
passive-dns-dnsdbflex fix: [passive-dns-dnsdbflex] newline 2021-05-26 14:12:10 +02:00
passive-ssh add: [passive-ssh] Added `port` attribute 2022-05-06 17:01:13 +02:00
paste Typo and version number correction + adding a field in twitter-post 2020-12-14 23:01:12 +01:00
pcap-metadata
pe chg: Update objects to match lief output for authenticode 2021-01-19 15:38:31 +01:00
pe-section
persnona fix: [jq] JSON fixed 2022-12-15 14:39:52 +01:00
person fix: [person] add a missing passport-creation date field. 2022-11-19 12:21:16 +01:00
personification chg: [personification] fixed 2022-03-24 15:42:35 +01:00
pgp-meta
phishing chg: [phishing] newline 2021-05-11 15:44:35 +02:00
phishing-kit fix: Normalised object relations of the phishing objects 2020-09-03 14:12:05 +02:00
phone
postal-address chg: add requiredOneOf for postal-address 2021-12-20 14:15:10 +01:00
probabilistic-data-structure chg: [probabilistic-data-structure] updated followng JL feedback 2021-12-29 16:27:26 +01:00
process Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
publication
python-etvx-event-log
query chg: [query] add Kusto Query Language (KQL) 2022-06-25 19:20:13 +02:00
r2graphity
ransom-negotiation Added fields 2022-05-20 15:53:29 +02:00
ransomware-group-post new: [ransomware-group-post] First draft object for ransomlook.io 2023-02-17 10:33:59 +01:00
reddit-account
reddit-comment
reddit-post
reddit-subreddit
regexp chg: [regexp] fixed 2021-02-19 21:56:35 +01:00
registry-key
registry-key-value add: [registry-key-value] New template to describe registry key values 2023-03-01 20:50:30 +01:00
regripper-NTUser Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
regripper-sam-hive-single-user
regripper-sam-hive-user-group
regripper-software-hive-BHO
regripper-software-hive-appInit-DLLS
regripper-software-hive-application-paths
regripper-software-hive-applications-installed
regripper-software-hive-command-shell
regripper-software-hive-software-run
regripper-software-hive-userprofile-winlogon Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
regripper-software-hive-windows-general-info
regripper-system-hive-firewall-configuration Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
regripper-system-hive-general-configuration Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
regripper-system-hive-network-information Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
regripper-system-hive-services-drivers
report chg: [report] add Zotero item types in addition to the default type 2022-06-18 16:10:41 +02:00
research-scanner
rogue-dns
rtir
sandbox-report
sb-signature
scheduled-event
scheduled-task chg: [scheduled-task] disable_correlation + clarification 2022-07-08 15:03:27 +02:00
scrippsco2-c13-daily
scrippsco2-c13-monthly
scrippsco2-co2-daily
scrippsco2-co2-monthly
scrippsco2-o18-daily
scrippsco2-o18-monthly
script
security-playbook chg: [security-playbook] JSON fixed 2022-08-25 10:17:48 +02:00
shell-commands
shodan-report
short-message-service
shortened-link
sigma new: [sigma] a sigma attribute exists in MISP but the object was 2022-08-03 11:44:37 +02:00
social-media-group
software new: [software] software template object added based 6.14 (STIX 2.1) 2022-02-14 11:06:53 +01:00
spearphishing-attachment jq_all_the_things 2022-08-25 16:03:59 -05:00
spearphishing-link jq_all_the_things 2022-08-25 16:03:59 -05:00
splunk fix: [splunk] fixed 2021-02-15 15:10:20 +01:00
ss7-attack modified by ./jq_all_the_things.sh 2022-03-21 15:04:26 +01:00
ssh-authorized-keys
stix2-pattern chg: [stix2-pattern] add STIX 2.1 2022-01-14 16:43:01 +01:00
stock chg: [stock] newline fixed 2022-06-18 17:00:13 +02:00
submarine chg: [submarine] fixes and list of types added 2021-11-12 08:39:35 +01:00
suricata
target-system
tattoo test 2022-03-21 10:08:36 +00:00
telegram-account chg: [telegram-account] required attributes 2021-01-26 11:39:22 +01:00
telegram-bot add username field in telegram-bot object 2022-10-13 13:45:52 +02:00
temporal-event fix: [temporal-event] newline issue 2021-12-21 08:15:06 +01:00
thaicert-group-cards fix: [jq] all 2022-12-22 13:15:10 +01:00
threatgrid-report
timecode
timesketch-timeline
timesketch_message
timestamp
tor-hiddenservice
tor-node
tracking-id
transaction
translation
transport-ticket chg: [transport-ticket] update to add the type of ticket (e.g. boarding pass versus ticket) 2023-01-27 15:55:08 +01:00
trustar_report chg: [trustar_report] Updated to add "THREAT_ACTOR" 2021-01-05 09:30:28 +01:00
tsk-chats
tsk-web-bookmark
tsk-web-cookie
tsk-web-downloads
tsk-web-history
tsk-web-search-query chg: [tsk-web-search-query] jq all the things 2021-07-25 09:11:42 +02:00
twitter-account fix: JSON Validation 2020-09-09 10:36:20 +02:00
twitter-list
twitter-post chg: [twitter-post] jq 2020-12-20 10:52:40 +01:00
typosquatting-finder chg: [typosquatting] jq_all_the_things 2023-01-16 08:45:20 +01:00
typosquatting-finder-result chg: [typosquatting] jq_all_the_things 2023-01-16 08:45:20 +01:00
url chg: [url] jq all the things 2021-02-02 11:57:41 +01:00
user-account Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
vehicle fix: [vehicle] jq all the things 2022-12-30 07:37:54 +01:00
victim fix: [victim] format fixed 2023-02-02 10:58:30 +01:00
virustotal-graph
virustotal-report fix: keys order in VT object 2021-02-02 15:31:00 +01:00
virustotal-submission Fixes wrong category and typo in value list 2022-04-26 15:05:05 +02:00
vulnerability chg: [vulnerability] fixed 2020-10-15 22:49:29 +02:00
weakness chg: Using the actual attribute type for cpe and weakness instead of text 2020-10-22 22:11:50 +02:00
whois
windows-service new: [windows-service] windows-service object added 2021-02-13 17:01:44 +01:00
x509 Add sane default for boolean objects 2021-12-20 20:02:29 +00:00
yabin
yara fix: [yara] add a reference link to the YARA object template 2022-08-03 11:46:30 +02:00
youtube-channel
youtube-comment
youtube-playlist
youtube-video