MISP
/
misp-objects
mirror of https://github.com/MISP/misp-objects
2
0
Fork 0
Code Issues Releases Wiki Activity
misp-objects/objects
History
marcnil815 f3830e044a
Update definition.json 
Added possibility for multiple searches in same object to accomodate using raw searches and datamodel searches.
 		2021-02-15 14:13:17 +01:00
..
ail-leak
ais-info
android-app new: android-app object template 2020-06-21 21:45:46 +02:00
android-permission
annotation
anonymisation
asn
attack-pattern
authentication-failure-report add: [d4] authentication failure report object 2020-06-16 15:59:02 +02:00
authenticode-signerinfo chg: Update objects to match lief output for authenticode 2021-01-19 15:38:31 +01:00
av-signature
bank-account
bgp-hijack
bgp-ranking fix: Disabling correlation for all the bgp-ranking object attributes 2020-09-09 10:09:07 +02:00
blog
boleto
btc-transaction
btc-wallet
cap-alert
cap-info
cap-resource
coin-address
command
command-line
cookie
cortex
cortex-taxonomy chg: [cortex-taxonomy] sort attributes 2020-07-02 13:29:32 +02:00
course-of-action
covid19-csse-daily-report
covid19-dxy-live-city
covid19-dxy-live-province
cowrie
cpe-asset chg: Using the actual attribute type for cpe and weakness instead of text 2020-10-22 22:11:50 +02:00
credential
credit-card
crypto-material chg: [crypto-material] add a public field for public cryptographic materials 2020-12-30 14:21:37 +01:00
cytomic-orion-file
cytomic-orion-machine
dark-pattern-item
ddos
device
diameter-attack
dns-record Add more rrtypes to dns-record 2020-08-15 14:57:53 +02:00
domain-crawled
domain-ip chg: [domain-ip] hostname added as an attribute 2020-12-10 19:12:33 +01:00
elf
elf-section
email chg: [jq] all the things 2020-12-20 10:37:14 +01:00
employee
exploit-poc
facebook-account
facebook-group
facebook-page
facebook-post
facial-composite
fail2ban
favicon chg: [favicon] jq all the things 2020-12-27 16:21:09 +01:00
file chg: can have mutliple text attributes 2020-11-25 16:17:54 +01:00
forensic-case
forensic-evidence
forged-document
ftm-Airplane
ftm-Assessment
ftm-Asset
ftm-Associate
ftm-Audio
ftm-BankAccount
ftm-Call
ftm-Company
ftm-Contract
ftm-ContractAward
ftm-CourtCase
ftm-CourtCaseParty
ftm-Debt
ftm-Directorship
ftm-Document
ftm-Documentation
ftm-EconomicActivity
ftm-Email
ftm-Event
ftm-Family
ftm-Folder
ftm-HyperText
ftm-Image
ftm-Land
ftm-LegalEntity
ftm-License
ftm-Membership
ftm-Message
ftm-Organization
ftm-Ownership
ftm-Package
ftm-Page
ftm-Pages
ftm-Passport
ftm-Payment
ftm-Person
ftm-PlainText
ftm-PublicBody
ftm-RealEstate
ftm-Representation
ftm-Row
ftm-Sanction
ftm-Succession
ftm-Table
ftm-TaxRoll
ftm-UnknownLink
ftm-UserAccount
ftm-Vehicle
ftm-Vessel
ftm-Video
ftm-Workbook
geolocation
git-vuln-finder
github-user chg: [github-user] reflect the API fields 2020-09-17 07:24:30 +02:00
gitlab-user chg: [gitlab-user] because -r is important 2020-10-07 09:20:54 +02:00
gtp-attack
http-request
ilr-impact
ilr-notification-incident fix: Validation issue fixed 2020-09-03 14:21:06 +02:00
image
impersonation
imsi-catcher
instant-message
instant-message-group
intel471-vulnerability-intelligence Addition of Intel 471 vulnerability intelligence object 2020-09-23 13:20:33 +01:00
intelmq_event
intelmq_report
internal-reference
interpol-notice
iot-device
iot-firmware
ip-api-address fix: Normalised object relations of the ip-api-address object 2020-09-03 14:10:02 +02:00
ip-port chg: Making source port attribute multiple in the ip-port object 2020-09-03 14:08:36 +02:00
irc
ja3
jarm chg: [jarm] jq all the things 2021-01-05 14:49:34 +01:00
keybase-account chg: Sort json 2020-09-16 15:17:43 +02:00
leaked-document
legal-entity
lnk
macho
macho-section
mactime-timeline-analysis
malware-config
meme-image
microblog
mutex
narrative
netflow
network-connection
network-socket
news-agency
news-media
organization
original-imported-file
parler-account chg: [dev] add Parler app objects 2020-07-05 22:03:16 -04:00
parler-comment chg: [dev] add Parler app objects 2020-07-05 22:03:16 -04:00
parler-post chg: [dev] add Parler app objects 2020-07-05 22:03:16 -04:00
passive-dns add: [passive-dns] Added a raw_rdata object relation 2020-11-13 20:09:46 +01:00
paste Typo and version number correction + adding a field in twitter-post 2020-12-14 23:01:12 +01:00
pcap-metadata
pe chg: Update objects to match lief output for authenticode 2021-01-19 15:38:31 +01:00
pe-section
person
pgp-meta
phishing fix: Normalised object relations of the phishing objects 2020-09-03 14:12:05 +02:00
phishing-kit fix: Normalised object relations of the phishing objects 2020-09-03 14:12:05 +02:00
phone
process chg: [jq] all the [things] 2020-11-24 11:48:22 +01:00
publication
python-etvx-event-log
r2graphity
reddit-account chg: [dev] make Reddit attributes (mostly) reflect Reddit API. 2020-06-08 11:16:59 -04:00
reddit-comment chg: [dev] make Reddit attributes (mostly) reflect Reddit API. 2020-06-08 11:16:59 -04:00
reddit-post chg: [dev] make Reddit attributes (mostly) reflect Reddit API. 2020-06-08 11:16:59 -04:00
reddit-subreddit chg: [dev] make Reddit attributes (mostly) reflect Reddit API. 2020-06-08 11:16:59 -04:00
regexp
registry-key
regripper-NTUser
regripper-sam-hive-single-user
regripper-sam-hive-user-group
regripper-software-hive-BHO
regripper-software-hive-appInit-DLLS
regripper-software-hive-application-paths
regripper-software-hive-applications-installed
regripper-software-hive-command-shell
regripper-software-hive-software-run
regripper-software-hive-userprofile-winlogon
regripper-software-hive-windows-general-info
regripper-system-hive-firewall-configuration
regripper-system-hive-general-configuration
regripper-system-hive-network-information
regripper-system-hive-services-drivers
report chg: [report] add a link field to the report object template 2021-02-04 11:03:01 +01:00
research-scanner
rogue-dns
rtir
sandbox-report
sb-signature
scheduled-event
scrippsco2-c13-daily
scrippsco2-c13-monthly
scrippsco2-co2-daily
scrippsco2-co2-monthly
scrippsco2-o18-daily
scrippsco2-o18-monthly
script
shell-commands
shodan-report
short-message-service
shortened-link
social-media-group
splunk Update definition.json 2021-02-15 14:13:17 +01:00
ss7-attack
ssh-authorized-keys
stix2-pattern
suricata
target-system
telegram-account chg: [telegram-account] required attributes 2021-01-26 11:39:22 +01:00
threatgrid-report
timecode
timesketch-timeline
timesketch_message
timestamp
tor-hiddenservice
tor-node
tracking-id
transaction
translation
trustar_report chg: [trustar_report] Updated to add "THREAT_ACTOR" 2021-01-05 09:30:28 +01:00
tsk-chats
tsk-web-bookmark
tsk-web-cookie
tsk-web-downloads
tsk-web-history
tsk-web-search-query
twitter-account fix: JSON Validation 2020-09-09 10:36:20 +02:00
twitter-list
twitter-post chg: [twitter-post] jq 2020-12-20 10:52:40 +01:00
url chg: [url] jq all the things 2021-02-02 11:57:41 +01:00
user-account
vehicle fix: Incorrect relationships in requiredoneof field 2020-09-08 11:17:57 +02:00
victim
virustotal-graph
virustotal-report fix: keys order in VT object 2021-02-02 15:31:00 +01:00
vulnerability chg: [vulnerability] fixed 2020-10-15 22:49:29 +02:00
weakness chg: Using the actual attribute type for cpe and weakness instead of text 2020-10-22 22:11:50 +02:00
whois
windows-service new: [windows-service] windows-service object added 2021-02-13 17:01:44 +01:00
x509
yabin
yara chg: [yara] disable correlations on some fields 2020-12-30 14:46:04 +01:00
youtube-channel
youtube-comment
youtube-playlist
youtube-video