MISP
/
misp-objects
mirror of https://github.com/MISP/misp-objects
2
0
Fork 0
Code Issues Releases Wiki Activity
misp-objects/objects
History
Alexandre Dulaunoy 0c98a925f3
chg: [forensic-case] object added based on the original one from @Aks6193 
The idea is to separate the evidences from the case itself as you can
have multiple acquisitions for a specific case. Another object template
is required such as [forensic-evidence] to be able to link between the
forensic-case object and one or more evidences.
 		2018-09-03 13:54:59 +02:00
..
ail-leak modify ail-leak object for the tagging system 2018-06-12 11:47:44 +02:00
ais-info Chg: jq all the things 2018-06-19 21:11:24 +02:00
android-permission
annotation
asn
av-signature
bank-account fix: jq all the things 2018-02-23 08:25:35 +01:00
cap-alert fix: trailing dot removed 2018-02-07 14:54:15 +01:00
cap-info add: Common Alerting Protocol Version (CAP) info object 2018-02-08 07:45:41 +01:00
cap-resource add: Common Alerting Protocol Version (CAP) resource object 2018-02-08 11:53:05 +01:00
coin-address chg: [coin-address] ETN symbol added 2018-07-13 17:07:35 +02:00
cookie
course-of-action Course of Action object 2018-04-11 16:48:05 +02:00
cowrie fix: disable correlation for compression algorithms 2018-03-01 21:09:04 +01:00
credential
credit-card
ddos
diameter-attack
domain-ip chg: allow multiple domains too fix #108 2018-07-20 10:12:09 +02:00
elf
elf-section
email url is not a field of email object, then not one of the requiredOneOf 2018-07-26 15:49:44 +02:00
exploit-poc chg: [exploit-poc] a same context can contains multiple PoC samples 2018-07-10 09:32:12 +02:00
fail2ban new: Attach logfile to fail2ban 2018-03-27 10:25:54 +02:00
file fix file object version 2018-07-27 15:19:15 +02:00
forensic-case chg: [forensic-case] object added based on the original one from @Aks6193 2018-09-03 13:54:59 +02:00
geolocation chg: [geolocation] disable correlation on specific attributes 2018-08-15 18:34:35 +02:00
gtp-attack
http-request Changed http request object template 2018-02-09 09:43:39 +01:00
ip-port fix: add hostname to ip-port template and make attributes multiple 2018-04-10 14:46:36 +02:00
ja3 chg: [ja3] categories removed (default attributes categories will be used) 2018-08-28 14:30:29 +02:00
legal-entity Fixed disable_correlation variable type 2018-02-06 15:36:57 +01:00
macho
macho-section
microblog
mutex
netflow
network-connection add: Added hostname (src & dst) attributes 2018-05-08 09:03:57 +02:00
network-socket add: Added protocol attribute in the network socket object 2018-05-08 09:26:24 +02:00
passive-dns fix: Passive DNS records especially on the disabled_correlation fields 2018-01-25 15:07:19 +01:00
paste chg: [paste object] add a link attribute when the paste reference is not malicious 2018-07-26 14:06:39 +02:00
pe
pe-section
person description typo 2018-02-05 16:10:23 +01:00
phone
process Attribute typo 2018-05-25 09:13:14 +02:00
r2graphity
regexp regexp object - change version 2018-04-13 10:56:56 +02:00
registry-key
report
rtir
sandbox-report
sb-signature fix: Make the schema happy. 2018-01-23 10:46:15 +01:00
script chg: new script template object 2018-06-09 11:36:58 +02:00
short-message-service new: [short-message-service] Short Message Service (SMS) object template describing one or more SMS message added 2018-07-18 09:52:31 +02:00
shortened-link renamed url attributed, versioning date based 2018-06-05 14:39:12 +02:00
ss7-attack chg: change version of the SS7 template object 2018-05-29 16:07:50 +02:00
stix2-pattern fix: version field added if stix2-pattern has multiple version in the future 2018-03-19 17:33:45 +01:00
suricata fix: [suricata] allow multiple Suricata rules in the object (similar context) and fix the rule to be in Snort format 2018-07-09 21:50:44 +02:00
target-system moved object into internal 2018-04-10 16:08:04 +00:00
threatgrid-report new: threatgrid-report object template 2018-07-16 13:48:56 +02:00
timecode chg: Timecode object to describe a start of video sequence (e.g. CCTV evidence) and the end of the video sequence. 2018-05-21 10:19:54 +02:00
timesketch-timeline add: missing timesketch-timeline object template 2018-06-22 07:44:20 +02:00
timestamp add: new timestamp object 2018-04-30 16:27:17 +02:00
tor-node
transaction Fixed the bank-account meta-category 2018-02-20 15:44:02 +01:00
url fix: some parts of the URL can be repeated such as resource path, anchor... 2018-03-15 09:38:53 +01:00
vehicle chg: [vehicle] Vehicle object template to describe a vehicle information and registration 2018-08-04 15:39:38 +02:00
victim
virustotal-report Adding ui-priority fields 2018-04-23 11:22:39 +02:00
vulnerability chg: [vulnerability] is now in its own vulnerability meta-category 2018-07-10 07:38:28 +02:00
whois Update definition.json 2018-04-26 16:53:24 +02:00
x509 fix: Feedback from @sheidan 2018-03-28 15:26:35 +02:00
yabin
yara add: Context where the YARA rule can be applied 2018-05-01 11:21:05 +02:00