Commit Graph

328 Commits (master)

Author SHA1 Message Date
Hannah Ward c00895d1ca
Revert: Remove gitignore 2019-02-19 17:38:40 +00:00
Hannah Ward f634b87a77
fix: Typo in build instructions 2019-02-19 17:37:16 +00:00
Hannah Ward 4d4940c085
fix: Allow building on non-adulau system 2019-02-19 17:34:11 +00:00
Alexandre Dulaunoy 811ec18053
chg: [misp-galaxy-format] updated galaxy schema 2019-02-15 09:20:43 +01:00
Alexandre Dulaunoy 1b8a0fcbf3
chg: [core-format] updated to the latest version 07 2019-02-03 14:12:19 +01:00
Alexandre Dulaunoy 19717ddf9e
chg: [core] updated to the latest version 2019-02-01 07:29:11 +01:00
Alexandre Dulaunoy 27ded7460a
chg: [add] anonymise type added 2019-02-01 07:26:22 +01:00
Alexandre Dulaunoy 96e49165a6
chg: [core] zeek type added 2019-01-30 23:19:23 +01:00
Alexandre Dulaunoy 0cb9a0f46e
chg: [datatypes] updated to the latest version 2019-01-13 12:34:24 +01:00
Alexandre Dulaunoy 602ea6ccde
chg: [datamodels] new types added 2019-01-13 12:27:47 +01:00
Alexandre Dulaunoy 566dfc25a6
chg: [query] some more fields added 2019-01-06 16:38:49 +01:00
Alexandre Dulaunoy 41129890bd
chg: [core] new ID for misp-core 2018-12-30 17:23:14 +01:00
Alexandre Dulaunoy e289e0c8b0
chg: [core] updated the ASCII output 2018-12-30 17:06:17 +01:00
Alexandre Dulaunoy 6824cca7d8
Merge branch 'master' of github.com:MISP/misp-rfc 2018-12-30 12:56:43 +01:00
Alexandre Dulaunoy 111c55e481
chg: [core] new types added 2018-12-30 12:54:53 +01:00
Christophe Vandeplas 85dd657bac chg: [datamodel] bump attributes mapping see issue MISP/MISP#3965 2018-12-20 12:58:38 +01:00
Alexandre Dulaunoy ee233c6fa7
chg: [misp-rfc] new version of the taxonomy-format RFC published 2018-12-01 11:03:54 +01:00
Alexandre Dulaunoy f7cf72327d
chg: [taxonomies] updated to the latest version 2018-11-30 08:05:04 +01:00
Alexandre Dulaunoy 6c52bfc2bf
chg: [misp-taxonomy-format] list of public taxonomies added 2018-11-30 08:01:12 +01:00
Alexandre Dulaunoy 11d23995a3
fix: [misp-galaxy] category is now a MUST 2018-10-19 14:24:32 +02:00
Alexandre Dulaunoy 5e15aef5e7
chg: [misp-galaxy-format] category added (to be reviewed) 2018-10-19 10:34:17 +02:00
Alexandre Dulaunoy 3f8bccce3e
chg: [misp-object] fix the references 2018-10-15 11:46:07 +02:00
Alexandre Dulaunoy ece4b9dcc6
chg: [misp-query-format] more updates [WiP] 2018-10-12 08:33:32 +02:00
Alexandre Dulaunoy be9b329475
chg: [misp-query-format] all the fields added [WiP] 2018-10-10 15:12:20 +02:00
Alexandre Dulaunoy 8891052e2a
chg: [misp-query-format] add a sample query with financial fraud 2018-10-07 12:02:58 +02:00
Alexandre Dulaunoy 3b577a0ad6
chg: [misp-query-format] types and categories available in MISP core format 2018-10-07 11:57:12 +02:00
Andras Iklody 100ba755cb
some more stuff 2018-10-07 11:33:48 +02:00
Alexandre Dulaunoy bc35cf0030
add: [misp-query-format] WiP first introduction and general skeleton 2018-10-07 11:23:53 +02:00
Alexandre Dulaunoy b501364088
chg: [misp-core-format] fix title section for the references 2018-10-07 10:26:11 +02:00
Alexandre Dulaunoy e5d87ab4e3
chg: [misp-galaxy] Internet-Draft published as 05 2018-09-27 09:06:36 +02:00
Alexandre Dulaunoy d6fa8078dd
chg: [misp-galaxy] RFC text export added 2018-09-22 10:25:09 +02:00
Alexandre Dulaunoy cc756f6836
Merge pull request #20 from Delta-Sierra/master
update galaxy rfc
2018-09-22 10:24:11 +02:00
Deborah Servili fe0cb0e883
add possible values for some field in galaxies 2018-09-21 15:54:57 +02:00
Deborah Servili 8746fe294d
update cfr-type-of-incident type 2018-09-20 15:10:24 +02:00
Deborah Servili bf497626db
merging conflict 2018-09-20 14:59:29 +02:00
Alexandre Dulaunoy 9a4f035b4b
chg: [misp-galaxy] meta extended with generic/community field for
attribution based on the original CFR classification.

suspected-victims, suspected-state-sponsor, type-of-incident,
target-category added

The goal is to ensure a consistent scheme across all galaxies to
allow a community-based attribution. If an attribution is not accepted
at large by the community, specific ones like CFR can be used or
even extended.
2018-09-20 07:41:12 +02:00
Alexandre Dulaunoy 6671a70466
chg: [misp-galaxy] txt export added 2018-09-10 22:06:36 +02:00
Alexandre Dulaunoy cfa09fe7f0
chg: [misp-galaxy] removed unused derivated_from field from MISP galaxy
schema

This has been validated by @Delta-Sierra and schema got updated.

@adulau updated the Internet-Draft following the approval of the TC
at unanimity following a debate of 7 seconds which concluded in
the approval of the removal of the field. The user-groups relying
on the galaxy schema approved that the field was not used and was
superseded by the 'related' field which is more convenient and
already implemented by @cvandeplas (ref:
https://github.com/MISP/misp-galaxy/blob/master/tools/gen_mapping.py)

As the TC strictly follows the PMF methodology, the commit was signed off
by the quorum required to validate a TC decision.

Ref: https://twitter.com/Iglocska/status/1039214679267201026 (TC
approval)
2018-09-10 20:11:16 +02:00
Deborah Servili 280c95569b
Fix galaxy rfc 2018-09-10 13:02:36 +02:00
Deborah Servili 4f4880e7bf
Fix galaxy rfc 2018-09-10 13:01:52 +02:00
Alexandre Dulaunoy 8ff4c098a5
chg: [core-format] bro attribute type added 2018-08-28 21:11:28 +02:00
Alexandre Dulaunoy 8b933933c8
fix: [misp-galaxy] https://www.ietf.org/id/draft-dulaunoy-misp-galaxy-format-04.txt published 2018-08-23 09:43:36 +02:00
Alexandre Dulaunoy f1df0c2ab3
fix: [misp-galaxy] references to documentation 2018-08-23 09:38:56 +02:00
Alexandre Dulaunoy 985d01fc4d
Add a reference to object relationship type 2018-08-23 09:34:32 +02:00
Alexandre Dulaunoy 9a0138f855
fix: related value type in misp galaxy format 2018-08-09 13:47:30 +02:00
Alexandre Dulaunoy 29e90c68e3
WiP for the new related field in misp-galaxy 2018-08-09 12:04:47 +02:00
Alexandre Dulaunoy 3852ded49a
add: text export added 2018-08-08 16:15:55 +02:00
Christophe Vandeplas bba9452d4e chg: update categories/types mapping to reality 2018-08-08 11:15:58 +02:00
Alexandre Dulaunoy 8ed440cb78
Draft I-D 03 published for the misp-galaxy format 2018-08-04 15:57:22 +02:00
Christophe Vandeplas 9d349925f3 core - hostname|port 2018-08-03 14:34:20 +02:00