Commit Graph

204 Commits (8891052e2a039886d2be086f0c0e6f0a2104b1f4)

Author SHA1 Message Date
Alexandre Dulaunoy 8891052e2a
chg: [misp-query-format] add a sample query with financial fraud 2018-10-07 12:02:58 +02:00
Alexandre Dulaunoy 3b577a0ad6
chg: [misp-query-format] types and categories available in MISP core format 2018-10-07 11:57:12 +02:00
Andras Iklody 100ba755cb
some more stuff 2018-10-07 11:33:48 +02:00
Alexandre Dulaunoy bc35cf0030
add: [misp-query-format] WiP first introduction and general skeleton 2018-10-07 11:23:53 +02:00
Alexandre Dulaunoy b501364088
chg: [misp-core-format] fix title section for the references 2018-10-07 10:26:11 +02:00
Alexandre Dulaunoy e5d87ab4e3
chg: [misp-galaxy] Internet-Draft published as 05 2018-09-27 09:06:36 +02:00
Alexandre Dulaunoy d6fa8078dd
chg: [misp-galaxy] RFC text export added 2018-09-22 10:25:09 +02:00
Alexandre Dulaunoy cc756f6836
Merge pull request #20 from Delta-Sierra/master
update galaxy rfc
2018-09-22 10:24:11 +02:00
Deborah Servili fe0cb0e883
add possible values for some field in galaxies 2018-09-21 15:54:57 +02:00
Deborah Servili 8746fe294d
update cfr-type-of-incident type 2018-09-20 15:10:24 +02:00
Deborah Servili bf497626db
merging conflict 2018-09-20 14:59:29 +02:00
Alexandre Dulaunoy 9a4f035b4b
chg: [misp-galaxy] meta extended with generic/community field for
attribution based on the original CFR classification.

suspected-victims, suspected-state-sponsor, type-of-incident,
target-category added

The goal is to ensure a consistent scheme across all galaxies to
allow a community-based attribution. If an attribution is not accepted
at large by the community, specific ones like CFR can be used or
even extended.
2018-09-20 07:41:12 +02:00
Alexandre Dulaunoy 6671a70466
chg: [misp-galaxy] txt export added 2018-09-10 22:06:36 +02:00
Alexandre Dulaunoy cfa09fe7f0
chg: [misp-galaxy] removed unused derivated_from field from MISP galaxy
schema

This has been validated by @Delta-Sierra and schema got updated.

@adulau updated the Internet-Draft following the approval of the TC
at unanimity following a debate of 7 seconds which concluded in
the approval of the removal of the field. The user-groups relying
on the galaxy schema approved that the field was not used and was
superseded by the 'related' field which is more convenient and
already implemented by @cvandeplas (ref:
https://github.com/MISP/misp-galaxy/blob/master/tools/gen_mapping.py)

As the TC strictly follows the PMF methodology, the commit was signed off
by the quorum required to validate a TC decision.

Ref: https://twitter.com/Iglocska/status/1039214679267201026 (TC
approval)
2018-09-10 20:11:16 +02:00
Deborah Servili 280c95569b
Fix galaxy rfc 2018-09-10 13:02:36 +02:00
Deborah Servili 4f4880e7bf
Fix galaxy rfc 2018-09-10 13:01:52 +02:00
Alexandre Dulaunoy 8ff4c098a5
chg: [core-format] bro attribute type added 2018-08-28 21:11:28 +02:00
Alexandre Dulaunoy 8b933933c8
fix: [misp-galaxy] https://www.ietf.org/id/draft-dulaunoy-misp-galaxy-format-04.txt published 2018-08-23 09:43:36 +02:00
Alexandre Dulaunoy f1df0c2ab3
fix: [misp-galaxy] references to documentation 2018-08-23 09:38:56 +02:00
Alexandre Dulaunoy 985d01fc4d
Add a reference to object relationship type 2018-08-23 09:34:32 +02:00
Alexandre Dulaunoy 9a0138f855
fix: related value type in misp galaxy format 2018-08-09 13:47:30 +02:00
Alexandre Dulaunoy 29e90c68e3
WiP for the new related field in misp-galaxy 2018-08-09 12:04:47 +02:00
Alexandre Dulaunoy 3852ded49a
add: text export added 2018-08-08 16:15:55 +02:00
Christophe Vandeplas bba9452d4e chg: update categories/types mapping to reality 2018-08-08 11:15:58 +02:00
Alexandre Dulaunoy 8ed440cb78
Draft I-D 03 published for the misp-galaxy format 2018-08-04 15:57:22 +02:00
Christophe Vandeplas 9d349925f3 core - hostname|port 2018-08-03 14:34:20 +02:00
Alexandre Dulaunoy 8a8fece42d
chg: [misp-galaxy] add CFR.org reference 2018-08-03 13:35:36 +02:00
Alexandre Dulaunoy e2ba01ff37
fix title of I-D for misp warning lists 2018-08-03 13:23:47 +02:00
Alexandre Dulaunoy 668d838ec0
txt version generated 2018-08-03 12:26:13 +02:00
Alexandre Dulaunoy 6de816c8cf
Merge pull request #18 from Delta-Sierra/master
update galaxy-rfc to include cfr- attributes
2018-08-03 12:20:47 +02:00
Deborah Servili 566abeef77 update galaxy-rfc to include cfr- attributes
Signed-off-by: Deborah Servili <deborah.servili@gmail.com>
2018-08-03 11:31:05 +02:00
Alexandre Dulaunoy 2fc8a331cb
Merge branch 'master' of github.com:MISP/misp-rfc 2018-07-10 07:50:19 +02:00
Alexandre Dulaunoy 92e2694a31
chg: small typo fixed 2018-07-10 07:48:11 +02:00
Alexandre Dulaunoy 465a836a1c
Merge pull request #17 from Delta-Sierra/master
add type description in galaxy-format
2018-06-22 14:26:25 +02:00
Deborah Servili 9f667a19b2 add type description in galaxy-format 2018-06-22 13:00:07 +02:00
Alexandre Dulaunoy bbfe417dc6
Updated version including JSON schema reviewed 2018-06-17 20:39:57 +02:00
Alexandre Dulaunoy f3ae6a7f1f
chg: [misp-core-format] Acknowledgment updated 2018-06-08 06:35:38 +02:00
Alexandre Dulaunoy f7ad672721
chg: [misp-notice] some updates and improvement in the notice Internet-Draft 2018-06-08 06:32:17 +02:00
Alexandre Dulaunoy 342bebed98
Merge pull request #16 from Delta-Sierra/master
misp-noticelist-format - first draft [WiP]
2018-06-08 05:57:26 +02:00
Deborah Servili 4d2a92eaa9 fix remaining parts from galaxy format 2018-06-05 16:33:39 +02:00
Deborah Servili a0f4c6d497 Merge https://github.com/MISP/misp-rfc 2018-06-05 13:10:39 +02:00
Deborah Servili 8d79d8192e add example 2018-06-05 12:22:32 +02:00
Deborah Servili 143648a54d misp-noticelist-format - first draft [WiP] 2018-06-05 12:21:50 +02:00
Alexandre Dulaunoy f87bf6b784
Merge pull request #15 from nbareil/master
Updating JSON Schema
2018-06-04 16:50:49 +02:00
Nicolas Bareil 7fc9b3f254 Updating JSON Schema 2018-06-04 14:33:58 +02:00
Andras Iklody e95fe269f0
Merge pull request #13 from nbareil/patch-2
missing braces to misp-object example
2018-06-04 10:10:11 +02:00
Nicolas Bareil d00db38763
Update raw.md 2018-06-04 10:00:41 +02:00
Alexandre Dulaunoy 3430e4325f
chg: Internet-Draft of MISP taxonomy format updated 2018-06-01 10:55:35 +02:00
Alexandre Dulaunoy 003d2794ef
Index updated 2018-05-09 15:58:26 +02:00
Alexandre Dulaunoy 2b3bdb89c1
Internet-Draft 02 published 2018-05-09 15:42:49 +02:00