MISP
/
misp-rfc
mirror of https://github.com/MISP/misp-rfc
2
0
Fork 0
Code Issues Releases Wiki Activity
365 Commits
3 Branches
0 Tags
2.2 MiB
Commit Graph

151 Commits (a475a9bc7e162b9149778bac0bfe4ba88b6edf86)

Author SHA1 Message Date
Alexandre Dulaunoy a475a9bc7e
chg: [core] updated export 2024-06-28 16:52:25 +02:00
Alexandre Dulaunoy 67983d7a24
new: [core] new data analyst section added - draft 2024-06-28 16:51:17 +02:00
Sami Mokaddem d29a31cfed
Update raw.md 
chg: [core:analyts-data] Made some fields optional
 2024-06-25 08:27:24 +02:00
Alexandre Dulaunoy 2137928263
chg: [core-format] WiP Analyst data section 2024-06-25 07:44:40 +02:00
Alexandre Dulaunoy 5c4002750b
chg: [misp-core] updated to the latest version 2023-12-25 07:20:33 +01:00
Alexandre Dulaunoy 45fd0e0c94
chg: [core] the new sighting type which is seen and confirmed as 
true-positive
 2023-12-24 14:37:11 +01:00
Alexandre Dulaunoy fdb2dcdced
chg: [core] Address of CIRCL fixed 2023-02-26 12:30:27 +01:00
Christophe Vandeplas 613bad9cc1 chg: [core] updated attributes type 2023-02-25 19:32:12 +08:00
Alexandre Dulaunoy 051e33b671
chg: [core] export updated 2022-02-14 16:39:15 +01:00
Alexandre Dulaunoy b48ed9dc9c
chg: [core] updated attributes type 2022-02-14 16:38:45 +01:00
Alexandre Dulaunoy 695b25ab7c
chg: [core] updated output 2022-02-14 16:35:27 +01:00
Alexandre Dulaunoy 590c412284
Merge branch 'main' of github.com:MISP/misp-rfc into main 2022-02-14 16:33:55 +01:00
Alexandre Dulaunoy 7dbfe7a979
fix: [I-D] seriesInfo missing 2022-02-14 16:33:40 +01:00
Alexandre Dulaunoy 4ff1534786
Merge pull request #47 from 0xThiebaut/patch-9 
Correct `Event` and `ShadowAttribute`'s `Orgc` and `Org`
 2022-02-14 16:33:21 +01:00
Alexandre Dulaunoy 444d46fc02
fix: [Makefile] mmark updated 2022-02-14 16:25:47 +01:00
Maxime THIEBAUT e53e962a6e Improve `Sighting`'s JSON representation discription 2022-02-06 10:55:10 +01:00
Maxime Thiebaut e8caee04ed
Correct `Event` and `ShadowAttribute`'s `Orgc` and `Org` 
Both `Event` and `ShadowAttribute`'s  objects were missing a depth-level.
 2022-02-05 22:42:36 +01:00
Alexandre Dulaunoy fc4a005632
Merge pull request #43 from 0xThiebaut/patch-5 
Correct `Object Reference`'s `object_id` attribute presence
 2022-02-05 21:21:12 +01:00
Alexandre Dulaunoy d702e1af78
Merge pull request #44 from 0xThiebaut/patch-6 
Correct `Object Reference`'s `relationship_type` attribute presence
 2022-02-05 21:20:00 +01:00
Alexandre Dulaunoy b8cca65cc0
Merge pull request #41 from 0xThiebaut/patch-4 
Correct `Object`'s `deleted` attribute
 2022-02-05 21:18:42 +01:00
Alexandre Dulaunoy bc0a5c7287
Merge pull request #40 from 0xThiebaut/patch-3 
Correct `Object`'s `template_uuid` and `template_version` attributes
 2022-02-05 21:15:57 +01:00
Maxime Thiebaut 32863e6274
Correct `Object Reference`'s `relationship_type` attribute presence 
Correct `Object Reference`'s `relationship_type` attribute presence by changing references from `referenced_type` to `relationship_type`.
 2022-02-05 20:16:27 +01:00
Maxime Thiebaut e1d316987a
Correct `Object Reference`'s `object_id` attribute presence 
Correct `Object Reference`'s `object_id` attribute presence by changing references from `event_id` to `object_id`.
 2022-02-05 20:05:13 +01:00
Maxime Thiebaut 0f5ae3ce82
Correct `Object`'s `deleted` attribute 
Correct `Object`'s `deleted` attribute by referencing to the `object` and not the `attribute`.
 2022-02-05 19:21:54 +01:00
Maxime Thiebaut 2eae5b9a65
Correct `Object`'s `template_uuid` and `template_version` attributes 
Correct `Object`'s `template_uuid` and `template_version` attributes by adding a missing presence clause.

The clause was set to `MUST` as per the `Object` definition:

> A MISP document containing an Object **MUST** contain a name, a meta-category, a description, a template_uuid and a template_version as described in the "Object Attributes" section.

Furthermore, the attribute descriptions lacked the full attribute name as `template_uuid` and `template_version` were respectively referred to as `uuid` and `version`, causing a collision with the already defined `uuid` attribute of the `Object`.
 2022-02-05 19:05:40 +01:00
Maxime Thiebaut 1da6baa570
Correct `Object`'s `description` attribute presence 
The  `Object`'s `description` attribute presence incorrectly refers to the attribute as `id` while it should be `description`.
 2022-02-05 18:51:31 +01:00
Christophe Vandeplas 1b9206f486 chg: [types] dkim, dkim-signature, full-name added 2021-08-20 08:35:18 +02:00
Alexandre Dulaunoy 6a4c136db2
new: [type] favicon-mmh3 is the murmur3 hash of a favicon as used in Shodan. 2020-12-24 11:59:33 +01:00
Alexandre Dulaunoy ee8086fb63
chg: [types] process-state added 2020-11-24 12:25:06 +01:00
Alexandre Dulaunoy 6f6ac52d15
chg: [type] jarm-fingerprint added 2020-11-24 11:29:37 +01:00
Alexandre Dulaunoy c3c48fa8c6
chg: [core] updated 2020-10-21 15:59:46 +02:00
Sami Mokaddem 8398d66e47
fix: [eventReport] Typo 2020-10-21 13:21:26 +02:00
Alexandre Dulaunoy 7daa6413ef
new: [core] EventReport attribute added to follow MISP 2.4.133 release 2020-10-21 12:10:47 +02:00
Alexandre Dulaunoy 9b330ed8ea
chg: [types] updated 2020-10-15 14:48:36 +02:00
Alexandre Dulaunoy f292494303
chg: [core] telfhash added 2020-10-13 22:33:18 +02:00
Alexandre Dulaunoy 5599635a2c
chg: [core] new type added 2020-10-01 15:08:06 +02:00
Alexandre Dulaunoy 92b133f929
export: [core] updated 2020-09-04 16:16:51 +02:00
Alexandre Dulaunoy 01a1918aca
chg: [core] updated 2020-09-04 16:16:29 +02:00
Alexandre Dulaunoy 0b72e141d9
chg: [core] new types added 2020-09-04 16:15:31 +02:00
Alexandre Dulaunoy 35c858665f
chg: [misp-core] updated ascii output 2020-08-27 18:48:30 +02:00
Alexandre Dulaunoy bf81a441b4
chg: [core format] new attribute types added 2020-08-24 13:16:29 +02:00
Alexandre Dulaunoy ebb8814c09
chg: [core format] release for the I-D number 10 2020-05-27 14:19:42 +02:00
Alexandre Dulaunoy ee70028eee
chg: [core format] date updated 2020-05-27 10:09:51 +02:00
Alexandre Dulaunoy 2c96d78419
chg: [misp core format] raw updated 2020-05-27 10:08:14 +02:00
Alexandre Dulaunoy 32bb51a185
chg: [new types] git-commit-id added 2020-05-27 10:04:58 +02:00
Alexandre Dulaunoy 4505f65523
chg: [core] missing first_seen/last_seen in JSON schema added 2020-01-22 10:38:41 +01:00
Alexandre Dulaunoy 413992447e
new: [attributes] chrome-extension-id added 2020-01-21 09:44:58 +01:00
Alexandre Dulaunoy fb779dd1d6
new: [attribute type] kusto-query attribute type 
Kusto query is the query language for the Kusto services in Azure used
to search large dataset. It's used in Windows Defender ATP Hunting-Queries
and also Azure Sentinel (Cloud-native SIEM).
 2019-12-28 15:30:03 +01:00
Alexandre Dulaunoy 13a640a9af
chg: [types] updated 2019-12-05 19:19:07 +01:00
Alexandre Dulaunoy 5e9e9dc970
chg: [types] updated 2019-10-01 20:10:36 +02:00