From e726c1a8c0ad67799ec0619e99544fa83815ccc6 Mon Sep 17 00:00:00 2001 From: Alexandre Dulaunoy Date: Tue, 3 Sep 2019 15:53:04 +0200 Subject: [PATCH] chg: [collaborative-intelligence] request malware config added Following feedback during a workshop session at a bank. --- MANIFEST.json | 2 +- collaborative-intelligence/machinetag.json | 7 ++++++- 2 files changed, 7 insertions(+), 2 deletions(-) diff --git a/MANIFEST.json b/MANIFEST.json index d2f6c2b..862b361 100644 --- a/MANIFEST.json +++ b/MANIFEST.json @@ -61,7 +61,7 @@ "description": "CIRCL Taxonomy is a simple scheme for incident classification and area topic where the incident took place." }, { - "version": 2, + "version": 3, "name": "collaborative-intelligence", "description": "Collaborative intelligence support language is a common language to support analysts to perform their analysis to get crowdsourced support when using threat intelligence sharing platform like MISP." }, diff --git a/collaborative-intelligence/machinetag.json b/collaborative-intelligence/machinetag.json index d33aa22..b67abd8 100644 --- a/collaborative-intelligence/machinetag.json +++ b/collaborative-intelligence/machinetag.json @@ -2,7 +2,7 @@ "namespace": "collaborative-intelligence", "expanded": "collaborative intelligence support language", "description": "Collaborative intelligence support language is a common language to support analysts to perform their analysis to get crowdsourced support when using threat intelligence sharing platform like MISP. The objective of this language is to advance collaborative analysis and to share earlier than later.", - "version": 2, + "version": 3, "predicates": [ { "value": "request", @@ -18,6 +18,11 @@ "value": "sample", "expanded": "Request a binary sample" }, + { + "value": "extracted-malware-config", + "expanded": "Extracted malware config", + "description": "Request of the malware configuration extracted from the malware sample tagged." + }, { "value": "deobfuscated-sample", "expanded": "Request a deobfuscated sample of the shared sample"