Valentin Giannini
162c02e4f9
update CERT-XLM json
2018-01-19 08:32:34 +01:00
Valentin Giannini
8c576c2da8
add missing
2018-01-18 16:23:39 +01:00
Valentin Giannini
9a9da7e532
add CERT-XLM taxonomie
2018-01-18 15:07:06 +01:00
Alexandre Dulaunoy
947ef6d0e3
Merge pull request #81 from droe/master
...
Set exclusive flag on misp:automation-level predicate
2018-01-12 19:35:28 +01:00
Daniel Roethlisberger
2a3ee9ead6
Set exclusive flag on automation-level predicate
2018-01-12 16:55:49 +01:00
Alexandre Dulaunoy
72cba6bd92
Merge pull request #80 from droe/master
...
Add automation-level predicate to misp taxonomy
2018-01-12 16:45:13 +01:00
Daniel Roethlisberger
4f9f3decfe
Bumping version to 6
2018-01-12 16:35:42 +01:00
Daniel Roethlisberger
a2c8089aa3
Add automation-level to the list of predicate descriptions
2018-01-12 16:19:29 +01:00
Daniel Roethlisberger
13bed50071
Rename "automatic" to "unsupervised" after review with @amuehlem
2018-01-12 16:04:38 +01:00
Daniel Roethlisberger
af3ba8ea50
add: New predicate misp:automation-level indicating whether an event or
...
attribute was imported into MISP in a fully automatic fashion, was
reviewed by a human, or directly stems from manual analysis.
/cc @h122015
2018-01-12 15:42:24 +01:00
Raphaël Vinot
2014d367c9
chg: Change predicate order to make PyTaxonomies happy
2018-01-04 17:38:08 +01:00
Alexandre Dulaunoy
47eba12569
add: new taxonomy added Christian Seifert, Ian Welch, Peter Komisarczuk, ‘Taxonomy of Honeypots’, Technical Report CS-TR-06/12, VICTORIA UNIVERSITY OF WELLINGTON, School of Mathematical and Computing Sciences, June 2006, http://www.mcs.vuw.ac.nz/comp/Publications/archive/CS-TR-06/CS-TR-06-12.pdf
2018-01-03 14:00:56 +01:00
Alexandre Dulaunoy
23af924390
Merge pull request #79 from michael-hamm/master
...
Honeypot basic taxonomy
2018-01-03 13:55:41 +01:00
Michael Hamm
7a358b6d8f
replace underscore with dash
2018-01-03 13:54:07 +01:00
Michael Hamm
6b4d248231
Role in Multi-tier Architecture added
2018-01-03 11:14:36 +01:00
Michael Hamm
90afc7121e
communication-interface added
2018-01-03 11:09:06 +01:00
Michael Hamm
2c8ad8d4c0
Distribution Appearance added
2018-01-03 10:59:32 +01:00
Michael Hamm
c60027f001
Containment added
2018-01-03 10:51:34 +01:00
Michael Hamm
1c15c48c3c
Data Capture added
2018-01-03 10:40:19 +01:00
Michael Hamm
4a36d1b78f
Honeypot basic taxonomy
2018-01-03 10:25:36 +01:00
Alexandre Dulaunoy
db95d757a9
Fixed
2017-12-28 17:37:58 +01:00
Alexandre Dulaunoy
2c0657fd68
new taxonomy runtime-packer added
...
Runtime or software packer used to combine compressed data with the decompression code. The decompression code can add additional obfuscations mechanisms including polymorphic-packer or other o
bfuscation techniques. This taxonomy lists all the known or official packer used for legitimate use or for packing malicious binaries.
2017-12-28 17:36:51 +01:00
Alexandre Dulaunoy
ecd5f9b72d
fix: misp tool added (misp2stix) to be used as label
2017-12-19 17:58:35 +01:00
Alexandre Dulaunoy
ad237dd30a
Manifest updated
2017-12-11 12:09:53 +01:00
Alexandre Dulaunoy
3311cba0b6
workflow: review credibility added
2017-12-11 10:27:08 +01:00
Alexandre Dulaunoy
09391fd840
Perms changed
2017-12-10 16:31:06 +01:00
Alexandre Dulaunoy
e1b80f064c
Perms changed
2017-12-10 16:30:03 +01:00
Alexandre Dulaunoy
1baaaa1ee1
add: Workflow support language is a common language to support intelligence analysts to perform their analysis on data and information.
2017-12-10 16:29:20 +01:00
Alexandre Dulaunoy
35f6fa7595
fix: exclusive flag added in documentation generation
2017-12-01 08:54:34 +01:00
Alexandre Dulaunoy
9792a29d8a
add: numerical value is now displayed in the documentation
2017-12-01 07:55:35 +01:00
Alexandre Dulaunoy
57a2852f70
osint version updated
2017-12-01 07:39:05 +01:00
Alexandre Dulaunoy
294bbf28de
fix: clarification of the certainty entry based on feedback from an analyst
...
The probability is now set in the expanded value. The percentage has been removed
to avoid confusion.
2017-12-01 07:37:45 +01:00
Alexandre Dulaunoy
f97d3f0339
add: exclusive property added to express exclusivity at predicate or value level
...
Exclusive property allows to express if a predicate or a value is exclusive.
The exclusive property applies at namespace level (if the predicate is exclusive) or
at predicate level is the value is exclusive.
TLP and fr-classif updated with exclusive property.
The exclusive property can be used by the software (e.g. MISP) to warn users
if (s)he tries to add multiple tags on the same element (attribute, event...).
It's up to the configuration of the software to enforce it or not.
By default, tags are not exclusive.
2017-11-29 07:32:37 +01:00
Alexandre Dulaunoy
a5f77f2ee0
Cannot type Today
2017-11-22 15:11:59 +01:00
Alexandre Dulaunoy
910c2eb96e
numerical values added to admiralty scale based on feedback
2017-11-22 15:04:41 +01:00
Alexandre Dulaunoy
00bd858a1f
update: OSINT now includes a "presentation" type source
2017-11-19 12:13:53 +01:00
Alexandre Dulaunoy
357db7689f
fix: structure of the document + CEF dedication
2017-11-04 14:09:02 +01:00
Alexandre Dulaunoy
943b05d50b
ais-marking added to manifest
2017-11-04 10:36:16 +01:00
Alexandre Dulaunoy
77c7de9539
AIS marking based on The AIS Marking Schema implementation is maintained by the National Cybersecurity and Communication Integration Center (NCCIC) of the U.S. Department of Homeland Security (DHS).
2017-11-04 10:30:12 +01:00
Alexandre Dulaunoy
4391eb56c7
fix: typo fixed in JSON
2017-10-25 16:51:12 +02:00
Alexandre Dulaunoy
c3dc495136
Merge pull request #76 from Delta-Sierra/master
...
update mapping
2017-10-25 16:49:49 +02:00
Deborah Servili
c4be2b5156
update mapping
2017-10-25 16:24:40 +02:00
Alexandre Dulaunoy
1207b123f7
Description added at predicate level too
2017-10-25 15:24:45 +02:00
Alexandre Dulaunoy
b1426ef306
add: description is now added in the asciidoc output for the values
2017-10-25 15:15:05 +02:00
Alexandre Dulaunoy
adfa0e91c0
Merge pull request #75 from michael-hamm/master
...
eCSIRT taxonomy updated to fully support version mkVI of 31 March 201…
2017-10-25 15:06:23 +02:00
Michael Hamm
529736f02f
eCSIRT taxonomy updated to fully support version mkVI of 31 March 2015 and still support IntelMQ taxonomy-type mapping.
2017-10-25 10:50:06 +02:00
Alexandre Dulaunoy
cd51e9148e
add: mapping of taxonomy added in the asciidoc output
2017-10-24 07:49:19 +02:00
Alexandre Dulaunoy
d0e7e5e419
added: numerical value (approximation) added to estimative language namespace
2017-10-08 08:18:44 +02:00
Alexandre Dulaunoy
13a3655bfc
collaborative analysis updated
2017-10-06 07:55:11 +02:00
Alexandre Dulaunoy
b7cb81c5f7
request detection-signature
2017-10-06 07:53:32 +02:00