Commit Graph

29 Commits (2350f8213ba981a24f6e0a28de08f4051a687472)

Author SHA1 Message Date
Raphaël Vinot 105aff8c53 fix: reorder predicates, make pytaxonomies happy 2019-11-28 14:11:08 +01:00
Alexandre Dulaunoy 9cff26078e
chg: [misp] ids predicate added following discussion in a MISP user-group.
A new predicate has been added to potentially influence IDS flag at
event or attribute level. This is often a desired option to overwrite
existing IDS flag set by the event creator by a local preference.

- `misp:ids="true"` -> set the IDS flag
- `misp:ids="force"` -> force the use of the ids predicate (over the IDS flag set)
- `misp:ids="false"` -> unset the IDS flag

This predicates is not currently used in MISP directly but must be
used for external tools using it. Those tags can be set at local or
global level depending of the use-case.
2019-11-18 10:12:51 +01:00
mokaddem 4004997d0f chg: [exclusive] Set `exclusive` meta for relevant taxonomies 2019-11-05 10:28:02 +01:00
Raphaël Vinot 51aa26ca38 fix: Typo in rsit, predicates order in misp 2019-07-18 14:31:49 +02:00
Alexandre Dulaunoy 02f8456192
chg: [misp-taxonomies] make numerical values consistent based on Sami feedback 2019-06-25 12:18:27 +02:00
Alexandre Dulaunoy 420322f312
chg: [misp] misp2yara related tags added 2019-04-25 15:28:11 +02:00
Raphaël Vinot 71d9ebb2da fix: Order of predicate (misp). 2018-02-07 11:05:15 +01:00
Daniel Roethlisberger 2a3ee9ead6 Set exclusive flag on automation-level predicate 2018-01-12 16:55:49 +01:00
Daniel Roethlisberger 4f9f3decfe Bumping version to 6 2018-01-12 16:35:42 +01:00
Daniel Roethlisberger a2c8089aa3 Add automation-level to the list of predicate descriptions 2018-01-12 16:19:29 +01:00
Daniel Roethlisberger 13bed50071 Rename "automatic" to "unsupervised" after review with @amuehlem 2018-01-12 16:04:38 +01:00
Daniel Roethlisberger af3ba8ea50 add: New predicate misp:automation-level indicating whether an event or
attribute was imported into MISP in a fully automatic fashion, was
reviewed by a human, or directly stems from manual analysis.

/cc @h122015
2018-01-12 15:42:24 +01:00
Raphaël Vinot 2014d367c9 chg: Change predicate order to make PyTaxonomies happy 2018-01-04 17:38:08 +01:00
Alexandre Dulaunoy ecd5f9b72d
fix: misp tool added (misp2stix) to be used as label 2017-12-19 17:58:35 +01:00
Raphaël Vinot c7525b0260 Improve consistency when lising the predicates, remove duplicates
* SeekmoSearchAssistant was here twice in ms-caro-malware-full
* Mult was here twice in ms-caro-malware-full
* CouponRuc was here twice in ms-caro-malware-full
* mobile-malware was here twice in enisa
* spear-phishing-attacks was here twice in enisa
2017-07-25 14:57:25 +02:00
Alexandre Dulaunoy dec71fc0cc Clean-up 2017-03-02 22:01:44 +01:00
Alexandre Dulaunoy 4bc5cbaab7 Proposal for blocking module expansion 2017-03-02 22:00:56 +01:00
Raphaël Vinot 3099290e4c JQ all the things 2017-02-13 12:02:51 +01:00
Alexandre Dulaunoy d5dd9c2b5d misp:should-not-sync added (to be used with feeds or other local event
which are not recommended to be synced)
2016-10-09 15:46:12 +02:00
Alexandre Dulaunoy 180b8e5642 threat-level predicate fixed 2016-09-15 22:54:28 +02:00
Andras Iklody d7cec10395 Added predicate description 2016-09-15 22:05:43 +02:00
Alexandre Dulaunoy 859b2e1648 low risk added 2016-09-15 22:03:18 +02:00
Alexandre Dulaunoy b3bb4cfb4c New threat level created (including CEUS mapping) 2016-09-15 21:57:51 +02:00
Sascha Rommelfangen df876d75ba Update, language related 2016-09-12 10:57:12 +02:00
Alexandre Dulaunoy 6d2e4de0b0 Typo fixed 2016-09-10 12:22:01 +02:00
Alexandre Dulaunoy ec10ec4594 MISP confidence level updated
The confidence levels have been changed to 100, 75, 50, 25 and 0.
Undefined confidences are not set to avoid ambiguities.
2016-09-10 12:13:41 +02:00
Alexandre Dulaunoy 6c0b71a760 First experimental confidence level for MISP taxonomy. 2016-09-09 22:21:12 +02:00
Alexandre Dulaunoy f0dcc0a55d misp contibutor predicate 2016-06-12 05:20:26 +02:00
Alexandre Dulaunoy 0b33db7bd2 Initial MISP internal taxonomy to infer with MISP behaviors 2016-05-17 18:27:19 +02:00