13bed50071
Rename "automatic" to "unsupervised" after review with @amuehlem
2018-01-12 16:04:38 +01:00
af3ba8ea50
add: New predicate misp:automation-level indicating whether an event or
...
attribute was imported into MISP in a fully automatic fashion, was
reviewed by a human, or directly stems from manual analysis.
/cc @h122015
2018-01-12 15:42:24 +01:00
2014d367c9
chg: Change predicate order to make PyTaxonomies happy
2018-01-04 17:38:08 +01:00
Alexandre Dulaunoy
47eba12569
add: new taxonomy added Christian Seifert, Ian Welch, Peter Komisarczuk, ‘Taxonomy of Honeypots’, Technical Report CS-TR-06/12, VICTORIA UNIVERSITY OF WELLINGTON, School of Mathematical and Computing Sciences, June 2006, http://www.mcs.vuw.ac.nz/comp/Publications/archive/CS-TR-06/CS-TR-06-12.pdf
2018-01-03 14:00:56 +01:00
Alexandre Dulaunoy
23af924390
Merge pull request #79 from michael-hamm/master
...
Honeypot basic taxonomy
2018-01-03 13:55:41 +01:00
7a358b6d8f
replace underscore with dash
2018-01-03 13:54:07 +01:00
6b4d248231
Role in Multi-tier Architecture added
2018-01-03 11:14:36 +01:00
90afc7121e
communication-interface added
2018-01-03 11:09:06 +01:00
2c8ad8d4c0
Distribution Appearance added
2018-01-03 10:59:32 +01:00
c60027f001
Containment added
2018-01-03 10:51:34 +01:00
1c15c48c3c
Data Capture added
2018-01-03 10:40:19 +01:00
4a36d1b78f
Honeypot basic taxonomy
2018-01-03 10:25:36 +01:00
Alexandre Dulaunoy
db95d757a9
Fixed
2017-12-28 17:37:58 +01:00
Alexandre Dulaunoy
2c0657fd68
new taxonomy runtime-packer added
...
Runtime or software packer used to combine compressed data with the decompression code. The decompression code can add additional obfuscations mechanisms including polymorphic-packer or other o
bfuscation techniques. This taxonomy lists all the known or official packer used for legitimate use or for packing malicious binaries.
2017-12-28 17:36:51 +01:00
Alexandre Dulaunoy
ecd5f9b72d
fix: misp tool added (misp2stix) to be used as label
2017-12-19 17:58:35 +01:00
Alexandre Dulaunoy
ad237dd30a
Manifest updated
2017-12-11 12:09:53 +01:00
Alexandre Dulaunoy
3311cba0b6
workflow: review credibility added
2017-12-11 10:27:08 +01:00
Alexandre Dulaunoy
09391fd840
Perms changed
2017-12-10 16:31:06 +01:00
Alexandre Dulaunoy
e1b80f064c
Perms changed
2017-12-10 16:30:03 +01:00
Alexandre Dulaunoy
1baaaa1ee1
add: Workflow support language is a common language to support intelligence analysts to perform their analysis on data and information.
2017-12-10 16:29:20 +01:00
Alexandre Dulaunoy
35f6fa7595
fix: exclusive flag added in documentation generation
2017-12-01 08:54:34 +01:00
Alexandre Dulaunoy
9792a29d8a
add: numerical value is now displayed in the documentation
2017-12-01 07:55:35 +01:00
Alexandre Dulaunoy
57a2852f70
osint version updated
2017-12-01 07:39:05 +01:00
Alexandre Dulaunoy
294bbf28de
fix: clarification of the certainty entry based on feedback from an analyst
...
The probability is now set in the expanded value. The percentage has been removed
to avoid confusion.
2017-12-01 07:37:45 +01:00
Alexandre Dulaunoy
f97d3f0339
add: exclusive property added to express exclusivity at predicate or value level
...
Exclusive property allows to express if a predicate or a value is exclusive.
The exclusive property applies at namespace level (if the predicate is exclusive) or
at predicate level is the value is exclusive.
TLP and fr-classif updated with exclusive property.
The exclusive property can be used by the software (e.g. MISP) to warn users
if (s)he tries to add multiple tags on the same element (attribute, event...).
It's up to the configuration of the software to enforce it or not.
By default, tags are not exclusive.
2017-11-29 07:32:37 +01:00
Alexandre Dulaunoy
a5f77f2ee0
Cannot type Today
2017-11-22 15:11:59 +01:00
Alexandre Dulaunoy
910c2eb96e
numerical values added to admiralty scale based on feedback
2017-11-22 15:04:41 +01:00
Alexandre Dulaunoy
00bd858a1f
update: OSINT now includes a "presentation" type source
2017-11-19 12:13:53 +01:00
Alexandre Dulaunoy
357db7689f
fix: structure of the document + CEF dedication
2017-11-04 14:09:02 +01:00
Alexandre Dulaunoy
943b05d50b
ais-marking added to manifest
2017-11-04 10:36:16 +01:00
Alexandre Dulaunoy
77c7de9539
AIS marking based on The AIS Marking Schema implementation is maintained by the National Cybersecurity and Communication Integration Center (NCCIC) of the U.S. Department of Homeland Security (DHS).
2017-11-04 10:30:12 +01:00
Alexandre Dulaunoy
4391eb56c7
fix: typo fixed in JSON
2017-10-25 16:51:12 +02:00
Alexandre Dulaunoy
c3dc495136
Merge pull request #76 from Delta-Sierra/master
...
update mapping
2017-10-25 16:49:49 +02:00
c4be2b5156
update mapping
2017-10-25 16:24:40 +02:00
Alexandre Dulaunoy
1207b123f7
Description added at predicate level too
2017-10-25 15:24:45 +02:00
Alexandre Dulaunoy
b1426ef306
add: description is now added in the asciidoc output for the values
2017-10-25 15:15:05 +02:00
Alexandre Dulaunoy
adfa0e91c0
Merge pull request #75 from michael-hamm/master
...
eCSIRT taxonomy updated to fully support version mkVI of 31 March 201…
2017-10-25 15:06:23 +02:00
529736f02f
eCSIRT taxonomy updated to fully support version mkVI of 31 March 2015 and still support IntelMQ taxonomy-type mapping.
2017-10-25 10:50:06 +02:00
Alexandre Dulaunoy
cd51e9148e
add: mapping of taxonomy added in the asciidoc output
2017-10-24 07:49:19 +02:00
Alexandre Dulaunoy
d0e7e5e419
added: numerical value (approximation) added to estimative language namespace
2017-10-08 08:18:44 +02:00
Alexandre Dulaunoy
13a3655bfc
collaborative analysis updated
2017-10-06 07:55:11 +02:00
Alexandre Dulaunoy
b7cb81c5f7
request detection-signature
2017-10-06 07:53:32 +02:00
Alexandre Dulaunoy
210779ac70
collaborative-intelligence added
2017-10-02 12:08:03 +02:00
Alexandre Dulaunoy
7ed794574b
collaborative-intelligence namespace added
2017-10-02 12:05:27 +02:00
Alexandre Dulaunoy
c2a2931d32
Merge branch 'master' of github.com:MISP/misp-taxonomies
2017-10-02 11:54:34 +02:00
Alexandre Dulaunoy
e0b1437f4a
Added: Collaborative intelligence support language is a common language to support analysts to
...
perform their analysis to get crowdsourced support when using threat intelligence sharing platform
like MISP. The objective of this language is to advance collaborative analysis and to share earlier than later.
2017-10-02 11:53:33 +02:00
e89715212c
Properly fix manifest.
2017-09-01 00:49:13 +02:00
8d4bc5fc26
Merge branch 'master' of github.com:MISP/misp-taxonomies
2017-08-31 23:16:50 +02:00
718443dc5c
Add schema for mapping
2017-08-31 23:16:36 +02:00
114398741e
Remove duplicate
2017-08-31 16:01:26 +02:00
Daniel Roethlisberger
Alexandre Dulaunoy