Alexandre Dulaunoy
9cff26078e
chg: [misp] ids predicate added following discussion in a MISP user-group.
...
A new predicate has been added to potentially influence IDS flag at
event or attribute level. This is often a desired option to overwrite
existing IDS flag set by the event creator by a local preference.
- `misp:ids="true"` -> set the IDS flag
- `misp:ids="force"` -> force the use of the ids predicate (over the IDS flag set)
- `misp:ids="false"` -> unset the IDS flag
This predicates is not currently used in MISP directly but must be
used for external tools using it. Those tags can be set at local or
global level depending of the use-case.
2019-11-18 10:12:51 +01:00
mokaddem
4004997d0f
chg: [exclusive] Set `exclusive` meta for relevant taxonomies
2019-11-05 10:28:02 +01:00
Raphaël Vinot
51aa26ca38
fix: Typo in rsit, predicates order in misp
2019-07-18 14:31:49 +02:00
Alexandre Dulaunoy
02f8456192
chg: [misp-taxonomies] make numerical values consistent based on Sami feedback
2019-06-25 12:18:27 +02:00
Alexandre Dulaunoy
420322f312
chg: [misp] misp2yara related tags added
2019-04-25 15:28:11 +02:00
Raphaël Vinot
71d9ebb2da
fix: Order of predicate (misp).
2018-02-07 11:05:15 +01:00
Daniel Roethlisberger
2a3ee9ead6
Set exclusive flag on automation-level predicate
2018-01-12 16:55:49 +01:00
Daniel Roethlisberger
4f9f3decfe
Bumping version to 6
2018-01-12 16:35:42 +01:00
Daniel Roethlisberger
a2c8089aa3
Add automation-level to the list of predicate descriptions
2018-01-12 16:19:29 +01:00
Daniel Roethlisberger
13bed50071
Rename "automatic" to "unsupervised" after review with @amuehlem
2018-01-12 16:04:38 +01:00
Daniel Roethlisberger
af3ba8ea50
add: New predicate misp:automation-level indicating whether an event or
...
attribute was imported into MISP in a fully automatic fashion, was
reviewed by a human, or directly stems from manual analysis.
/cc @h122015
2018-01-12 15:42:24 +01:00
Raphaël Vinot
2014d367c9
chg: Change predicate order to make PyTaxonomies happy
2018-01-04 17:38:08 +01:00
Alexandre Dulaunoy
ecd5f9b72d
fix: misp tool added (misp2stix) to be used as label
2017-12-19 17:58:35 +01:00
Raphaël Vinot
c7525b0260
Improve consistency when lising the predicates, remove duplicates
...
* SeekmoSearchAssistant was here twice in ms-caro-malware-full
* Mult was here twice in ms-caro-malware-full
* CouponRuc was here twice in ms-caro-malware-full
* mobile-malware was here twice in enisa
* spear-phishing-attacks was here twice in enisa
2017-07-25 14:57:25 +02:00
Alexandre Dulaunoy
dec71fc0cc
Clean-up
2017-03-02 22:01:44 +01:00
Alexandre Dulaunoy
4bc5cbaab7
Proposal for blocking module expansion
2017-03-02 22:00:56 +01:00
Raphaël Vinot
3099290e4c
JQ all the things
2017-02-13 12:02:51 +01:00
Alexandre Dulaunoy
d5dd9c2b5d
misp:should-not-sync added (to be used with feeds or other local event
...
which are not recommended to be synced)
2016-10-09 15:46:12 +02:00
Alexandre Dulaunoy
180b8e5642
threat-level predicate fixed
2016-09-15 22:54:28 +02:00
Andras Iklody
d7cec10395
Added predicate description
2016-09-15 22:05:43 +02:00
Alexandre Dulaunoy
859b2e1648
low risk added
2016-09-15 22:03:18 +02:00
Alexandre Dulaunoy
b3bb4cfb4c
New threat level created (including CEUS mapping)
2016-09-15 21:57:51 +02:00
Sascha Rommelfangen
df876d75ba
Update, language related
2016-09-12 10:57:12 +02:00
Alexandre Dulaunoy
6d2e4de0b0
Typo fixed
2016-09-10 12:22:01 +02:00
Alexandre Dulaunoy
ec10ec4594
MISP confidence level updated
...
The confidence levels have been changed to 100, 75, 50, 25 and 0.
Undefined confidences are not set to avoid ambiguities.
2016-09-10 12:13:41 +02:00
Alexandre Dulaunoy
6c0b71a760
First experimental confidence level for MISP taxonomy.
2016-09-09 22:21:12 +02:00
Alexandre Dulaunoy
f0dcc0a55d
misp contibutor predicate
2016-06-12 05:20:26 +02:00
Alexandre Dulaunoy
0b33db7bd2
Initial MISP internal taxonomy to infer with MISP behaviors
2016-05-17 18:27:19 +02:00