MISP
/
misp-website
mirror of https://github.com/MISP/misp-website
2
0
Fork 0
Code Issues Releases Wiki Activity

chg: [objects] published

pull/104/head
Alexandre Dulaunoy 2024-06-26 18:42:44 +02:00
parent d3efa2098a
commit d8c5657c8d
No known key found for this signature in database
GPG Key ID: 09E2CD4944E6CBCD
2 changed files with 57022 additions and 48701 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

400
static/objects.html
View File

@ -4,7 +4,7 @@
<meta charset="UTF-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta name="generator" content="Asciidoctor 2.0.21">
<meta name="generator" content="Asciidoctor 2.0.23">
<title>MISP Objects</title>
<link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Open+Sans:300,300italic,400,400italic,600,600italic%7CNoto+Serif:400,400italic,700,700italic%7CDroid+Sans+Mono:400,700">
<style>
@ -505,6 +505,7 @@ body.book #toc,body.book #preamble,body.book h1.sect0,body.book .sect1>h2{page-b
<li><a href="#_cytomic_orion_machine">cytomic-orion-machine</a></li>
<li><a href="#_dark_pattern_item">dark-pattern-item</a></li>
<li><a href="#_ddos">ddos</a></li>
<li><a href="#_ddos_claim">ddos-claim</a></li>
<li><a href="#_device">device</a></li>
<li><a href="#_diameter_attack">diameter-attack</a></li>
<li><a href="#_diamond_event">diamond-event</a></li>
@ -625,6 +626,7 @@ body.book #toc,body.book #preamble,body.book h1.sect0,body.book .sect1>h2{page-b
<li><a href="#_irc">irc</a></li>
<li><a href="#_ja3">ja3</a></li>
<li><a href="#_ja3s">ja3s</a></li>
<li><a href="#_ja4_plus">ja4-plus</a></li>
<li><a href="#_jarm">jarm</a></li>
<li><a href="#_keybase_account">keybase-account</a></li>
<li><a href="#_language_content">language-content</a></li>
@ -671,6 +673,7 @@ body.book #toc,body.book #preamble,body.book h1.sect0,body.book .sect1>h2{page-b
<li><a href="#_phishing">phishing</a></li>
<li><a href="#_phishing_kit">phishing-kit</a></li>
<li><a href="#_phone">phone</a></li>
<li><a href="#_phone_number">phone-number</a></li>
<li><a href="#_physical_impact">physical-impact</a></li>
<li><a href="#_postal_address">postal-address</a></li>
<li><a href="#_probabilistic_data_structure">probabilistic-data-structure</a></li>
@ -9533,9 +9536,9 @@ cs-beacon-config is a MISP object available in JSON format at <a href="https://g
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">encoded-data</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">attachment</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Encoded payload data in Base64</p>
<p>Encoded payload data in Base64 as file attachment</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
@ -10411,6 +10414,111 @@ ddos is a MISP object available in JSON format at <a href="https://github.com/MI
</div>
</div>
<div class="sect1">
<h2 id="_ddos_claim"><a class="anchor" href="#_ddos_claim"></a><a class="link" href="#_ddos_claim">ddos-claim</a></h2>
<div class="sectionbody">
<div class="paragraph">
<p>DDoS-claim object describes a current claim of DDoS activity.</p>
</div>
<div class="admonitionblock note">
<table>
<tr>
<td class="icon">
<i class="fa icon-note" title="Note"></i>
</td>
<td class="content">
ddos-claim is a MISP object available in JSON format at <a href="https://github.com/MISP/misp-objects/blob/main/objects/ddos-claim/definition.json"><strong>this location</strong></a> The JSON format can be freely reused in your application or automatically enabled in <a href="https://www.github.com/MISP/MISP">MISP</a>.
</td>
</tr>
</table>
</div>
<table class="tableblock frame-all grid-all stretch">
<colgroup>
<col style="width: 20%;">
<col style="width: 20%;">
<col style="width: 20%;">
<col style="width: 20%;">
<col style="width: 20%;">
</colgroup>
<thead>
<tr>
<th class="tableblock halign-left valign-top">Object attribute</th>
<th class="tableblock halign-left valign-top">MISP attribute type</th>
<th class="tableblock halign-left valign-top">Description</th>
<th class="tableblock halign-left valign-top">Disable correlation</th>
<th class="tableblock halign-left valign-top">Multiple</th>
</tr>
</thead>
<tbody>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">claim-validity</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Validity of the claim. Valid means, a trusted entity having the technical capabilities to perform analysis confirmed the detection of DDoS activities. ['Unknown', 'Valid', 'Invalid']</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">proof</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>The claim in text format.</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">proof-screenshot</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">attachment</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Screenshot of the claim.</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">reference</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">link</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Reference to the DDoS claim.</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">target</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Target of the DDoS claim.</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
</tr>
</tbody>
</table>
</div>
</div>
<div class="sect1">
<h2 id="_device"><a class="anchor" href="#_device"></a><a class="link" href="#_device">device</a></h2>
<div class="sectionbody">
<div class="paragraph">
@ -48317,6 +48425,98 @@ ja3s is a MISP object available in JSON format at <a href="https://github.com/MI
</div>
</div>
<div class="sect1">
<h2 id="_ja4_plus"><a class="anchor" href="#_ja4_plus"></a><a class="link" href="#_ja4_plus">ja4-plus</a></h2>
<div class="sectionbody">
<div class="paragraph">
<p>JA4 is a technique for creating network fingerprints that are easy to produce and can be easily shared for threat intelligence. <a href="https://github.com/FoxIO-LLC/ja4/blob/main/technical_details/README.md" class="bare">https://github.com/FoxIO-LLC/ja4/blob/main/technical_details/README.md</a>.</p>
</div>
<div class="admonitionblock note">
<table>
<tr>
<td class="icon">
<i class="fa icon-note" title="Note"></i>
</td>
<td class="content">
ja4-plus is a MISP object available in JSON format at <a href="https://github.com/MISP/misp-objects/blob/main/objects/ja4-plus/definition.json"><strong>this location</strong></a> The JSON format can be freely reused in your application or automatically enabled in <a href="https://www.github.com/MISP/MISP">MISP</a>.
</td>
</tr>
</table>
</div>
<table class="tableblock frame-all grid-all stretch">
<colgroup>
<col style="width: 20%;">
<col style="width: 20%;">
<col style="width: 20%;">
<col style="width: 20%;">
<col style="width: 20%;">
</colgroup>
<thead>
<tr>
<th class="tableblock halign-left valign-top">Object attribute</th>
<th class="tableblock halign-left valign-top">MISP attribute type</th>
<th class="tableblock halign-left valign-top">Description</th>
<th class="tableblock halign-left valign-top">Disable correlation</th>
<th class="tableblock halign-left valign-top">Multiple</th>
</tr>
</thead>
<tbody>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">description</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Description of the JA4+ fingerprint including scope, collection or specific notes which could help an analyst to reproduce the calculation.</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">ip-src</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">ip-src</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>IP address related to this JA4+ fingerprint.</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">ja4-fingerprint</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>A JA4+ fingerprint as defined by the JA4+ standard in textual format.</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">ja4-type</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>One of the JA4+ type expressed as short name. ['JA4', 'JA4S', 'JA4H', 'JA4L', 'JA4X', 'JA4SSH', 'JA4T', 'JA4TS', 'JA4TScan']</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
</tr>
</tbody>
</table>
</div>
</div>
<div class="sect1">
<h2 id="_jarm"><a class="anchor" href="#_jarm"></a><a class="link" href="#_jarm">jarm</a></h2>
<div class="sectionbody">
<div class="paragraph">
@ -53877,6 +54077,19 @@ organization is a MISP object available in JSON format at <a href="https://githu
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">misp-uuid</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>MISP UUID of the organization</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">name</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
@ -53932,7 +54145,7 @@ organization is a MISP object available in JSON format at <a href="https://githu
<td class="tableblock halign-left valign-top"><p class="tableblock">sector</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Describing the organization&#8217;s sector of activity. ['agriculture', 'aerospace', 'automotive', 'chemical', 'commercial', 'communication', 'construction', 'defense', 'education', 'energy', 'entertainment', 'financial-services', 'government', 'government emergency-services', 'government government-local', 'government-national', 'government-public-services', 'government-regional', 'healthcare', 'hospitality-leasure', 'infrastructure', 'infrastructure dams', 'infrastructure nuclear', 'infrastructure water', 'insurance', 'manufacturing', 'mining', 'non-profit', 'pharmaceuticals', 'retail', 'technology', 'telecommunication', 'transportation', 'utilities']</p>
<p>Describing the organization&#8217;s sector of activity. ['agriculture', 'aerospace', 'automotive', 'chemical', 'commercial', 'communication', 'construction', 'defense', 'education', 'energy', 'entertainment', 'financial-services', 'government', 'government emergency-services', 'government government-local', 'government-national', 'government-public-services', 'government-regional', 'healthcare', 'hospitality-leasure', 'infrastructure', 'infrastructure dams', 'infrastructure nuclear', 'infrastructure water', 'insurance', 'manufacturing', 'mining', 'non-profit', 'pharmaceuticals', 'private', 'retail', 'technology', 'telecommunication', 'transportation', 'utilities']</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
@ -58094,6 +58307,19 @@ phishing is a MISP object available in JSON format at <a href="https://github.co
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">ip</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">ip-dst</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>IP address of the phishing website</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">online</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
@ -58659,6 +58885,124 @@ phone is a MISP object available in JSON format at <a href="https://github.com/M
</div>
</div>
<div class="sect1">
<h2 id="_phone_number"><a class="anchor" href="#_phone_number"></a><a class="link" href="#_phone_number">phone-number</a></h2>
<div class="sectionbody">
<div class="paragraph">
<p>Phone number based on the E.164 international public telecommunication numbering plan.</p>
</div>
<div class="admonitionblock note">
<table>
<tr>
<td class="icon">
<i class="fa icon-note" title="Note"></i>
</td>
<td class="content">
phone-number is a MISP object available in JSON format at <a href="https://github.com/MISP/misp-objects/blob/main/objects/phone-number/definition.json"><strong>this location</strong></a> The JSON format can be freely reused in your application or automatically enabled in <a href="https://www.github.com/MISP/MISP">MISP</a>.
</td>
</tr>
</table>
</div>
<table class="tableblock frame-all grid-all stretch">
<colgroup>
<col style="width: 20%;">
<col style="width: 20%;">
<col style="width: 20%;">
<col style="width: 20%;">
<col style="width: 20%;">
</colgroup>
<thead>
<tr>
<th class="tableblock halign-left valign-top">Object attribute</th>
<th class="tableblock halign-left valign-top">MISP attribute type</th>
<th class="tableblock halign-left valign-top">Description</th>
<th class="tableblock halign-left valign-top">Disable correlation</th>
<th class="tableblock halign-left valign-top">Multiple</th>
</tr>
</thead>
<tbody>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">country-code</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Country code in text format (e.g., US)</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">country-code-numeric</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Country code as per the E.164 numbering plan (e.g., +1)</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">national-destination-code</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>National destination code as per the E.164 numbering plan (e.g., 415)</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">phone-number</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">phone-number</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Phone number in E.164 format (e.g., +14155552671)</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">subscriber-number</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Subscriber number as per the E.164 numbering plan (e.g., 5552671)</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Description or additional information about the phone number.</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
</tr>
</tbody>
</table>
</div>
</div>
<div class="sect1">
<h2 id="_physical_impact"><a class="anchor" href="#_physical_impact"></a><a class="link" href="#_physical_impact">physical-impact</a></h2>
<div class="sectionbody">
<div class="paragraph">
@ -60891,7 +61235,7 @@ ransomware-group-post is a MISP object available in JSON format at <a href="http
<td class="tableblock halign-left valign-top"><p class="tableblock">actor-geo-stats-30d</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>actor-geo-stats-30d</p>
<p>Count of how many other victims were publicly leaked by the same ransomware actor in the country of the victim during the past 30 days</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
@ -60904,7 +61248,7 @@ ransomware-group-post is a MISP object available in JSON format at <a href="http
<td class="tableblock halign-left valign-top"><p class="tableblock">actor-total-stats-30d</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>actor-total-stats-30d</p>
<p>Count of how many other victims were publicly leaked by the same ransomware actor worldwide during the past 30 days</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
@ -61034,7 +61378,7 @@ ransomware-group-post is a MISP object available in JSON format at <a href="http
<td class="tableblock halign-left valign-top"><p class="tableblock">severity</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">text</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Severity of the post mentioned.</p>
<p>Severity of the post mentioned. ['critical', 'high', 'medium', 'low', 'info']</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
@ -65226,6 +65570,19 @@ research-scanner is a MISP object available in JSON format at <a href="https://g
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">scanning_host</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">hostname</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p>Scanning host used by project</p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-minus"></i></span></p>
</div></div></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
<p><span class="icon"><i class="fa fa-check"></i></span></p>
</div></div></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">scanning_ip</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">ip-src</p></td>
<td class="tableblock halign-left valign-top"><div class="content"><div class="paragraph">
@ -80095,7 +80452,12 @@ youtube-video is a MISP object available in JSON format at <a href="https://gith
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">initiates</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">Represents the semantic link of a communication initiating an event.</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">['alfred']</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">['alfred', 'misp']</p></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">initiated-by</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">The source object initiated the target object.</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">['misp']</p></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">instance-of</p></td>
@ -80767,6 +81129,26 @@ youtube-video is a MISP object available in JSON format at <a href="https://gith
<td class="tableblock halign-left valign-top"><p class="tableblock">The source object is injected by the target object.</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">['misp']</p></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">interviews</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">The source object interviews the target object.</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">['misp']</p></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">is-interviewed-by</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">The source object is interviewed by the target object.</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">['misp']</p></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">summarizes</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">The source object summarizes the target object.</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">['misp']</p></td>
</tr>
<tr>
<td class="tableblock halign-left valign-top"><p class="tableblock">summarized-by</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">The source object is summarized by the target object.</p></td>
<td class="tableblock halign-left valign-top"><p class="tableblock">['misp']</p></td>
</tr>
</tbody>
</table>
</div>
@ -80774,7 +81156,7 @@ youtube-video is a MISP object available in JSON format at <a href="https://gith
</div>
<div id="footer">
<div id="footer-text">
Last updated 2024-04-24 16:30:01 +0200
Last updated 2024-06-26 18:17:11 +0200
</div>
</div>
</body>

105323
static/objects.pdf
View File

File diff suppressed because it is too large Load Diff