-
Notifications
You must be signed in to change notification settings - Fork 131
Expand file tree
/
Copy pathdefinition.json
More file actions
110 lines (110 loc) · 3.1 KB
/
definition.json
File metadata and controls
110 lines (110 loc) · 3.1 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
{
"attributes": {
"DHCP-IP-address": {
"description": "DHCP service - IP address",
"misp-attribute": "ip-dst",
"ui-priority": 0
},
"DHCP-domain": {
"description": "Name of the DHCP domain service",
"misp-attribute": "text",
"ui-priority": 0
},
"DHCP-name-server": {
"description": "DHCP Name server - IP address.",
"misp-attribute": "ip-dst",
"ui-priority": 0
},
"DHCP-server": {
"description": "DHCP server - IP address.",
"misp-attribute": "ip-dst",
"ui-priority": 0
},
"DHCP-subnet-mask": {
"description": "DHCP subnet mask - IP address.",
"misp-attribute": "ip-dst",
"ui-priority": 0
},
"TCPIP-key": {
"description": "TCPIP key",
"misp-attribute": "text",
"ui-priority": 0
},
"TCPIP-key-last-write-time": {
"description": "Datetime when the key was last updated.",
"disable_correlation": true,
"misp-attribute": "datetime",
"ui-priority": 0
},
"additional-comments": {
"description": "Comments.",
"disable_correlation": true,
"misp-attribute": "text",
"ui-priority": 0
},
"interface-GUID": {
"description": "GUID value assigned to the interface.",
"disable_correlation": true,
"misp-attribute": "text",
"ui-priority": 0
},
"interface-IPcheckingEnabled": {
"description": "",
"disable_correlation": true,
"misp-attribute": "boolean",
"sane_default": [
"True",
"False"
],
"ui-priority": 0
},
"interface-MediaSubType": {
"description": "",
"disable_correlation": true,
"misp-attribute": "text",
"ui-priority": 0
},
"interface-PnpInstanceID": {
"description": "Plug and Play instance ID assigned to the interface.",
"disable_correlation": true,
"misp-attribute": "text",
"ui-priority": 0
},
"interface-last-write-time": {
"description": "Last date and time when the interface key was updated.",
"disable_correlation": true,
"misp-attribute": "datetime",
"ui-priority": 0
},
"interface-name": {
"description": "Name of the interface.",
"misp-attribute": "text",
"ui-priority": 0
},
"network-key": {
"description": "Registry key assigned to the network",
"misp-attribute": "text",
"ui-priority": 0
},
"network-key-last-write-time": {
"description": "Date and time when the network key was last updated.",
"disable_correlation": true,
"misp-attribute": "datetime",
"ui-priority": 0
},
"network-key-path": {
"description": "Path of the key where the information is retrieved from.",
"disable_correlation": true,
"misp-attribute": "text",
"ui-priority": 0
}
},
"description": "Regripper object template designed to gather network information from the system-hive.",
"meta-category": "misc",
"name": "regripper-system-hive-network-information",
"required": [
"network-key"
],
"uuid": "a5a3ba3a-ba2e-42a4-be45-b36809ae56f0",
"version": 2
}