-
Notifications
You must be signed in to change notification settings - Fork 5
/
object.go
52 lines (47 loc) · 1.39 KB
/
object.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
package object
import "github.com/0xThiebaut/sigmai/lib/sources/misp/lib/attribute"
type Object struct {
UUID string
ID string
Name string
MetaCategory string `json:"meta-category"`
Description string
TemplateUUID string `json:"template_uuid"`
TemplateVersion string `json:"template_version"`
EventID string `json:"event_id"`
Timestamp string
Distribution Distribution
SharingGroupId string `json:"sharing_group_id"`
Comment string
Deleted bool
Attribute []*attribute.Attribute
}
type Distribution string
const (
DistributionOrganisation Distribution = "0"
DistributionCommunity Distribution = "1"
DistributionConnectedCommunities Distribution = "2"
DistributionAllCommunities Distribution = "3"
DistributionSharingGroup Distribution = "4"
)
const (
CommandLine = "command-line"
DomainCrawled = "domain-crawled"
DomainIP = "domain-ip"
ElfSection = "elf-section"
Email = "email"
File = "file"
HttpRequest = "http-request"
Image = "image"
Lnk = "lnk"
Pe = "pe"
PeSection = "pe-section"
Phishing = "phishing"
Process = "process"
RegistryKey = "registry-key"
Script = "script"
ShortenedLink = "shortened-link"
Suricata = "suricata"
Url = "url"
Yara = "yara"
)