From c99a8d0fadff96fd336d4a9b20c69e9cf1d4db02 Mon Sep 17 00:00:00 2001 From: Christian Studer Date: Thu, 17 Oct 2024 14:34:25 +0200 Subject: [PATCH 1/2] add: [describeTypes] New attribute type `onion-address` - Follows recent add on MISP --- pymisp/data/describeTypes.json | 14 +++++++++++--- 1 file changed, 11 insertions(+), 3 deletions(-) diff --git a/pymisp/data/describeTypes.json b/pymisp/data/describeTypes.json index 5517bdc4..b126672d 100644 --- a/pymisp/data/describeTypes.json +++ b/pymisp/data/describeTypes.json @@ -573,6 +573,10 @@ "default_category": "Network activity", "to_ids": 1 }, + "onion-address": { + "default_category": "Network activity", + "to_ids": 1 + }, "mac-address": { "default_category": "Network activity", "to_ids": 0 @@ -906,6 +910,7 @@ "ip-dst|port", "ip-src|port", "hostname|port", + "onion-address", "mac-address", "mac-eui-64", "email-dst-display-name", @@ -1098,7 +1103,8 @@ "mobile-application-id", "chrome-extension-id", "whois-registrant-email", - "anonymised" + "anonymised", + "onion-address" ], "Artifacts dropped": [ "md5", @@ -1299,7 +1305,8 @@ "dkim", "dkim-signature", "ssh-fingerprint", - "dom-hash" + "dom-hash", + "onion-address" ], "Payload type": [ "comment", @@ -1384,7 +1391,8 @@ "cortex", "anonymised", "community-id", - "dom-hash" + "dom-hash", + "onion-address" ], "Financial fraud": [ "btc", From abfea79517bcac41452612870695386a48e6fcde Mon Sep 17 00:00:00 2001 From: Christian Studer Date: Thu, 17 Oct 2024 14:36:42 +0200 Subject: [PATCH 2/2] chg: [misp-objects] Bumped latest version with updated templates - Includes updates on the `tor-hiddenservice` template using the new `onion-address` attribute type --- pymisp/data/misp-objects | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pymisp/data/misp-objects b/pymisp/data/misp-objects index 3eaeaa30..83271573 160000 --- a/pymisp/data/misp-objects +++ b/pymisp/data/misp-objects @@ -1 +1 @@ -Subproject commit 3eaeaa30d1f0511740b2d9d2f65ee6a7a9103b32 +Subproject commit 83271573312aebce971a0cf7ffbd04e784a58de3