From 83f25ea5cafb075474b7379eac0aa612b710e1a6 Mon Sep 17 00:00:00 2001 From: Ernst Widerberg Date: Mon, 11 Apr 2022 16:14:47 +0200 Subject: Update example_data + schema --- example_data_1.json | 51 +++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 51 insertions(+) create mode 100644 example_data_1.json (limited to 'example_data_1.json') diff --git a/example_data_1.json b/example_data_1.json new file mode 100644 index 0000000..3b64472 --- /dev/null +++ b/example_data_1.json @@ -0,0 +1,51 @@ +{ + "document_version": 1, + "ip": "192.0.2.10", + "port": 443, + "whois_description": "SOMENET", + "asn": "AS65001", + "asn_country_code": "SE", + "ptr": "host10.test.soc.sunet.se", + "abuse_mail": "abuse@test.soc.sunet.se", + "domain": "sunet.se", + "timestamp_in_utc": "2021-06-21T14:06 UTC", + "system_name": "Apache 2.1.3", + "description": "The Apache HTTP Server is a free and open-source cross-platform web server software, released under the terms of Apache License 2.0.", + "custom_data": { + "subject_cn": { + "data": "Apache", + "display_name": "Subject Common Name" + }, + "end_of_general_support": { + "data": false, + "display_name": "End of general support", + "description": "Is the software currently supported?" + } + }, + "result": { + "cve_2015_0049": { + "display_name": "CVE-2015-0049", + "vulnerable": false, + "description": "Allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)." + }, + "cve_2015_0050": { + "display_name": "CVE-2015-0050", + "vulnerable": false + }, + "cve_2015_0060": { + "display_name": "CVE-2015-0060", + "vulnerable": true, + "reliability": 2 + }, + "cve_2015_0063": { + "display_name": "CVE-2015-0063", + "vulnerable": false + }, + "insecure_cryptography": { + "display_name": "Insecure cryptography", + "vulnerable": true, + "reliability": 5, + "description": "Uses RSA instead of elliptic curve." + } + } +} -- cgit v1.1 From e28a618db0505d8ba6fdd64a1bb5cddb170090f8 Mon Sep 17 00:00:00 2001 From: Ernst Widerberg Date: Mon, 11 Apr 2022 16:27:22 +0200 Subject: Rename top-level property "system_name" -> "display_name" --- example_data_1.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'example_data_1.json') diff --git a/example_data_1.json b/example_data_1.json index 3b64472..51d6a95 100644 --- a/example_data_1.json +++ b/example_data_1.json @@ -9,7 +9,7 @@ "abuse_mail": "abuse@test.soc.sunet.se", "domain": "sunet.se", "timestamp_in_utc": "2021-06-21T14:06 UTC", - "system_name": "Apache 2.1.3", + "display_name": "Apache 2.1.3", "description": "The Apache HTTP Server is a free and open-source cross-platform web server software, released under the terms of Apache License 2.0.", "custom_data": { "subject_cn": { -- cgit v1.1 From 25ce80ec7dc0d9155962aa96164f01420f2a4cfc Mon Sep 17 00:00:00 2001 From: John Van de Meulebrouck Brendgard Date: Mon, 11 Apr 2022 21:11:29 +0200 Subject: Added investigation_needed and made it required to specify either vulnerable or investigation_needed. --- example_data_1.json | 7 +++++++ 1 file changed, 7 insertions(+) (limited to 'example_data_1.json') diff --git a/example_data_1.json b/example_data_1.json index 51d6a95..61942c4 100644 --- a/example_data_1.json +++ b/example_data_1.json @@ -46,6 +46,13 @@ "vulnerable": true, "reliability": 5, "description": "Uses RSA instead of elliptic curve." + }, + "possible_webshell": { + "display_name": "Webshells (PST)", + "investigation_needed": true, + "reliability": 1, + "description": "A webshell of type PST was confirmed at /test/webshell.php" } + } } -- cgit v1.1 From 951f2d1678b3b3274d81b4ea0c024b384978d9b8 Mon Sep 17 00:00:00 2001 From: John Van de Meulebrouck Brendgard Date: Mon, 11 Apr 2022 21:13:00 +0200 Subject: Removed a redundant newline from example_data_1 --- example_data_1.json | 1 - 1 file changed, 1 deletion(-) (limited to 'example_data_1.json') diff --git a/example_data_1.json b/example_data_1.json index 61942c4..5c9dcae 100644 --- a/example_data_1.json +++ b/example_data_1.json @@ -53,6 +53,5 @@ "reliability": 1, "description": "A webshell of type PST was confirmed at /test/webshell.php" } - } } -- cgit v1.1