Pipeline: Release 4.4.0.stable88 documentation

CybercentreCanada · Dec 20, 2023 · 5d15267 · 5d15267
1 parent 767f891
commit 5d15267
Show file tree

Hide file tree

Showing 3 changed files with 5 additions and 3 deletions.
diff --git a/docs/odm/models/ontology/ontology.md b/docs/odm/models/ontology/ontology.md
@@ -5,7 +5,7 @@
 | Field | Type | Description | Required | Default |
 | :--- | :--- | :--- | :--- | :--- |
 | odm_type | Text | Type of ODM Model | <div style="width:100px">:material-checkbox-marked-outline: Yes</div> | `Assemblyline Result Ontology` |
-| odm_version | Text | Version of ODM Model | <div style="width:100px">:material-checkbox-marked-outline: Yes</div> | `1.6` |
+| odm_version | Text | Version of ODM Model | <div style="width:100px">:material-checkbox-marked-outline: Yes</div> | `1.7` |
 | classification | ClassificationString | Classification of Ontological Record | <div style="width:100px">:material-checkbox-marked-outline: Yes</div> | `None` |
 | file | [File](/assemblyline4_docs/odm/models/ontology/ontology/#file) | Descriptors about file being analyzed | <div style="width:100px">:material-checkbox-marked-outline: Yes</div> | `None` |
 | service | [Service](/assemblyline4_docs/odm/models/ontology/ontology/#service) | Information about Service | <div style="width:100px">:material-checkbox-marked-outline: Yes</div> | `None` |

diff --git a/docs/odm/models/ontology/results/malware_config.md b/docs/odm/models/ontology/results/malware_config.md
@@ -1,6 +1,6 @@
 [comment]: # (AUTOGENERATED MARKDOWN CONTENT. UPDATES TO ODM DOCUMENTATION SHOULD BE DONE THROUGH ASSEMBLYLINE-BASE REPO!)
 # MalwareConfig
-> None
+> Extracted Malware Configuration
 
 | Field | Type | Description | Required | Default |
 | :--- | :--- | :--- | :--- | :--- |
@@ -88,6 +88,8 @@
 | :--- | :--- | :--- | :--- | :--- |
 | ip | IP | IP of DNS server | <div style="width:100px">:material-minus-box-outline: Optional</div> | `None` |
 | port | Integer | Port of DNS server | <div style="width:100px">:material-minus-box-outline: Optional</div> | `None` |
+| hostname | Text | Hostname used in query | <div style="width:100px">:material-minus-box-outline: Optional</div> | `None` |
+| record_type | Enum | Type of DNS record<br>Values:<br>`"A", "AAAA", "AFSDB", "APL", "CAA", "CDNSKEY", "CDS", "CERT", "CNAME", "CSYNC", "DHCID", "DLV", "DNAME", "DNSKEY", "DS", "EUI48", "EUI64", "HINFO", "HIP", "HTTPS", "IPSECKEY", "KEY", "KX", "LOC", "MX", "NAPTR", "NS", "NSEC", "NSEC3", "NSEC3PARAM", "OPENPGPKEY", "PTR", "RP", "RRSIG", "SIG", "SMIMEA", "SOA", "SRV", "SSHFP", "SVCB", "TA", "TKEY", "TLSA", "TSIG", "TXT", "URI", "ZONEMD"` | <div style="width:100px">:material-minus-box-outline: Optional</div> | `None` |
 | usage | Enum | Purpose of DNS connection<br>Values:<br>`"c2", "decoy", "download", "other", "propagate", "ransom", "tunnel", "upload"` | <div style="width:100px">:material-minus-box-outline: Optional</div> | `None` |
 
 

diff --git a/docs/odm/models/ontology/results/network.md b/docs/odm/models/ontology/results/network.md
@@ -25,7 +25,7 @@
 | :--- | :--- | :--- | :--- | :--- |
 | domain | Domain | The domain requested | <div style="width:100px">:material-checkbox-marked-outline: Yes</div> | `None` |
 | resolved_ips | List [IP] | A list of IPs that were resolved | <div style="width:100px">:material-checkbox-marked-outline: Yes</div> | `None` |
-| lookup_type | Enum | The type of DNS request<br>Values:<br>`"A", "AAAA", "AFSDB", "ALIAS", "APL", "CAA", "CDNSKEY", "CDS", "CERT", "CNAME", "CSYNC", "DHCID", "DLV", "DNAME", "DNSKEY", "DS", "EUI48", "EUI64", "HINFO", "HIP", "HTTPS", "IPSECKEY", "KEY", "KX", "LOC", "MX", "NAPTR", "NS", "NSEC", "NSEC3", "NSEC3PARAM", "OPENPGPKEY", "PTR", "RP", "RRSIG", "SIG", "SMIMEA", "SOA", "SRV", "SSHFP", "SVCB", "TA", "TKEY", "TLSA", "TSIG", "TXT", "URI", "ZONEMD"` | <div style="width:100px">:material-checkbox-marked-outline: Yes</div> | `None` |
+| lookup_type | Enum | The type of DNS request<br>Values:<br>`"A", "AAAA", "AFSDB", "APL", "CAA", "CDNSKEY", "CDS", "CERT", "CNAME", "CSYNC", "DHCID", "DLV", "DNAME", "DNSKEY", "DS", "EUI48", "EUI64", "HINFO", "HIP", "HTTPS", "IPSECKEY", "KEY", "KX", "LOC", "MX", "NAPTR", "NS", "NSEC", "NSEC3", "NSEC3PARAM", "OPENPGPKEY", "PTR", "RP", "RRSIG", "SIG", "SMIMEA", "SOA", "SRV", "SSHFP", "SVCB", "TA", "TKEY", "TLSA", "TSIG", "TXT", "URI", "ZONEMD"` | <div style="width:100px">:material-checkbox-marked-outline: Yes</div> | `None` |
 
 
 [comment]: # (AUTOGENERATED MARKDOWN CONTENT. UPDATES TO ODM DOCUMENTATION SHOULD BE DONE THROUGH ASSEMBLYLINE-BASE REPO!)