Class: OTX::Indicators

Inherits:
Type::Base show all
Defined in:
lib/otx_ruby/types/indicators.rb

Overview

Pulse Indicator of Compromise (IoC) records

Indicator of Compromise types:

IPv4 - An IPv4 address indicating the online location of a server or other computer.
IPv6 - An IPv6 address indicating the online location of a server or other computer.
domain - A domain name for a website or server. Domains encompass a series of hostnames.
hostname - The hostname for a server located within a domain.
email - An email associated with suspicious activity.
URL - Uniform Resource Location (URL) summarizing the online location of a file or resource.
URI - Uniform Resource Indicator (URI) describing the explicit path to a file hosted online.
FileHash-MD5 - A MD5-format hash that summarizes the architecture and content of a file.
FileHash-SHA1 - A SHA-format hash that summarizes the architecture and content of a file.
FileHash-SHA256 - A SHA-256-format hash that summarizes the architecture and content of a file.
FileHash-PEHASH - A PEPHASH-format hash that summarizes the architecture and content of a file.
FileHash-IMPHASH - An IMPHASH-format hash that summarizes the architecture and content of a file.
CIDR - Classless Inter-Domain Routing (CIDR) address, which describes both a server's IP address and the network architecture (routing path) surrounding that server.
FilePath - A unique location in a file system.
Mutex - The name of a mutex resource describing the execution architecture of a file.
CVE - Common Vulnerability and Exposure (CVE) entry describing a software vulnerability that can be exploited to engage in malicious activity.

Instance Attribute Summary collapse

Attributes inherited from Type::Base

#created, #modified

Method Summary

Methods inherited from Type::Base

#initialize

Constructor Details

This class inherits a constructor from OTX::Type::Base

Instance Attribute Details

#_idString

IoC record ID value

Returns:

  • (String)

    the current value of _id


28
29
30
# File 'lib/otx_ruby/types/indicators.rb', line 28

def _id
  @_id
end

#descriptionString

Description associated with the IoC

Returns:

  • (String)

    the current value of description


28
29
30
# File 'lib/otx_ruby/types/indicators.rb', line 28

def description
  @description
end

#indicatorString

Value of the indicator type

Returns:

  • (String)

    the current value of indicator


28
29
30
# File 'lib/otx_ruby/types/indicators.rb', line 28

def indicator
  @indicator
end

#typeString

Type of IoC

Returns:

  • (String)

    the current value of type


28
29
30
# File 'lib/otx_ruby/types/indicators.rb', line 28

def type
  @type
end