Skip to content

Commit

Permalink
Added new activity Listen to Network Activity and relax requireme…
Browse files Browse the repository at this point in the history
…nt of `src_endpoint`

This adds support for representing a network endpoint listening
for new network connections on a network.

The listening network endpoint will always be the `dst_endpoint`, and there is no
`src_endpoint` because no network connection has been established yet.
Therefore `src_endpoint` is changed from required to recommended.

Signed-off-by: Mitchell Wasson <[email protected]>
  • Loading branch information
mlmitch committed Jul 19, 2024
1 parent 144c790 commit 9bdb607
Show file tree
Hide file tree
Showing 3 changed files with 6 additions and 1 deletion.
1 change: 1 addition & 0 deletions CHANGELOG.md
Original file line number Diff line number Diff line change
Expand Up @@ -71,6 +71,7 @@ Thankyou! -->
4. Added `ja4_fingerprint_list` to base network event class. #834
5. Added `ticket` to `Incident Finding` event class. #1068
6. Added new activities `Enroll`, `Activate`, `Deactivate`, `Suspend`, and `Resume` to the `Entity Management` class. #1095
7. Added new activity `Listen` to `Network Activity` and relax requirement of `src_endpoint`. #1147
* #### Profiles
* #### Objects
1. Added `ext` to `File` object. #1046
Expand Down
2 changes: 1 addition & 1 deletion events/network/network.json
Original file line number Diff line number Diff line change
Expand Up @@ -41,7 +41,7 @@
"src_endpoint": {
"description": "The initiator (client) of the network connection.",
"group": "primary",
"requirement": "required"
"requirement": "recommended"
},
"tls": {
"group": "context",
Expand Down
4 changes: 4 additions & 0 deletions includes/network/network_activities.json
Original file line number Diff line number Diff line change
Expand Up @@ -27,6 +27,10 @@
"6": {
"caption": "Traffic",
"description": "Network traffic report."
},
"7": {
"caption": "Listen",
"description": "A network endpoint began listening for new network connections."
}
}
}
Expand Down

0 comments on commit 9bdb607

Please sign in to comment.