#1110 fix json files and schema checks

TheHive-Project · Oct 20, 2022 · 2440f7e · 2440f7e
1 parent e6e2024
commit 2440f7e
Show file tree

Hide file tree

Showing 29 changed files with 33 additions and 34 deletions.
diff --git a/analyzers/Splunk/Splunk_Search_domain_fqdn.json b/analyzers/Splunk/Splunk_Search_domain_fqdn.json
@@ -1,7 +1,7 @@
 {
   "name": "Splunk_Search_Domain_FQDN",
   "version": "3.0",
-  "url": "",
+  "url": "https://www.splunk.com",
   "author": "Unit777, LetMeR00t",
   "license": "AGPL-V3",
   "dataTypeList": ["domain", "fqdn"],

diff --git a/analyzers/Splunk/Splunk_Search_file_filename.json b/analyzers/Splunk/Splunk_Search_file_filename.json
@@ -1,7 +1,7 @@
 {
   "name": "Splunk_Search_File_Filename",
   "version": "3.0",
-  "url": "",
+  "url": "https://www.splunk.com",
   "author": "Unit777, LetMeR00t",
   "license": "AGPL-V3",
   "dataTypeList": ["file", "filename"],

diff --git a/analyzers/Splunk/Splunk_Search_hash.json b/analyzers/Splunk/Splunk_Search_hash.json
@@ -1,7 +1,7 @@
 {
   "name": "Splunk_Search_Hash",
   "version": "3.0",
-  "url": "",
+  "url": "https://www.splunk.com",
   "author": "Unit777, LetMeR00t",
   "license": "AGPL-V3",
   "dataTypeList": ["hash"],

diff --git a/analyzers/Splunk/Splunk_Search_ip.json b/analyzers/Splunk/Splunk_Search_ip.json
@@ -1,7 +1,7 @@
 {
   "name": "Splunk_Search_IP",
   "version": "3.0",
-  "url": "",
+  "url": "https://www.splunk.com",
   "author": "Unit777, LetMeR00t",
   "license": "AGPL-V3",
   "dataTypeList": ["ip"],

diff --git a/analyzers/Splunk/Splunk_Search_mail_email.json b/analyzers/Splunk/Splunk_Search_mail_email.json
@@ -1,7 +1,7 @@
 {
   "name": "Splunk_Search_Mail_Email",
   "version": "3.0",
-  "url": "",
+  "url": "https://www.splunk.com",
   "author": "Unit777, LetMeR00t",
   "license": "AGPL-V3",
   "dataTypeList": ["mail", "email"],

diff --git a/analyzers/Splunk/Splunk_Search_mail_subject.json b/analyzers/Splunk/Splunk_Search_mail_subject.json
@@ -1,7 +1,7 @@
 {
   "name": "Splunk_Search_Mail_Subject",
   "version": "3.0",
-  "url": "",
+  "url": "https://www.splunk.com",
   "author": "Unit777, LetMeR00t",
   "license": "AGPL-V3",
   "dataTypeList": ["mail_subject"],

diff --git a/analyzers/Splunk/Splunk_Search_other.json b/analyzers/Splunk/Splunk_Search_other.json
@@ -1,7 +1,7 @@
 {
   "name": "Splunk_Search_Other",
   "version": "3.0",
-  "url": "",
+  "url": "https://www.splunk.com",
   "author": "Unit777, LetMeR00t",
   "license": "AGPL-V3",
   "dataTypeList": ["other"],

diff --git a/analyzers/Splunk/Splunk_Search_registry.json b/analyzers/Splunk/Splunk_Search_registry.json
@@ -1,7 +1,7 @@
 {
   "name": "Splunk_Search_Registry",
   "version": "3.0",
-  "url": "",
+  "url": "https://www.splunk.com",
   "author": "Unit777, LetMeR00t",
   "license": "AGPL-V3",
   "dataTypeList": ["registry"],

diff --git a/analyzers/Splunk/Splunk_Search_url_uri_path.json b/analyzers/Splunk/Splunk_Search_url_uri_path.json
@@ -1,7 +1,7 @@
 {
   "name": "Splunk_Search_URL_URI_Path",
   "version": "3.0",
-  "url": "",
+  "url": "https://www.splunk.com",
   "author": "Unit777, LetMeR00t",
   "license": "AGPL-V3",
   "dataTypeList": ["url", "uri_path"],

diff --git a/analyzers/Splunk/Splunk_Search_user.json b/analyzers/Splunk/Splunk_Search_user.json
@@ -1,7 +1,7 @@
 {
   "name": "Splunk_Search_User",
   "version": "3.0",
-  "url": "",
+  "url": "https://www.splunk.com",
   "author": "LetMeR00t",
   "license": "AGPL-V3",
   "dataTypeList": ["other"],

diff --git a/analyzers/Splunk/Splunk_Search_user_agent.json b/analyzers/Splunk/Splunk_Search_user_agent.json
@@ -1,7 +1,7 @@
 {
   "name": "Splunk_Search_User_Agent",
   "version": "3.0",
-  "url": "",
+  "url": "https://www.splunk.com",
   "author": "Unit777, LetMeR00t",
   "license": "AGPL-V3",
   "dataTypeList": ["user-agent"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_block_external_IP_address.json b/responders/PaloAltoNGFW/PaloAltoNGFW_block_external_IP_address.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_block_external_IP_address",
   "version": "2.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Block external IP address",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_block_external_domain.json b/responders/PaloAltoNGFW/PaloAltoNGFW_block_external_domain.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_block_external_domain",
   "version": "2.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Block external domain",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_block_external_user.json b/responders/PaloAltoNGFW/PaloAltoNGFW_block_external_user.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_block_external_user",
   "version": "1.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Block external user",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_block_internal_IP_address.json b/responders/PaloAltoNGFW/PaloAltoNGFW_block_internal_IP_address.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_block_internal_IP_address",
   "version": "2.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Block internal IP address",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_block_internal_domain.json b/responders/PaloAltoNGFW/PaloAltoNGFW_block_internal_domain.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_block_internal_domain",
   "version": "2.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Block internal domain",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_block_internal_user.json b/responders/PaloAltoNGFW/PaloAltoNGFW_block_internal_user.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_block_internal_user",
   "version": "1.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Block internal user",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_block_port_for_external_communication.json b/responders/PaloAltoNGFW/PaloAltoNGFW_block_port_for_external_communication.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_block_port_for_external_communication",
   "version": "2.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Block external port communication",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_block_port_for_internal_communication.json b/responders/PaloAltoNGFW/PaloAltoNGFW_block_port_for_internal_communication.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_block_port_for_internal_communication",
   "version": "2.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Block internal port communication",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_external_IP_address.json b/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_external_IP_address.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_unblock_external_IP_address",
   "version": "1.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Unblock external ip",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_external_domain.json b/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_external_domain.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_unblock_external_domain",
   "version": "1.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Unblock external domain",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_external_user.json b/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_external_user.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_unblock_external_user",
   "version": "1.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Unblock external user",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_internal_IP_address.json b/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_internal_IP_address.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_unblock_internal_IP_address",
   "version": "1.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Unblock internal ip",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_internal_domain.json b/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_internal_domain.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_unblock_internal_domain",
   "version": "1.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Unblock internal domain",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_internal_user.json b/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_internal_user.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_unblock_internal_user",
   "version": "1.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Unblock internal user",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_port_for_external_communication.json b/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_port_for_external_communication.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_unblock_port_for_external_communication",
   "version": "1.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Unblock external port communication",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_port_for_internal_communication.json b/responders/PaloAltoNGFW/PaloAltoNGFW_unblock_port_for_internal_communication.json
@@ -2,7 +2,7 @@
   "name": "PaloAltoNGFW_unblock_port_for_internal_communication",
   "version": "1.0.0",
   "author": "Maxim Konakin, OSCD Initiative",
-  "url": "",
+  "url": "https://www.paloaltonetworks.com/",
   "license": "AGPL-V3",
   "description": "Unblock internal port communication",
   "dataTypeList": ["thehive:alert","thehive:case_artifact","thehive:case"],

diff --git a/responders/SentinelOne/SentinelOne_HashBlacklister.json b/responders/SentinelOne/SentinelOne_HashBlacklister.json
@@ -40,7 +40,8 @@
             "description": "OS type, must be one of the following: macos, windows, linux, or windows_legacy.  Default is windows",
             "type": "string",
             "multi": false,
-            "default": "windows"
+            "default": "windows",
+            "required": false
         }
     ]
 }
diff --git a/utils/flavors/flavor_schema.json b/utils/flavors/flavor_schema.json
@@ -2,7 +2,8 @@
     "type": "object",
     "properties": {
         "name": {
-            "type": "string"
+            "type": "string",
+            "pattern": "^[^\\s]*$"
         },
         "version": {
             "type": "string"
@@ -83,9 +84,7 @@
         "description",
         "dataTypeList",
         "command",
-        "baseConfig",
-        "registration_required",
-        "subscription_required"
+        "baseConfig"
     ],
     "definition": {
         "configurationItem": {
@@ -124,8 +123,7 @@
                 }
             },
             "required": [
-                "path",
-                "caption"
+                "path"
             ]
         }
     }