[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [cti-comment] Object Type for Username/Password Pair
Farhan Sadique wrote this message on Mon, Apr 09, 2018 at 16:34 -0400: > What would be the appropriate object type to store username/password pairs of ssh brute force attack? > Sample data: > username password > root root123 > admin admin > ... You should use the user-account object. You can use the property account_login for the user name. In STIX 2.0, there isn't yet a field for password, but there is a proposal of using either credential or user_password that is likely to be part of STIX 2.1. see: https://docs.oasis-open.org/cti/stix/v2.0/cs01/part4-cyber-observable-objects/stix-v2.0-cs01-part4-cyber-observable-objects.html#_Toc496716286 -- John-Mark
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]