Skip to content
This repository has been archived by the owner on May 14, 2024. It is now read-only.

Add tags #13

Open
W3ndige opened this issue Apr 12, 2021 · 0 comments
Open

Add tags #13

W3ndige opened this issue Apr 12, 2021 · 0 comments
Assignees
@W3ndige
Labels
aurora Issues related to aurora enhancement New feature or request priority:high Priority: High

Comments

@W3ndige
Copy link
Owner

W3ndige commented Apr 12, 2021
edited
Loading

By tagging different entities, user will be able to extend the analysis with the manual input usually not possible to gather by the system. In future, such tagging could allow for better similarity predictions, partially assisted by the user/analyst. Example of such information can be:

  • Malware family.
  • APT group name.
  • String origin (for example string discovered in samples from certain APT group)
  • Minhash origin (for example function used in legit binary, etc)

Proposed tags:

  • Tagging malware samples will allow user to input his own information about the sample such as family, group, etc.
  • Tagging strings.
  • Tagging minhash.

Optional:

  • Tagging relations.

For function similarity, see #5.
@W3ndige W3ndige added enhancement New feature or request priority:high Priority: High labels Apr 12, 2021
@W3ndige W3ndige self-assigned this Apr 12, 2021
@W3ndige W3ndige added the aurora Issues related to aurora label Apr 12, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@W3ndige W3ndige

Labels
aurora Issues related to aurora enhancement New feature or request priority:high Priority: High
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@W3ndige