dfirence

icon location USA

Results 33 comments of dfirence

Documentation: Static Screenshots

![image](https://user-images.githubusercontent.com/11415591/80029869-682dcb00-84b5-11ea-8552-315f0f278fb5.png) **Access Link** ``` ![image](https://user-images.githubusercontent.com/11415591/80029874-6c59e880-84b5-11ea-846e-5957769e4899.png) ``` ![image](https://user-images.githubusercontent.com/11415591/80030440-30735300-84b6-11ea-8b8f-93990f97fc99.png) **Access Link** ``` ![image](https://user-images.githubusercontent.com/11415591/80030495-41bc5f80-84b6-11ea-981f-43b1bb6922da.png) ```

Documentation: Static Screenshots

![image](https://user-images.githubusercontent.com/11415591/80036267-65d06e80-84bf-11ea-97b3-4677faefa532.png) **Access Link** ``` ![image](https://user-images.githubusercontent.com/11415591/80036272-69fc8c00-84bf-11ea-8306-56225fc4ea33.png) ```

Documentation: Static Screenshots

![image](https://user-images.githubusercontent.com/11415591/80038889-8222da00-84c4-11ea-9a5a-c20530577eef.png) **Access Link** ``` ![image](https://user-images.githubusercontent.com/11415591/80038899-864ef780-84c4-11ea-975d-df87d9348c8d.png) ```

Documentation: Static Screenshots

![image](https://user-images.githubusercontent.com/11415591/80040586-6588a100-84c8-11ea-87e4-9ad7ae153117.png) **Access Link** ``` ![image](https://user-images.githubusercontent.com/11415591/80040594-6ae5eb80-84c8-11ea-9b62-158f51557c47.png) ```

Documentation: Static Screenshots

![image](https://user-images.githubusercontent.com/11415591/80042018-f14ffc80-84cb-11ea-861c-d427da0bd484.png) **Access Link** ``` ![image](https://user-images.githubusercontent.com/11415591/80042026-f745dd80-84cb-11ea-9830-2720a234ba60.png) ```

[ Question ] SSE Support

Any updates ?

Network Interface object should have an array of IPs, not just singleton

@mlmitch @davemcatcisco @sfriedfertig I just hit the same use case and more, `nicteaming`, I don’t see how array of interfaces supports my use case for `nicteaming`. Should I use this...

[ Schema Extension ] FileObject: Extend File Type with “Executable”

@antchan2 - Just changed to `MACHO`, thanks for catching that. @mlmitch I want to focus the ask on extending the Enum to `type_id = 8` and corresponding `type_name = Executable`....

[ Schema Extension ] FileObject: Extend File Type with “Executable”

@mlmitch It is an executable, whether it be an `.so`, `dll`, `rlib`, or object file, etc.

[ Schema Extension ] FileObject: Extend File Type with “Executable”

@antchan2 @mlmitch POSIX or not, I don’t believe OCSF aims at describing OS internal structures (😀), I thought OCSF is a schema to express the cyber vocabulary. There’s no such...