Interface TheHiveNodeParameters

Source

interface TheHiveNodeParameters {
    additionalFields?:
        | {
            caseTemplate?: string;
            customFieldsJson?: string;
            customFieldsUi?: {
                customFields: { field?: string; value?: string }[];
            };
        }
        | { caseTemplate?: string };
    analyzers?: unknown[];
    artifactUi?: {
        artifactValues: {
            binaryProperty?: string;
            data?: string;
            dataType?: string;
            message?: string;
            tags?: string;
        }[];
    };
    binaryProperty?: string;
    caseId?: string;
    data?: string;
    dataType?: string;
    date?: string;
    description?: string;
    filters?: | {
        customFieldsUi?: {
            customFields: { field?: string; value?: string }[];
        };
        description?: string;
        follow?: boolean;
        severity?: 1
        | 3
        | 2;
        tags?: string;
        title?: string;
        tlp?: 0 | 1 | 3 | 2;
    }
    | {
        data?: string;
        dataType?: unknown[];
        description?: string;
        ioc?: boolean;
        keyword?: string;
        message?: string;
        range?: {
            dateRange: { fromDate?: string; toDate?: string };
        };
        sighted?: boolean;
        Status?: "Ok"
        | "Deleted";
        tags?: string;
        tlp?: 0 | 1 | 3 | 2;
    }
    | {
        customFieldsUi?: {
            customFields: { field?: string; value?: string }[];
        };
        description?: string;
        endDate?: string;
        flag?: boolean;
        impactStatus?: | "NoImpact"
        | "WithImpact"
        | "NotApplicable";
        owner?: string;
        resolutionStatus?: | "Other"
        | "Duplicated"
        | "Indeterminate"
        | "False Positive"
        | "True Positive";
        severity?: 1
        | 3
        | 2;
        startDate?: string;
        status?: "Open" | "Deleted" | "Resolved";
        summary?: string;
        tags?: string;
        title?: string;
        tlp?: 0 | 1 | 3 | 2;
    }
    | {
        description?: string;
        endDate?: string;
        flag?: boolean;
        owner?: string;
        startDate?: string;
        status?: | "Completed"
        | "Waiting"
        | "InProgress"
        | "Cancel";
        title?: string;
    };
    flag?: boolean;
    follow?: boolean;
    id?: string;
    ioc?: boolean;
    jsonParameters?: boolean;
    limit?: number;
    message?: string;
    operation?: string;
    options?: | { sort?: string }
    | { includeSimilar?: boolean }
    | { tags?: string }
    | {
        customFieldsJson?: string;
        customFieldsUi?: {
            customFields: { field?: string; value?: string }[];
        };
        endDate?: string;
        metrics?: string;
        summary?: string;
    }
    | {
        description?: string;
        endDate?: string;
        owner?: string;
        startDate?: string;
    }
    | {
        attachmentValues?: {
            attachmentValues: { binaryProperty?: string };
        };
    };
    owner?: string;
    resource?: | "task"
    | "case"
    | "log"
    | "alert"
    | "observable";
    responder?: string;
    returnAll?: boolean;
    severity?: 1
    | 3
    | 2;
    sighted?: boolean;
    source?: string;
    sourceRef?: string;
    startDate?: string;
    status?:
        | "Completed"
        | "New"
        | "Updated"
        | "Ignored"
        | "Imported"
        | "Ok"
        | "Deleted"
        | "Waiting"
        | "InProgress"
        | "Cancel";
    tags?: string;
    taskId?: string;
    title?: string;
    tlp?: 0
    | 1
    | 3
    | 2;
    type?: string;
    updateFields?:
        | {
            artifactUi?: {
                artifactValues: {
                    binaryProperty?: string;
                    data?: string;
                    dataType?: string;
                    message?: string;
                    tags?: string;
                }[];
            };
            caseTemplate?: string;
            customFieldsJson?: string;
            customFieldsUi?: {
                customFields: { field?: string; value?: string }[];
            };
            description?: string;
            follow?: boolean;
            severity?: 1
            | 3
            | 2;
            status?: "New" | "Updated" | "Ignored" | "Imported";
            tags?: string;
            title?: string;
            tlp?: 0 | 1 | 3 | 2;
        }
        | {
            ioc?: boolean;
            message?: string;
            sighted?: boolean;
            status?: "Ok"
            | "Deleted";
            tags?: string;
            tlp?: 0 | 1 | 3 | 2;
        }
        | {
            customFieldsJson?: string;
            customFieldsUi?: {
                customFields: { field?: string; value?: string }[];
            };
            description?: string;
            endDate?: string;
            flag?: boolean;
            impactStatus?: | "NoImpact"
            | "WithImpact"
            | "NotApplicable";
            metrics?: string;
            owner?: string;
            resolutionStatus?: | "Other"
            | "Duplicated"
            | "FalsePositive"
            | "Indeterminate"
            | "TruePositive";
            severity?: 1
            | 3
            | 2;
            startDate?: string;
            status?: "Open" | "Deleted" | "Resolved";
            summary?: string;
            tags?: string;
            title?: string;
            tlp?: 0 | 1 | 3 | 2;
        }
        | {
            description?: string;
            endDate?: string;
            flag?: boolean;
            owner?: string;
            startDate?: string;
            status?: | "Completed"
            | "Waiting"
            | "InProgress"
            | "Cancel";
            title?: string;
        };
}

Properties§

Source§

readonly additionalFields?:
    | {
        caseTemplate?: string;
        customFieldsJson?: string;
        customFieldsUi?: {
            customFields: { field?: string; value?: string }[];
        };
    }
    | { caseTemplate?: string }

Default: {}

Source§

readonly analyzers?: unknown[]

Choose from the list, or specify IDs using an expression Default: [] Type options: {"loadOptionsDependsOn":["id","dataType"],"loadOptionsMethod":"loadAnalyzers"}

Source§