Index

A | B | C | D | E | F | G | H | I | L | M | N | O | P | S | T | U

A

ActionCollection (class in maec.bundle.bundle)
ActionCollectionList (class in maec.bundle.bundle)
ActionEquivalence (class in maec.package.action_equivalence)
ActionEquivalenceList (class in maec.package.action_equivalence)
ActionImplementation (class in maec.bundle.malware_action)
ActionList (class in maec.bundle.bundle)
ActionReferenceList (class in maec.bundle.action_reference_list)
add_action() (maec.bundle.bundle.ActionCollection method)
(maec.bundle.bundle.Bundle method)
add_av_classification() (maec.bundle.bundle.Bundle method)
add_behavior() (maec.bundle.bundle.BehaviorCollection method)
(maec.bundle.bundle.Bundle method)
add_candidate_indicator() (maec.bundle.bundle.Bundle method)
(maec.bundle.bundle.CandidateIndicatorCollection method)
add_capability() (maec.bundle.bundle.Bundle method)
add_initiated_action() (maec.bundle.process_tree.ProcessTreeNode method)
add_injected_process() (maec.bundle.process_tree.ProcessTreeNode method)
add_log() (maec.analytics.distance.Distance method)
add_named_action_collection() (maec.bundle.bundle.Bundle method)
(maec.bundle.bundle.Collections method)
add_named_behavior_collection() (maec.bundle.bundle.Bundle method)
(maec.bundle.bundle.Collections method)
add_named_candidate_indicator_collection() (maec.bundle.bundle.Bundle method)
(maec.bundle.bundle.Collections method)
add_named_object_collection() (maec.bundle.bundle.Bundle method)
(maec.bundle.bundle.Collections method)
add_object() (maec.bundle.bundle.Bundle method)
(maec.bundle.bundle.ObjectCollection method)
add_spawned_process() (maec.bundle.process_tree.ProcessTreeNode method)
add_strategic_objective() (maec.bundle.capability.Capability method)
add_tactical_objective() (maec.bundle.capability.Capability method)
add_unique_objects() (maec.utils.deduplicator.BundleDeduplicator class method)
Analyses (class in maec.package.malware_subject)
Analysis (class in maec.package.analysis)
AnalysisEnvironment (class in maec.package.analysis)
AnalysisSystem (class in maec.package.analysis)
AnalysisSystemList (class in maec.package.analysis)
APICall (class in maec.bundle.malware_action)
AssociatedCode (class in maec.bundle.behavior)
AVClassification (class in maec.bundle.av_classification)
AVClassifications (class in maec.bundle.av_classification)

B

BaseCollection (class in maec.bundle.bundle)
Behavior (class in maec.bundle.behavior)
BehavioralAction (class in maec.bundle.behavior)
BehavioralActionEquivalenceReference (class in maec.bundle.behavior)
BehavioralActionReference (class in maec.bundle.behavior)
BehavioralActions (class in maec.bundle.behavior)
BehaviorCollection (class in maec.bundle.bundle)
BehaviorCollectionList (class in maec.bundle.bundle)
BehaviorList (class in maec.bundle.bundle)
BehaviorPurpose (class in maec.bundle.behavior)
BehaviorReference (class in maec.bundle.behavior_reference)
(class in maec.bundle.bundle)
bin_list() (maec.analytics.distance.Distance method)
bin_malware_subjects() (in module maec.utils.merge)
build() (maec.bundle.object_history.ObjectHistory class method)
build_string_vector() (maec.analytics.distance.Distance method)
Bundle (class in maec.bundle.bundle)
BundleComparator (class in maec.utils.comparator)
BundleDeduplicator (class in maec.utils.deduplicator)
BundleReference (class in maec.bundle.bundle_reference)

C

calculate() (maec.analytics.distance.Distance method)
CandidateIndicator (class in maec.bundle.candidate_indicator)
CandidateIndicatorCollection (class in maec.bundle.bundle)
CandidateIndicatorCollectionList (class in maec.bundle.bundle)
CandidateIndicatorComposition (class in maec.bundle.candidate_indicator)
CandidateIndicatorList (class in maec.bundle.candidate_indicator)
Capability (class in maec.bundle.capability)
CapabilityList (class in maec.bundle.capability)
CapabilityObjective (class in maec.bundle.capability)
CapabilityObjectiveReference (class in maec.bundle.capability)
CapabilityObjectiveRelationship (class in maec.bundle.capability)
CapabilityProperty (class in maec.bundle.capability)
CapabilityReference (class in maec.bundle.capability)
CapabilityRelationship (class in maec.bundle.capability)
CapturedProtocol (class in maec.package.analysis)
CapturedProtocolList (class in maec.package.analysis)
cleanup() (maec.utils.deduplicator.BundleDeduplicator class method)
ClusterComposition (class in maec.package.grouping_relationship)
ClusterEdgeNodePair (class in maec.package.grouping_relationship)
ClusteringAlgorithmParameters (class in maec.package.grouping_relationship)
ClusteringMetadata (class in maec.package.grouping_relationship)
Collections (class in maec.bundle.bundle)
Comment (class in maec.package.analysis)
CommentList (class in maec.package.analysis)
compare() (maec.bundle.bundle.Bundle class method)
ComparisonResult (class in maec.utils.comparator)
create_action_vector() (maec.analytics.distance.DynamicFeatureVector method)
create_dynamic_result_vector() (maec.analytics.distance.Distance method)
create_dynamic_vectors() (maec.analytics.distance.DynamicFeatureVector method)
create_mappings() (in module maec.utils.merge)
create_object_vector() (maec.analytics.distance.StaticFeatureVector method)
create_static_result_vector() (maec.analytics.distance.Distance method)
create_static_vectors() (maec.analytics.distance.StaticFeatureVector method)
create_superset_vectors() (maec.analytics.distance.Distance method)
CVEVulnerability (class in maec.bundle.behavior)

D

deduplicate() (maec.bundle.bundle.Bundle method)
(maec.utils.deduplicator.BundleDeduplicator class method)
deduplicate_bundles() (maec.package.malware_subject.MalwareSubject method)
deduplicate_malware_subjects() (maec.package.package.Package method)
deduplicate_vocabulary_list() (in module maec.utils.merge)
dereference_bundles() (maec.package.malware_subject.MalwareSubject method)
dereference_objects() (maec.bundle.bundle.Bundle method)
dict_merge() (in module maec.utils.merge)
Distance (class in maec.analytics.distance)
DynamicAnalysisMetadata (class in maec.package.analysis)
DynamicFeatureVector (class in maec.analytics.distance)

E

Entity (class in maec)
EntityList (class in maec)
EntityParser (class in maec.utils.parser)
euclidean_distance() (maec.analytics.distance.Distance method)
Exploit (class in maec.bundle.behavior)
extract_features() (maec.analytics.distance.DynamicFeatureVector method)
(maec.analytics.distance.StaticFeatureVector method)

F

find_embedded_process() (maec.bundle.process_tree.ProcessTreeNode method)
find_matching_object() (maec.utils.deduplicator.BundleDeduplicator class method)
FindingsBundleList (class in maec.package.malware_subject)
flatten_vector() (maec.analytics.distance.Distance method)
from_xml() (maec.package.package.Package static method)

G

generate_feature_vectors() (maec.analytics.distance.Distance method)
get_action_context() (maec.bundle.object_history.ObjectHistoryEntry method)
get_action_names() (maec.bundle.object_history.ObjectHistoryEntry method)
get_action_objects() (maec.bundle.bundle.Bundle method)
get_all_actions() (maec.bundle.bundle.Bundle method)
get_all_actions_on_object() (maec.bundle.bundle.Bundle method)
get_all_multiple_referenced_objects() (maec.bundle.bundle.Bundle method)
get_all_non_reference_objects() (maec.bundle.bundle.Bundle method)
get_all_objects() (maec.bundle.bundle.Bundle method)
get_named_collection() (maec.bundle.bundle.ActionCollectionList method)
(maec.bundle.bundle.BehaviorCollectionList method)
(maec.bundle.bundle.CandidateIndicatorCollectionList method)
(maec.bundle.bundle.ObjectCollectionList method)
get_object_by_id() (maec.bundle.bundle.Bundle method)
get_object_history() (maec.bundle.bundle.Bundle method)
get_object_values() (maec.utils.deduplicator.BundleDeduplicator class method)
get_typedfield_values() (maec.utils.deduplicator.BundleDeduplicator class method)
get_unique_features() (maec.analytics.distance.DynamicFeatureVector method)
(maec.analytics.distance.StaticFeatureVector method)
GroupingRelationship (class in maec.package.grouping_relationship)
GroupingRelationshipList (class in maec.package.grouping_relationship)

H

handle_duplicate_objects() (maec.utils.deduplicator.BundleDeduplicator class method)
handle_unique_objects() (maec.utils.deduplicator.BundleDeduplicator class method)
has_collection() (maec.bundle.bundle.ActionCollectionList method)
(maec.bundle.bundle.BehaviorCollectionList method)
(maec.bundle.bundle.CandidateIndicatorCollectionList method)
(maec.bundle.bundle.ObjectCollectionList method)
has_content() (maec.bundle.bundle.Collections method)
HypervisorHostSystem (class in maec.package.analysis)

I

InstalledPrograms (class in maec.package.analysis)
is_plain() (maec.package.analysis.Comment method)

L

list_from_object() (maec.EntityList class method)

M

maec (module)
maec.analytics.distance (module)
maec.bundle.action_reference_list (module)
maec.bundle.av_classification (module)
maec.bundle.behavior (module)
maec.bundle.behavior_reference (module)
maec.bundle.bundle (module)
maec.bundle.bundle_reference (module)
maec.bundle.candidate_indicator (module)
maec.bundle.capability (module)
maec.bundle.malware_action (module)
maec.bundle.object_history (module)
maec.bundle.object_reference (module)
maec.bundle.process_tree (module)
maec.package.action_equivalence (module)
maec.package.analysis (module)
maec.package.grouping_relationship (module)
maec.package.malware_subject (module)
maec.package.malware_subject_reference (module)
maec.package.object_equivalence (module)
maec.package.package (module)
maec.utils.comparator (module)
maec.utils.deduplicator (module)
maec.utils.merge (module)
maec.utils.parser (module)
MalwareAction (class in maec.bundle.malware_action)
MalwareBinaryConfigurationStorageDetails (class in maec.package.malware_subject)
MalwareConfigurationDetails (class in maec.package.malware_subject)
MalwareConfigurationObfuscationAlgorithm (class in maec.package.malware_subject)
MalwareConfigurationObfuscationDetails (class in maec.package.malware_subject)
MalwareConfigurationParameter (class in maec.package.malware_subject)
MalwareConfigurationStorageDetails (class in maec.package.malware_subject)
MalwareDevelopmentEnvironment (class in maec.package.malware_subject)
MalwareEntity (class in maec.bundle.candidate_indicator)
MalwareSubject (class in maec.package.malware_subject)
MalwareSubjectList (class in maec.package.malware_subject)
MalwareSubjectReference (class in maec.package.malware_subject_reference)
MalwareSubjectRelationship (class in maec.package.malware_subject)
MalwareSubjectRelationshipList (class in maec.package.malware_subject)
map_objects() (maec.utils.deduplicator.BundleDeduplicator class method)
merge_binned_malware_subjects() (in module maec.utils.merge)
merge_documents() (in module maec.utils.merge)
merge_entities() (in module maec.utils.merge)
merge_findings_bundles() (in module maec.utils.merge)
merge_malware_subjects() (in module maec.utils.merge)
merge_packages() (in module maec.utils.merge)
MetaAnalysis (class in maec.package.malware_subject)
MinorVariants (class in maec.package.malware_subject)

N

NetworkInfrastructure (class in maec.package.analysis)
normalize_bundles() (maec.package.malware_subject.MalwareSubject method)
normalize_numeric() (maec.analytics.distance.Distance method)
normalize_numeric_list() (maec.analytics.distance.Distance method)
normalize_objects() (maec.bundle.bundle.Bundle method)
normalize_vectors() (maec.analytics.distance.Distance method)

O

object_from_list() (maec.EntityList class method)
ObjectCollection (class in maec.bundle.bundle)
ObjectCollectionList (class in maec.bundle.bundle)
ObjectEquivalence (class in maec.package.object_equivalence)
ObjectEquivalenceList (class in maec.package.object_equivalence)
ObjectHash (class in maec.utils.comparator)
ObjectHistory (class in maec.bundle.object_history)
ObjectHistoryEntry (class in maec.bundle.object_history)
ObjectList (class in maec.bundle.bundle)
ObjectReference (class in maec.bundle.object_reference)
ObjectReferenceList (class in maec.bundle.object_reference)

P

Package (class in maec.package.package)
Parameter (class in maec.bundle.malware_action)
ParameterList (class in maec.bundle.malware_action)
perform_calculation() (maec.analytics.distance.Distance method)
PlatformList (class in maec.bundle.behavior)
populate_hashes_mapping() (maec.analytics.distance.Distance method)
preprocess_entities() (maec.analytics.distance.Distance method)
print_distances() (maec.analytics.distance.Distance method)
ProcessTree (class in maec.bundle.process_tree)
ProcessTreeNode (class in maec.bundle.process_tree)
prune_dynamic_features() (maec.analytics.distance.DynamicFeatureVector method)

S

set_id() (maec.bundle.process_tree.ProcessTreeNode method)
set_malware_instance_object_attributes() (maec.bundle.bundle.Bundle method)
set_parent_action() (maec.bundle.process_tree.ProcessTreeNode method)
set_process_tree() (maec.bundle.bundle.Bundle method)
set_root_process() (maec.bundle.process_tree.ProcessTree method)
SimilarObjectCluster (class in maec.utils.comparator)
Source (class in maec.package.analysis)
StaticFeatureVector (class in maec.analytics.distance)

T

to_xml_file() (maec.Entity method)
ToolList (class in maec.package.analysis)

U

update_relationships() (in module maec.utils.merge)