Filter: ExploitInfoFilter

A field that checks if all filters in the list apply

If the list is empty, this filter applies to all objects.

A field that checks if any of the filters in the list apply.

If the list is empty, this filter applies to no objects.

Note that only the items in the list or-combined; this complete OR field is and-combined with outer fields in the parent filter type.

Checks if botnets is an empty list (true) or a non-empty list or null (false).

Makes sure all items in botnets match a certain filter.

Makes sure none of the items in botnets match a certain filter.

Note that you can specify the empty object for this filter to make sure botnets has no items.

Makes sure at least one of the items in "botnets" matches a certain filter.

Note that you can specify the empty object for this filter to make sure botnets has at least one item.

Checks if exploitProofOfConcept equals a specified value.

If an index exists on exploitProofOfConcept, it can be used.

Whether or not the Exploit is a proof of concept

Checks if exploitProofOfConcept does not equal a specified value

Whether or not the Exploit is a proof of concept

Checks if exploitedByBotnets equals a specified value.

If an index exists on exploitedByBotnets, it can be used.

Whether or not the Exploit has been exploited by botnets

Checks if exploitedByBotnets does not equal a specified value

Whether or not the Exploit has been exploited by botnets

Checks if exploitedByNamedThreatActors equals a specified value.

If an index exists on exploitedByNamedThreatActors, it can be used.

Whether or not the Exploit has been exploited by named threat actors

Checks if exploitedByNamedThreatActors does not equal a specified value

Whether or not the Exploit has been exploited by named threat actors

Checks if exploitedByRansomware equals a specified value.

If an index exists on exploitedByRansomware, it can be used.

Whether or not the Exploit has been exploited by Ransomware

Checks if exploitedByRansomware does not equal a specified value

Whether or not the Exploit has been exploited by Ransomware

Checks if exploits is an empty list (true) or a non-empty list or null (false).

Makes sure all items in exploits match a certain filter.

Makes sure none of the items in exploits match a certain filter.

Note that you can specify the empty object for this filter to make sure exploits has no items.

Makes sure at least one of the items in "exploits" matches a certain filter.

Note that you can specify the empty object for this filter to make sure exploits has at least one item.

Checks if maxExploitMaturity equals a specified string, case-sensitively.

If an index exists on maxExploitMaturity, it can be used.

See also like for a case-insensitive filter.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity contains a specified string, case-sensitively.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity ends with a specified string, case-sensitively.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity is greater than a specified value.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity is greater or equal a specified value.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity is equal to one of the specified values.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Matches maxExploitMaturity against a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

If an index exists on maxExploitMaturity, it can be used for the literal prefix (the part until the first placeholder).

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity is less than a specified value.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity is less or equal a specified value.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity does not equal a specified string, case-sensitively.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity does not contain a specified string, case-sensitively.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity does not end with a specified string, case-sensitively.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity is not equal to one of the specified values.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity does not match a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity does not start with a specified string, case-sensitively.

Never uses an index. Consider using not_like (with the % placeholder) for a case-insensitive filter that can use an index.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxExploitMaturity starts with a specified string, case-sensitively.

Never uses an index. Consider using like (with the % placeholder) for a case-insensitive filter that can use an index.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity equals a specified string, case-sensitively.

If an index exists on maxMaturity, it can be used.

See also like for a case-insensitive filter.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity contains a specified string, case-sensitively.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity ends with a specified string, case-sensitively.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity is greater than a specified value.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity is greater or equal a specified value.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity is equal to one of the specified values.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Matches maxMaturity against a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

If an index exists on maxMaturity, it can be used for the literal prefix (the part until the first placeholder).

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity is less than a specified value.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity is less or equal a specified value.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity does not equal a specified string, case-sensitively.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity does not contain a specified string, case-sensitively.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity does not end with a specified string, case-sensitively.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity is not equal to one of the specified values.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity does not match a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity does not start with a specified string, case-sensitively.

Never uses an index. Consider using not_like (with the % placeholder) for a case-insensitive filter that can use an index.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if maxMaturity starts with a specified string, case-sensitively.

Never uses an index. Consider using like (with the % placeholder) for a case-insensitive filter that can use an index.

The maximum maturity level of the set of Exploits. Maturity values can be "Proof of Concept", "Weaponized", "Exploited by Threat Actors", or "Reported in the Wild".

Checks if ransomware is an empty list (true) or a non-empty list or null (false).

Makes sure all items in ransomware match a certain filter.

Makes sure none of the items in ransomware match a certain filter.

Note that you can specify the empty object for this filter to make sure ransomware has no items.

Makes sure at least one of the items in "ransomware" matches a certain filter.

Note that you can specify the empty object for this filter to make sure ransomware has at least one item.

Checks if reportedInTheWild equals a specified value.

If an index exists on reportedInTheWild, it can be used.

Whether or not the Exploit has been reported in the wild

Checks if reportedInTheWild does not equal a specified value

Whether or not the Exploit has been reported in the wild

Checks if threatActors is an empty list (true) or a non-empty list or null (false).

Makes sure all items in threatActors match a certain filter.

Makes sure none of the items in threatActors match a certain filter.

Note that you can specify the empty object for this filter to make sure threatActors has no items.

Makes sure at least one of the items in "threatActors" matches a certain filter.

Note that you can specify the empty object for this filter to make sure threatActors has at least one item.

Allows to filter on the fields of timeline.

Note that timeline is an entity extension and thus can never be null, so specifying null to this filter field has no effect.

Checks if weaponized equals a specified value.

If an index exists on weaponized, it can be used.

Whether or not the Exploit has been weaponized

Checks if weaponized does not equal a specified value

Whether or not the Exploit has been weaponized