Filter: ExploitTimelineFilter

Filter type for ExploitTimeline.

All fields in this type are and-combined; see the or field for or-combination.


Input Fields

NameTypeDescription
ANDExploitTimelineFilter

A field that checks if all filters in the list apply

If the list is empty, this filter applies to all objects.

ORExploitTimelineFilter

A field that checks if any of the filters in the list apply.

If the list is empty, this filter applies to no objects.

Note that only the items in the list or-combined; this complete OR field is and-combined with outer fields in the parent filter type.

firstExploitPocOrHigherDateTime

Checks if firstExploitPocOrHigher equals a specified value.

If an index exists on firstExploitPocOrHigher, it can be used.

The date the exploit was first published as a proof of concept

firstExploitPocOrHigher_gtDateTime

Checks if firstExploitPocOrHigher is greater than a specified value.

The date the exploit was first published as a proof of concept

firstExploitPocOrHigher_gteDateTime

Checks if firstExploitPocOrHigher is greater or equal a specified value.

The date the exploit was first published as a proof of concept

firstExploitPocOrHigher_inDateTime

Checks if firstExploitPocOrHigher is equal to one of the specified values.

The date the exploit was first published as a proof of concept

firstExploitPocOrHigher_ltDateTime

Checks if firstExploitPocOrHigher is less than a specified value.

The date the exploit was first published as a proof of concept

firstExploitPocOrHigher_lteDateTime

Checks if firstExploitPocOrHigher is less or equal a specified value.

The date the exploit was first published as a proof of concept

firstExploitPocOrHigher_notDateTime

Checks if firstExploitPocOrHigher does not equal a specified value

The date the exploit was first published as a proof of concept

firstExploitPocOrHigher_not_inDateTime

Checks if firstExploitPocOrHigher is not equal to one of the specified values.

The date the exploit was first published as a proof of concept

firstExploitPublishedDateTime

Checks if firstExploitPublished equals a specified value.

If an index exists on firstExploitPublished, it can be used.

The date the exploit was first published

firstExploitPublished_gtDateTime

Checks if firstExploitPublished is greater than a specified value.

The date the exploit was first published

firstExploitPublished_gteDateTime

Checks if firstExploitPublished is greater or equal a specified value.

The date the exploit was first published

firstExploitPublished_inDateTime

Checks if firstExploitPublished is equal to one of the specified values.

The date the exploit was first published

firstExploitPublished_ltDateTime

Checks if firstExploitPublished is less than a specified value.

The date the exploit was first published

firstExploitPublished_lteDateTime

Checks if firstExploitPublished is less or equal a specified value.

The date the exploit was first published

firstExploitPublished_notDateTime

Checks if firstExploitPublished does not equal a specified value

The date the exploit was first published

firstExploitPublished_not_inDateTime

Checks if firstExploitPublished is not equal to one of the specified values.

The date the exploit was first published

firstExploitWeaponizedOrHigherDateTime

Checks if firstExploitWeaponizedOrHigher equals a specified value.

If an index exists on firstExploitWeaponizedOrHigher, it can be used.

The date the exploit was first weaponized

firstExploitWeaponizedOrHigher_gtDateTime

Checks if firstExploitWeaponizedOrHigher is greater than a specified value.

The date the exploit was first weaponized

firstExploitWeaponizedOrHigher_gteDateTime

Checks if firstExploitWeaponizedOrHigher is greater or equal a specified value.

The date the exploit was first weaponized

firstExploitWeaponizedOrHigher_inDateTime

Checks if firstExploitWeaponizedOrHigher is equal to one of the specified values.

The date the exploit was first weaponized

firstExploitWeaponizedOrHigher_ltDateTime

Checks if firstExploitWeaponizedOrHigher is less than a specified value.

The date the exploit was first weaponized

firstExploitWeaponizedOrHigher_lteDateTime

Checks if firstExploitWeaponizedOrHigher is less or equal a specified value.

The date the exploit was first weaponized

firstExploitWeaponizedOrHigher_notDateTime

Checks if firstExploitWeaponizedOrHigher does not equal a specified value

The date the exploit was first weaponized

firstExploitWeaponizedOrHigher_not_inDateTime

Checks if firstExploitWeaponizedOrHigher is not equal to one of the specified values.

The date the exploit was first weaponized

firstReportedBotnetDateTime

Checks if firstReportedBotnet equals a specified value.

If an index exists on firstReportedBotnet, it can be used.

The date the exploit was first used in a botnet

firstReportedBotnet_gtDateTime

Checks if firstReportedBotnet is greater than a specified value.

The date the exploit was first used in a botnet

firstReportedBotnet_gteDateTime

Checks if firstReportedBotnet is greater or equal a specified value.

The date the exploit was first used in a botnet

firstReportedBotnet_inDateTime

Checks if firstReportedBotnet is equal to one of the specified values.

The date the exploit was first used in a botnet

firstReportedBotnet_ltDateTime

Checks if firstReportedBotnet is less than a specified value.

The date the exploit was first used in a botnet

firstReportedBotnet_lteDateTime

Checks if firstReportedBotnet is less or equal a specified value.

The date the exploit was first used in a botnet

firstReportedBotnet_notDateTime

Checks if firstReportedBotnet does not equal a specified value

The date the exploit was first used in a botnet

firstReportedBotnet_not_inDateTime

Checks if firstReportedBotnet is not equal to one of the specified values.

The date the exploit was first used in a botnet

firstReportedRansomwareDateTime

Checks if firstReportedRansomware equals a specified value.

If an index exists on firstReportedRansomware, it can be used.

The date the exploit was first used for ransomware

firstReportedRansomware_gtDateTime

Checks if firstReportedRansomware is greater than a specified value.

The date the exploit was first used for ransomware

firstReportedRansomware_gteDateTime

Checks if firstReportedRansomware is greater or equal a specified value.

The date the exploit was first used for ransomware

firstReportedRansomware_inDateTime

Checks if firstReportedRansomware is equal to one of the specified values.

The date the exploit was first used for ransomware

firstReportedRansomware_ltDateTime

Checks if firstReportedRansomware is less than a specified value.

The date the exploit was first used for ransomware

firstReportedRansomware_lteDateTime

Checks if firstReportedRansomware is less or equal a specified value.

The date the exploit was first used for ransomware

firstReportedRansomware_notDateTime

Checks if firstReportedRansomware does not equal a specified value

The date the exploit was first used for ransomware

firstReportedRansomware_not_inDateTime

Checks if firstReportedRansomware is not equal to one of the specified values.

The date the exploit was first used for ransomware

firstReportedThreatActorDateTime

Checks if firstReportedThreatActor equals a specified value.

If an index exists on firstReportedThreatActor, it can be used.

The date the exploit was first exploited by a named Threat Actor

firstReportedThreatActor_gtDateTime

Checks if firstReportedThreatActor is greater than a specified value.

The date the exploit was first exploited by a named Threat Actor

firstReportedThreatActor_gteDateTime

Checks if firstReportedThreatActor is greater or equal a specified value.

The date the exploit was first exploited by a named Threat Actor

firstReportedThreatActor_inDateTime

Checks if firstReportedThreatActor is equal to one of the specified values.

The date the exploit was first exploited by a named Threat Actor

firstReportedThreatActor_ltDateTime

Checks if firstReportedThreatActor is less than a specified value.

The date the exploit was first exploited by a named Threat Actor

firstReportedThreatActor_lteDateTime

Checks if firstReportedThreatActor is less or equal a specified value.

The date the exploit was first exploited by a named Threat Actor

firstReportedThreatActor_notDateTime

Checks if firstReportedThreatActor does not equal a specified value

The date the exploit was first exploited by a named Threat Actor

firstReportedThreatActor_not_inDateTime

Checks if firstReportedThreatActor is not equal to one of the specified values.

The date the exploit was first exploited by a named Threat Actor

mostRecentExploitPublishedDateTime

Checks if mostRecentExploitPublished equals a specified value.

If an index exists on mostRecentExploitPublished, it can be used.

The date of the most recently published exploit

mostRecentExploitPublished_gtDateTime

Checks if mostRecentExploitPublished is greater than a specified value.

The date of the most recently published exploit

mostRecentExploitPublished_gteDateTime

Checks if mostRecentExploitPublished is greater or equal a specified value.

The date of the most recently published exploit

mostRecentExploitPublished_inDateTime

Checks if mostRecentExploitPublished is equal to one of the specified values.

The date of the most recently published exploit

mostRecentExploitPublished_ltDateTime

Checks if mostRecentExploitPublished is less than a specified value.

The date of the most recently published exploit

mostRecentExploitPublished_lteDateTime

Checks if mostRecentExploitPublished is less or equal a specified value.

The date of the most recently published exploit

mostRecentExploitPublished_notDateTime

Checks if mostRecentExploitPublished does not equal a specified value

The date of the most recently published exploit

mostRecentExploitPublished_not_inDateTime

Checks if mostRecentExploitPublished is not equal to one of the specified values.

The date of the most recently published exploit

mostRecentReportedBotnetDateTime

Checks if mostRecentReportedBotnet equals a specified value.

If an index exists on mostRecentReportedBotnet, it can be used.

The date the exploit was most recently used in a botnet

mostRecentReportedBotnet_gtDateTime

Checks if mostRecentReportedBotnet is greater than a specified value.

The date the exploit was most recently used in a botnet

mostRecentReportedBotnet_gteDateTime

Checks if mostRecentReportedBotnet is greater or equal a specified value.

The date the exploit was most recently used in a botnet

mostRecentReportedBotnet_inDateTime

Checks if mostRecentReportedBotnet is equal to one of the specified values.

The date the exploit was most recently used in a botnet

mostRecentReportedBotnet_ltDateTime

Checks if mostRecentReportedBotnet is less than a specified value.

The date the exploit was most recently used in a botnet

mostRecentReportedBotnet_lteDateTime

Checks if mostRecentReportedBotnet is less or equal a specified value.

The date the exploit was most recently used in a botnet

mostRecentReportedBotnet_notDateTime

Checks if mostRecentReportedBotnet does not equal a specified value

The date the exploit was most recently used in a botnet

mostRecentReportedBotnet_not_inDateTime

Checks if mostRecentReportedBotnet is not equal to one of the specified values.

The date the exploit was most recently used in a botnet

mostRecentReportedRansomwareDateTime

Checks if mostRecentReportedRansomware equals a specified value.

If an index exists on mostRecentReportedRansomware, it can be used.

The date the exploit was most recently used for ransomware

mostRecentReportedRansomware_gtDateTime

Checks if mostRecentReportedRansomware is greater than a specified value.

The date the exploit was most recently used for ransomware

mostRecentReportedRansomware_gteDateTime

Checks if mostRecentReportedRansomware is greater or equal a specified value.

The date the exploit was most recently used for ransomware

mostRecentReportedRansomware_inDateTime

Checks if mostRecentReportedRansomware is equal to one of the specified values.

The date the exploit was most recently used for ransomware

mostRecentReportedRansomware_ltDateTime

Checks if mostRecentReportedRansomware is less than a specified value.

The date the exploit was most recently used for ransomware

mostRecentReportedRansomware_lteDateTime

Checks if mostRecentReportedRansomware is less or equal a specified value.

The date the exploit was most recently used for ransomware

mostRecentReportedRansomware_notDateTime

Checks if mostRecentReportedRansomware does not equal a specified value

The date the exploit was most recently used for ransomware

mostRecentReportedRansomware_not_inDateTime

Checks if mostRecentReportedRansomware is not equal to one of the specified values.

The date the exploit was most recently used for ransomware

mostRecentReportedThreatActorDateTime

Checks if mostRecentReportedThreatActor equals a specified value.

If an index exists on mostRecentReportedThreatActor, it can be used.

The date the exploit was most recently reported to have been used by a named Threat Actor

mostRecentReportedThreatActor_gtDateTime

Checks if mostRecentReportedThreatActor is greater than a specified value.

The date the exploit was most recently reported to have been used by a named Threat Actor

mostRecentReportedThreatActor_gteDateTime

Checks if mostRecentReportedThreatActor is greater or equal a specified value.

The date the exploit was most recently reported to have been used by a named Threat Actor

mostRecentReportedThreatActor_inDateTime

Checks if mostRecentReportedThreatActor is equal to one of the specified values.

The date the exploit was most recently reported to have been used by a named Threat Actor

mostRecentReportedThreatActor_ltDateTime

Checks if mostRecentReportedThreatActor is less than a specified value.

The date the exploit was most recently reported to have been used by a named Threat Actor

mostRecentReportedThreatActor_lteDateTime

Checks if mostRecentReportedThreatActor is less or equal a specified value.

The date the exploit was most recently reported to have been used by a named Threat Actor

mostRecentReportedThreatActor_notDateTime

Checks if mostRecentReportedThreatActor does not equal a specified value

The date the exploit was most recently reported to have been used by a named Threat Actor

mostRecentReportedThreatActor_not_inDateTime

Checks if mostRecentReportedThreatActor is not equal to one of the specified values.

The date the exploit was most recently reported to have been used by a named Threat Actor

nvdPublishedString

Checks if nvdPublished equals a specified string, case-sensitively.

If an index exists on nvdPublished, it can be used.

See also like for a case-insensitive filter.

The date the exploit was first recognized by NVD

nvdPublished_containsString

Checks if nvdPublished contains a specified string, case-sensitively.

The date the exploit was first recognized by NVD

nvdPublished_ends_withString

Checks if nvdPublished ends with a specified string, case-sensitively.

The date the exploit was first recognized by NVD

nvdPublished_gtString

Checks if nvdPublished is greater than a specified value.

The date the exploit was first recognized by NVD

nvdPublished_gteString

Checks if nvdPublished is greater or equal a specified value.

The date the exploit was first recognized by NVD

nvdPublished_inString

Checks if nvdPublished is equal to one of the specified values.

The date the exploit was first recognized by NVD

nvdPublished_likeString

Matches nvdPublished against a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

If an index exists on nvdPublished, it can be used for the literal prefix (the part until the first placeholder).

The date the exploit was first recognized by NVD

nvdPublished_ltString

Checks if nvdPublished is less than a specified value.

The date the exploit was first recognized by NVD

nvdPublished_lteString

Checks if nvdPublished is less or equal a specified value.

The date the exploit was first recognized by NVD

nvdPublished_notString

Checks if nvdPublished does not equal a specified string, case-sensitively.

The date the exploit was first recognized by NVD

nvdPublished_not_containsString

Checks if nvdPublished does not contain a specified string, case-sensitively.

The date the exploit was first recognized by NVD

nvdPublished_not_ends_withString

Checks if nvdPublished does not end with a specified string, case-sensitively.

The date the exploit was first recognized by NVD

nvdPublished_not_inString

Checks if nvdPublished is not equal to one of the specified values.

The date the exploit was first recognized by NVD

nvdPublished_not_likeString

Checks if nvdPublished does not match a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

The date the exploit was first recognized by NVD

nvdPublished_not_starts_withString

Checks if nvdPublished does not start with a specified string, case-sensitively.

Never uses an index. Consider using not_like (with the % placeholder) for a case-insensitive filter that can use an index.

The date the exploit was first recognized by NVD

nvdPublished_starts_withString

Checks if nvdPublished starts with a specified string, case-sensitively.

Never uses an index. Consider using like (with the % placeholder) for a case-insensitive filter that can use an index.

The date the exploit was first recognized by NVD


This page was generated: 2024-10-16