Filter: ThreatActorFilter

Filter type for ThreatActor.

All fields in this type are and-combined; see the or field for or-combination.


Input Fields

NameTypeDescription
ANDThreatActorFilter

A field that checks if all filters in the list apply

If the list is empty, this filter applies to all objects.

ORThreatActorFilter

A field that checks if any of the filters in the list apply.

If the list is empty, this filter applies to no objects.

Note that only the items in the list or-combined; this complete OR field is and-combined with outer fields in the parent filter type.

createdAtDateTime

Checks if createdAt equals a specified value.

If an index exists on createdAt, it can be used.

The instant this object has been created

createdAt_gtDateTime

Checks if createdAt is greater than a specified value.

The instant this object has been created

createdAt_gteDateTime

Checks if createdAt is greater or equal a specified value.

The instant this object has been created

createdAt_inDateTime

Checks if createdAt is equal to one of the specified values.

The instant this object has been created

createdAt_ltDateTime

Checks if createdAt is less than a specified value.

The instant this object has been created

createdAt_lteDateTime

Checks if createdAt is less or equal a specified value.

The instant this object has been created

createdAt_notDateTime

Checks if createdAt does not equal a specified value

The instant this object has been created

createdAt_not_inDateTime

Checks if createdAt is not equal to one of the specified values.

The instant this object has been created

cveReferences_emptyBoolean

Checks if cveReferences is an empty list (true) or a non-empty list or null (false).

cveReferences_everyCveReferencesFilter

Makes sure all items in cveReferences match a certain filter.

cveReferences_noneCveReferencesFilter

Makes sure none of the items in cveReferences match a certain filter.

Note that you can specify the empty object for this filter to make sure cveReferences has no items.

cveReferences_someCveReferencesFilter

Makes sure at least one of the items in "cveReferences" matches a certain filter.

Note that you can specify the empty object for this filter to make sure cveReferences has at least one item.

idID

Checks if id equals a specified value.

If an index exists on id, it can be used.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

id_gtID

Checks if id is greater than a specified value.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

id_gteID

Checks if id is greater or equal a specified value.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

id_inID

Checks if id is equal to one of the specified values.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

id_ltID

Checks if id is less than a specified value.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

id_lteID

Checks if id is less or equal a specified value.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

id_notID

Checks if id does not equal a specified value

An auto-generated string that identifies this child entity uniquely within this collection of child entities

id_not_inID

Checks if id is not equal to one of the specified values.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

malpediaUrlString

Checks if malpediaUrl equals a specified string, case-sensitively.

If an index exists on malpediaUrl, it can be used.

See also like for a case-insensitive filter.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_containsString

Checks if malpediaUrl contains a specified string, case-sensitively.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_ends_withString

Checks if malpediaUrl ends with a specified string, case-sensitively.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_gtString

Checks if malpediaUrl is greater than a specified value.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_gteString

Checks if malpediaUrl is greater or equal a specified value.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_inString

Checks if malpediaUrl is equal to one of the specified values.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_likeString

Matches malpediaUrl against a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

If an index exists on malpediaUrl, it can be used for the literal prefix (the part until the first placeholder).

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_ltString

Checks if malpediaUrl is less than a specified value.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_lteString

Checks if malpediaUrl is less or equal a specified value.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_notString

Checks if malpediaUrl does not equal a specified string, case-sensitively.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_not_containsString

Checks if malpediaUrl does not contain a specified string, case-sensitively.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_not_ends_withString

Checks if malpediaUrl does not end with a specified string, case-sensitively.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_not_inString

Checks if malpediaUrl is not equal to one of the specified values.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_not_likeString

Checks if malpediaUrl does not match a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_not_starts_withString

Checks if malpediaUrl does not start with a specified string, case-sensitively.

Never uses an index. Consider using not_like (with the % placeholder) for a case-insensitive filter that can use an index.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

malpediaUrl_starts_withString

Checks if malpediaUrl starts with a specified string, case-sensitively.

Never uses an index. Consider using like (with the % placeholder) for a case-insensitive filter that can use an index.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

mispIdString

Checks if mispId equals a specified string, case-sensitively.

If an index exists on mispId, it can be used.

See also like for a case-insensitive filter.

mispId_containsString

Checks if mispId contains a specified string, case-sensitively.

mispId_ends_withString

Checks if mispId ends with a specified string, case-sensitively.

mispId_gtString

Checks if mispId is greater than a specified value.

mispId_gteString

Checks if mispId is greater or equal a specified value.

mispId_inString

Checks if mispId is equal to one of the specified values.

mispId_likeString

Matches mispId against a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

If an index exists on mispId, it can be used for the literal prefix (the part until the first placeholder).

mispId_ltString

Checks if mispId is less than a specified value.

mispId_lteString

Checks if mispId is less or equal a specified value.

mispId_notString

Checks if mispId does not equal a specified string, case-sensitively.

mispId_not_containsString

Checks if mispId does not contain a specified string, case-sensitively.

mispId_not_ends_withString

Checks if mispId does not end with a specified string, case-sensitively.

mispId_not_inString

Checks if mispId is not equal to one of the specified values.

mispId_not_likeString

Checks if mispId does not match a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

mispId_not_starts_withString

Checks if mispId does not start with a specified string, case-sensitively.

Never uses an index. Consider using not_like (with the % placeholder) for a case-insensitive filter that can use an index.

mispId_starts_withString

Checks if mispId starts with a specified string, case-sensitively.

Never uses an index. Consider using like (with the % placeholder) for a case-insensitive filter that can use an index.

mispThreatActorNames_emptyBoolean

Checks if mispThreatActorNames is an empty list (true) or a non-empty list or null (false).

mispThreatActorNames_everyStringFilter

Makes sure all items in mispThreatActorNames match a certain filter.

mispThreatActorNames_noneStringFilter

Makes sure none of the items in mispThreatActorNames match a certain filter.

Note that you can specify the empty object for this filter to make sure mispThreatActorNames has no items.

mispThreatActorNames_someStringFilter

Makes sure at least one of the items in "mispThreatActorNames" matches a certain filter.

Note that you can specify the empty object for this filter to make sure mispThreatActorNames has at least one item.

mitreIdString

Checks if mitreId equals a specified string, case-sensitively.

If an index exists on mitreId, it can be used.

See also like for a case-insensitive filter.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_containsString

Checks if mitreId contains a specified string, case-sensitively.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_ends_withString

Checks if mitreId ends with a specified string, case-sensitively.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_gtString

Checks if mitreId is greater than a specified value.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_gteString

Checks if mitreId is greater or equal a specified value.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_inString

Checks if mitreId is equal to one of the specified values.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_likeString

Matches mitreId against a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

If an index exists on mitreId, it can be used for the literal prefix (the part until the first placeholder).

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_ltString

Checks if mitreId is less than a specified value.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_lteString

Checks if mitreId is less or equal a specified value.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_notString

Checks if mitreId does not equal a specified string, case-sensitively.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_not_containsString

Checks if mitreId does not contain a specified string, case-sensitively.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_not_ends_withString

Checks if mitreId does not end with a specified string, case-sensitively.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_not_inString

Checks if mitreId is not equal to one of the specified values.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_not_likeString

Checks if mitreId does not match a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_not_starts_withString

Checks if mitreId does not start with a specified string, case-sensitively.

Never uses an index. Consider using not_like (with the % placeholder) for a case-insensitive filter that can use an index.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreId_starts_withString

Checks if mitreId starts with a specified string, case-sensitively.

Never uses an index. Consider using like (with the % placeholder) for a case-insensitive filter that can use an index.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

mitreThreatActorNames_emptyBoolean

Checks if mitreThreatActorNames is an empty list (true) or a non-empty list or null (false).

mitreThreatActorNames_everyStringFilter

Makes sure all items in mitreThreatActorNames match a certain filter.

mitreThreatActorNames_noneStringFilter

Makes sure none of the items in mitreThreatActorNames match a certain filter.

Note that you can specify the empty object for this filter to make sure mitreThreatActorNames has no items.

mitreThreatActorNames_someStringFilter

Makes sure at least one of the items in "mitreThreatActorNames" matches a certain filter.

Note that you can specify the empty object for this filter to make sure mitreThreatActorNames has at least one item.

threatActorNameString

Checks if threatActorName equals a specified string, case-sensitively.

If an index exists on threatActorName, it can be used.

See also like for a case-insensitive filter.

The name the security community generally uses to refer to the threat actor

threatActorName_containsString

Checks if threatActorName contains a specified string, case-sensitively.

The name the security community generally uses to refer to the threat actor

threatActorName_ends_withString

Checks if threatActorName ends with a specified string, case-sensitively.

The name the security community generally uses to refer to the threat actor

threatActorName_gtString

Checks if threatActorName is greater than a specified value.

The name the security community generally uses to refer to the threat actor

threatActorName_gteString

Checks if threatActorName is greater or equal a specified value.

The name the security community generally uses to refer to the threat actor

threatActorName_inString

Checks if threatActorName is equal to one of the specified values.

The name the security community generally uses to refer to the threat actor

threatActorName_likeString

Matches threatActorName against a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

If an index exists on threatActorName, it can be used for the literal prefix (the part until the first placeholder).

The name the security community generally uses to refer to the threat actor

threatActorName_ltString

Checks if threatActorName is less than a specified value.

The name the security community generally uses to refer to the threat actor

threatActorName_lteString

Checks if threatActorName is less or equal a specified value.

The name the security community generally uses to refer to the threat actor

threatActorName_notString

Checks if threatActorName does not equal a specified string, case-sensitively.

The name the security community generally uses to refer to the threat actor

threatActorName_not_containsString

Checks if threatActorName does not contain a specified string, case-sensitively.

The name the security community generally uses to refer to the threat actor

threatActorName_not_ends_withString

Checks if threatActorName does not end with a specified string, case-sensitively.

The name the security community generally uses to refer to the threat actor

threatActorName_not_inString

Checks if threatActorName is not equal to one of the specified values.

The name the security community generally uses to refer to the threat actor

threatActorName_not_likeString

Checks if threatActorName does not match a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

The name the security community generally uses to refer to the threat actor

threatActorName_not_starts_withString

Checks if threatActorName does not start with a specified string, case-sensitively.

Never uses an index. Consider using not_like (with the % placeholder) for a case-insensitive filter that can use an index.

The name the security community generally uses to refer to the threat actor

threatActorName_starts_withString

Checks if threatActorName starts with a specified string, case-sensitively.

Never uses an index. Consider using like (with the % placeholder) for a case-insensitive filter that can use an index.

The name the security community generally uses to refer to the threat actor

updatedAtDateTime

Checks if updatedAt equals a specified value.

If an index exists on updatedAt, it can be used.

The instant this object has been updated the last time

updatedAt_gtDateTime

Checks if updatedAt is greater than a specified value.

The instant this object has been updated the last time

updatedAt_gteDateTime

Checks if updatedAt is greater or equal a specified value.

The instant this object has been updated the last time

updatedAt_inDateTime

Checks if updatedAt is equal to one of the specified values.

The instant this object has been updated the last time

updatedAt_ltDateTime

Checks if updatedAt is less than a specified value.

The instant this object has been updated the last time

updatedAt_lteDateTime

Checks if updatedAt is less or equal a specified value.

The instant this object has been updated the last time

updatedAt_notDateTime

Checks if updatedAt does not equal a specified value

The instant this object has been updated the last time

updatedAt_not_inDateTime

Checks if updatedAt is not equal to one of the specified values.

The instant this object has been updated the last time

vendorNameForThreatActors_emptyBoolean

Checks if vendorNameForThreatActors is an empty list (true) or a non-empty list or null (false).

vendorNameForThreatActors_everyVendorNameForThreatActorFilter

Makes sure all items in vendorNameForThreatActors match a certain filter.

vendorNameForThreatActors_noneVendorNameForThreatActorFilter

Makes sure none of the items in vendorNameForThreatActors match a certain filter.

Note that you can specify the empty object for this filter to make sure vendorNameForThreatActors has no items.

vendorNameForThreatActors_someVendorNameForThreatActorFilter

Makes sure at least one of the items in "vendorNameForThreatActors" matches a certain filter.

Note that you can specify the empty object for this filter to make sure vendorNameForThreatActors has at least one item.


This page was generated: 2024-05-17