Filter: ThreatActorFilter

A field that checks if all filters in the list apply

If the list is empty, this filter applies to all objects.

A field that checks if any of the filters in the list apply.

If the list is empty, this filter applies to no objects.

Note that only the items in the list or-combined; this complete OR field is and-combined with outer fields in the parent filter type.

Checks if createdAt equals a specified value.

If an index exists on createdAt, it can be used.

The instant this object has been created

Checks if createdAt is greater than a specified value.

The instant this object has been created

Checks if createdAt is greater or equal a specified value.

The instant this object has been created

Checks if createdAt is equal to one of the specified values.

The instant this object has been created

Checks if createdAt is less than a specified value.

The instant this object has been created

Checks if createdAt is less or equal a specified value.

The instant this object has been created

Checks if createdAt does not equal a specified value

The instant this object has been created

Checks if createdAt is not equal to one of the specified values.

The instant this object has been created

Checks if cveReferences is an empty list (true) or a non-empty list or null (false).

Makes sure all items in cveReferences match a certain filter.

Makes sure none of the items in cveReferences match a certain filter.

Note that you can specify the empty object for this filter to make sure cveReferences has no items.

Makes sure at least one of the items in "cveReferences" matches a certain filter.

Note that you can specify the empty object for this filter to make sure cveReferences has at least one item.

Checks if id equals a specified value.

If an index exists on id, it can be used.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

Checks if id is greater than a specified value.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

Checks if id is greater or equal a specified value.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

Checks if id is equal to one of the specified values.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

Checks if id is less than a specified value.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

Checks if id is less or equal a specified value.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

Checks if id does not equal a specified value

An auto-generated string that identifies this child entity uniquely within this collection of child entities

Checks if id is not equal to one of the specified values.

An auto-generated string that identifies this child entity uniquely within this collection of child entities

Checks if malpediaUrl equals a specified string, case-sensitively.

If an index exists on malpediaUrl, it can be used.

See also like for a case-insensitive filter.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl contains a specified string, case-sensitively.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl ends with a specified string, case-sensitively.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl is greater than a specified value.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl is greater or equal a specified value.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl is equal to one of the specified values.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Matches malpediaUrl against a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

If an index exists on malpediaUrl, it can be used for the literal prefix (the part until the first placeholder).

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl is less than a specified value.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl is less or equal a specified value.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl does not equal a specified string, case-sensitively.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl does not contain a specified string, case-sensitively.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl does not end with a specified string, case-sensitively.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl is not equal to one of the specified values.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl does not match a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl does not start with a specified string, case-sensitively.

Never uses an index. Consider using not_like (with the % placeholder) for a case-insensitive filter that can use an index.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if malpediaUrl starts with a specified string, case-sensitively.

Never uses an index. Consider using like (with the % placeholder) for a case-insensitive filter that can use an index.

The URL to the Malpedia article about the threat actor. For details, see https://malpedia.caad.fkie.fraunhofer.de/actors

Checks if mispId equals a specified string, case-sensitively.

If an index exists on mispId, it can be used.

See also like for a case-insensitive filter.

Checks if mispId contains a specified string, case-sensitively.

Checks if mispId ends with a specified string, case-sensitively.

Checks if mispId is greater than a specified value.

Checks if mispId is greater or equal a specified value.

Checks if mispId is equal to one of the specified values.

Matches mispId against a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

If an index exists on mispId, it can be used for the literal prefix (the part until the first placeholder).

Checks if mispId is less than a specified value.

Checks if mispId is less or equal a specified value.

Checks if mispId does not equal a specified string, case-sensitively.

Checks if mispId does not contain a specified string, case-sensitively.

Checks if mispId does not end with a specified string, case-sensitively.

Checks if mispId is not equal to one of the specified values.

Checks if mispId does not match a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

Checks if mispId does not start with a specified string, case-sensitively.

Never uses an index. Consider using not_like (with the % placeholder) for a case-insensitive filter that can use an index.

Checks if mispId starts with a specified string, case-sensitively.

Never uses an index. Consider using like (with the % placeholder) for a case-insensitive filter that can use an index.

Checks if mispThreatActorNames is an empty list (true) or a non-empty list or null (false).

Makes sure all items in mispThreatActorNames match a certain filter.

Makes sure none of the items in mispThreatActorNames match a certain filter.

Note that you can specify the empty object for this filter to make sure mispThreatActorNames has no items.

Makes sure at least one of the items in "mispThreatActorNames" matches a certain filter.

Note that you can specify the empty object for this filter to make sure mispThreatActorNames has at least one item.

Checks if mitreId equals a specified string, case-sensitively.

If an index exists on mitreId, it can be used.

See also like for a case-insensitive filter.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId contains a specified string, case-sensitively.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId ends with a specified string, case-sensitively.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId is greater than a specified value.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId is greater or equal a specified value.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId is equal to one of the specified values.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Matches mitreId against a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

If an index exists on mitreId, it can be used for the literal prefix (the part until the first placeholder).

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId is less than a specified value.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId is less or equal a specified value.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId does not equal a specified string, case-sensitively.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId does not contain a specified string, case-sensitively.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId does not end with a specified string, case-sensitively.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId is not equal to one of the specified values.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId does not match a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId does not start with a specified string, case-sensitively.

Never uses an index. Consider using not_like (with the % placeholder) for a case-insensitive filter that can use an index.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreId starts with a specified string, case-sensitively.

Never uses an index. Consider using like (with the % placeholder) for a case-insensitive filter that can use an index.

The ID that Mitre has given to a threat actor or Group. For details, see https://attack.mitre.org/groups/

Checks if mitreThreatActorNames is an empty list (true) or a non-empty list or null (false).

Makes sure all items in mitreThreatActorNames match a certain filter.

Makes sure none of the items in mitreThreatActorNames match a certain filter.

Note that you can specify the empty object for this filter to make sure mitreThreatActorNames has no items.

Makes sure at least one of the items in "mitreThreatActorNames" matches a certain filter.

Note that you can specify the empty object for this filter to make sure mitreThreatActorNames has at least one item.

Checks if threatActorName equals a specified string, case-sensitively.

If an index exists on threatActorName, it can be used.

See also like for a case-insensitive filter.

The name the security community generally uses to refer to the threat actor

Checks if threatActorName contains a specified string, case-sensitively.

The name the security community generally uses to refer to the threat actor

Checks if threatActorName ends with a specified string, case-sensitively.

The name the security community generally uses to refer to the threat actor

Checks if threatActorName is greater than a specified value.

The name the security community generally uses to refer to the threat actor

Checks if threatActorName is greater or equal a specified value.

The name the security community generally uses to refer to the threat actor

Checks if threatActorName is equal to one of the specified values.

The name the security community generally uses to refer to the threat actor

Matches threatActorName against a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

If an index exists on threatActorName, it can be used for the literal prefix (the part until the first placeholder).

The name the security community generally uses to refer to the threat actor

Checks if threatActorName is less than a specified value.

The name the security community generally uses to refer to the threat actor

Checks if threatActorName is less or equal a specified value.

The name the security community generally uses to refer to the threat actor

Checks if threatActorName does not equal a specified string, case-sensitively.

The name the security community generally uses to refer to the threat actor

Checks if threatActorName does not contain a specified string, case-sensitively.

The name the security community generally uses to refer to the threat actor

Checks if threatActorName does not end with a specified string, case-sensitively.

The name the security community generally uses to refer to the threat actor

Checks if threatActorName is not equal to one of the specified values.

The name the security community generally uses to refer to the threat actor

Checks if threatActorName does not match a pattern case-insensitively with the following placeholders:

% matches any sequence of characters, including the empty string; _ matches exactly one character; \ can be used to escape the placeholders (use \\ for a literal backslash);

The name the security community generally uses to refer to the threat actor

Checks if threatActorName does not start with a specified string, case-sensitively.

Never uses an index. Consider using not_like (with the % placeholder) for a case-insensitive filter that can use an index.

The name the security community generally uses to refer to the threat actor

Checks if threatActorName starts with a specified string, case-sensitively.

Never uses an index. Consider using like (with the % placeholder) for a case-insensitive filter that can use an index.

The name the security community generally uses to refer to the threat actor

Checks if updatedAt equals a specified value.

If an index exists on updatedAt, it can be used.

The instant this object has been updated the last time

Checks if updatedAt is greater than a specified value.

The instant this object has been updated the last time

Checks if updatedAt is greater or equal a specified value.

The instant this object has been updated the last time

Checks if updatedAt is equal to one of the specified values.

The instant this object has been updated the last time

Checks if updatedAt is less than a specified value.

The instant this object has been updated the last time

Checks if updatedAt is less or equal a specified value.

The instant this object has been updated the last time

Checks if updatedAt does not equal a specified value

The instant this object has been updated the last time

Checks if updatedAt is not equal to one of the specified values.

The instant this object has been updated the last time

Checks if vendorNameForThreatActors is an empty list (true) or a non-empty list or null (false).

Makes sure all items in vendorNameForThreatActors match a certain filter.

Makes sure none of the items in vendorNameForThreatActors match a certain filter.

Note that you can specify the empty object for this filter to make sure vendorNameForThreatActors has no items.

Makes sure at least one of the items in "vendorNameForThreatActors" matches a certain filter.

Note that you can specify the empty object for this filter to make sure vendorNameForThreatActors has at least one item.