Request: Add datetime to detection

Question

Request: Add datetime to detection

friendlyc0de opened this issue 3 years ago · 2 comments

Hello,

Thank you for the great datasets. Is it possible to add timestamps or datetimes (UTC) to each of the detections, so that individuals or organization can better correlate, verify, and remediate any identified activity?

Thanks very much

Answer 1 · 2021-10-15T19:32:12.000Z

Hi,

That data is already there on the c2_configs folder. It's the field first seen. The feed files are just rotating live date for C2s live in the last 7 or 30 days.

Hope this helps! Please let me know if I can close the issue. To add it to the feed the way the data is currently structured won't be a simple task, I can look into it but it may take a bit of time.

Thank you!

Answer 2 · 2021-10-15T19:56:58.000Z

Thank you for your quick response - this makes a lot of sense, thank you for explaining the structure of the data.