Showing:

Annotations
Diagrams
Source
Used by
Main schema Win_System_Object.xsd
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
This schema was originally developed by The MITRE Corporation. The CybOX XML Schema implementation is maintained by The MITRE Corporation and developed by the open CybOX Community. For more information, including how to get involved in the effort and how to submit change requests, please visit the CybOX website at http://cybox.mitre.org.
Element WinSystemObj:Windows_System
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
Windows_System object is intended to characterize Windows systems.
Diagram
Diagram Win_System_Object_xsd.tmp#WindowsSystemObjectType_Domain Win_System_Object_xsd.tmp#WindowsSystemObjectType_Global_Flag_List Win_System_Object_xsd.tmp#WindowsSystemObjectType_NetBIOS_Name Win_System_Object_xsd.tmp#WindowsSystemObjectType_Open_Handle_List Win_System_Object_xsd.tmp#WindowsSystemObjectType_Product_ID Win_System_Object_xsd.tmp#WindowsSystemObjectType_Product_Name Win_System_Object_xsd.tmp#WindowsSystemObjectType_Registered_Organization Win_System_Object_xsd.tmp#WindowsSystemObjectType_Registered_Owner Win_System_Object_xsd.tmp#WindowsSystemObjectType_Windows_Directory Win_System_Object_xsd.tmp#WindowsSystemObjectType_Windows_System_Directory Win_System_Object_xsd.tmp#WindowsSystemObjectType_Windows_Temp_Directory Win_System_Object_xsd.tmp#WindowsSystemObjectType
Type WinSystemObj:WindowsSystemObjectType
Type hierarchy
Children WinSystemObj:Domain, WinSystemObj:Global_Flag_List, WinSystemObj:NetBIOS_Name, WinSystemObj:Open_Handle_List, WinSystemObj:Product_ID, WinSystemObj:Product_Name, WinSystemObj:Registered_Organization, WinSystemObj:Registered_Owner, WinSystemObj:Windows_Directory, WinSystemObj:Windows_System_Directory, WinSystemObj:Windows_Temp_Directory
Source
 
<xs:element name="Windows_System" type="WinSystemObj:WindowsSystemObjectType">
  <xs:annotation>
    <xs:documentation>Windows_System object is intended to characterize Windows systems.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:WindowsSystemObjectType / WinSystemObj:Domain
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The domain that the system belongs to.
Diagram
Diagram
Type StringObjectPropertyType
Source
 
<xs:element name="Domain" type="cyboxCommon:StringObjectPropertyType" minOccurs="0" maxOccurs="unbounded">
  <xs:annotation>
    <xs:documentation>The domain that the system belongs to.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:WindowsSystemObjectType / WinSystemObj:Global_Flag_List
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
A list of global flags. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549557(v=vs.85).aspx.
Diagram
Diagram Win_System_Object_xsd.tmp#GlobalFlagListType_Global_Flag Win_System_Object_xsd.tmp#GlobalFlagListType
Type WinSystemObj:GlobalFlagListType
Children WinSystemObj:Global_Flag
Source
 
<xs:element name="Global_Flag_List" type="WinSystemObj:GlobalFlagListType" minOccurs="0">
  <xs:annotation>
    <xs:documentation>A list of global flags. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549557(v=vs.85).aspx.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:GlobalFlagListType / WinSystemObj:Global_Flag
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
This characterizes Windows global flags. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549557(v=vs.85).aspx.
Diagram
Diagram Win_System_Object_xsd.tmp#GlobalFlagType_Abbreviation Win_System_Object_xsd.tmp#GlobalFlagType_Destination Win_System_Object_xsd.tmp#GlobalFlagType_Hexadecimal_Value Win_System_Object_xsd.tmp#GlobalFlagType_Symbolic_Name Win_System_Object_xsd.tmp#GlobalFlagType
Type WinSystemObj:GlobalFlagType
Children WinSystemObj:Abbreviation, WinSystemObj:Destination, WinSystemObj:Hexadecimal_Value, WinSystemObj:Symbolic_Name
Source
 
<xs:element name="Global_Flag" type="WinSystemObj:GlobalFlagType" maxOccurs="unbounded">
  <xs:annotation>
    <xs:documentation>This characterizes Windows global flags. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549557(v=vs.85).aspx.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:GlobalFlagType / WinSystemObj:Abbreviation
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The abbreviation of a global flag. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549646(v=vs.85).aspx.
Diagram
Diagram
Type StringObjectPropertyType
Source
 
<xs:element name="Abbreviation" type="cyboxCommon:StringObjectPropertyType" minOccurs="0">
  <xs:annotation>
    <xs:documentation>The abbreviation of a global flag. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549646(v=vs.85).aspx.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:GlobalFlagType / WinSystemObj:Destination
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The destination of a global flag. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549646(v=vs.85).aspx.
Diagram
Diagram
Type StringObjectPropertyType
Source
 
<xs:element name="Destination" type="cyboxCommon:StringObjectPropertyType" minOccurs="0" maxOccurs="1">
  <xs:annotation>
    <xs:documentation>The destination of a global flag. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549646(v=vs.85).aspx.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:GlobalFlagType / WinSystemObj:Hexadecimal_Value
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The hexadecimal value of a global flag. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549646(v=vs.85).aspx.
Diagram
Diagram
Type HexBinaryObjectPropertyType
Source
 
<xs:element name="Hexadecimal_Value" type="cyboxCommon:HexBinaryObjectPropertyType" minOccurs="0">
  <xs:annotation>
    <xs:documentation>The hexadecimal value of a global flag. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549646(v=vs.85).aspx.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:GlobalFlagType / WinSystemObj:Symbolic_Name
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The symbolic name of a global flag. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549646(v=vs.85).aspx.
Diagram
Diagram
Type StringObjectPropertyType
Source
 
<xs:element name="Symbolic_Name" type="cyboxCommon:StringObjectPropertyType" minOccurs="0">
  <xs:annotation>
    <xs:documentation>The symbolic name of a global flag. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549646(v=vs.85).aspx.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:WindowsSystemObjectType / WinSystemObj:NetBIOS_Name
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The NetBIOS_Name field specifies the NetBIOS (Network Basic Input/Output System) name of the Windows system. This is not the same as the host name.
Diagram
Diagram
Type StringObjectPropertyType
Source
 
<xs:element name="NetBIOS_Name" type="cyboxCommon:StringObjectPropertyType" minOccurs="0">
  <xs:annotation>
    <xs:documentation>The NetBIOS_Name field specifies the NetBIOS (Network Basic Input/Output System) name of the Windows system. This is not the same as the host name.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:WindowsSystemObjectType / WinSystemObj:Open_Handle_List
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The Open_Handle_List field specifies the list of open handles for the Windows system.
Diagram
Diagram
Type WindowsHandleListType
Source
 
<xs:element name="Open_Handle_List" type="WinHandleObj:WindowsHandleListType" minOccurs="0">
  <xs:annotation>
    <xs:documentation>The Open_Handle_List field specifies the list of open handles for the Windows system.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:WindowsSystemObjectType / WinSystemObj:Product_ID
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The Product ID. See also: http://support.microsoft.com/gp/pidwin.
Diagram
Diagram
Type StringObjectPropertyType
Source
 
<xs:element name="Product_ID" type="cyboxCommon:StringObjectPropertyType" minOccurs="0" maxOccurs="1">
  <xs:annotation>
    <xs:documentation>The Product ID. See also: http://support.microsoft.com/gp/pidwin.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:WindowsSystemObjectType / WinSystemObj:Product_Name
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The ProductName of the current installation of Windows. This is typically found in HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion!ProductName.
Diagram
Diagram
Type StringObjectPropertyType
Source
 
<xs:element name="Product_Name" type="cyboxCommon:StringObjectPropertyType" minOccurs="0" maxOccurs="1">
  <xs:annotation>
    <xs:documentation>The ProductName of the current installation of Windows. This is typically found in HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion!ProductName.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:WindowsSystemObjectType / WinSystemObj:Registered_Organization
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The organization that this copy of Windows is registered to.
Diagram
Diagram
Type StringObjectPropertyType
Source
 
<xs:element name="Registered_Organization" type="cyboxCommon:StringObjectPropertyType" minOccurs="0" maxOccurs="1">
  <xs:annotation>
    <xs:documentation>The organization that this copy of Windows is registered to.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:WindowsSystemObjectType / WinSystemObj:Registered_Owner
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The person or organization that is the registered owner of this copy of Windows.
Diagram
Diagram
Type StringObjectPropertyType
Source
 
<xs:element name="Registered_Owner" type="cyboxCommon:StringObjectPropertyType" minOccurs="0" maxOccurs="1">
  <xs:annotation>
    <xs:documentation>The person or organization that is the registered owner of this copy of Windows.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:WindowsSystemObjectType / WinSystemObj:Windows_Directory
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The Windows_Directory field specifies the fully-qualified path to the Windows install directory.
Diagram
Diagram
Type StringObjectPropertyType
Source
 
<xs:element name="Windows_Directory" type="cyboxCommon:StringObjectPropertyType" minOccurs="0">
  <xs:annotation>
    <xs:documentation>The Windows_Directory field specifies the fully-qualified path to the Windows install directory.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:WindowsSystemObjectType / WinSystemObj:Windows_System_Directory
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The Windows_System_Directory field specifies the fully-qualified path to the Windows system directory.
Diagram
Diagram
Type StringObjectPropertyType
Source
 
<xs:element name="Windows_System_Directory" type="cyboxCommon:StringObjectPropertyType" minOccurs="0">
  <xs:annotation>
    <xs:documentation>The Windows_System_Directory field specifies the fully-qualified path to the Windows system directory.</xs:documentation>
  </xs:annotation>
</xs:element>
Element WinSystemObj:WindowsSystemObjectType / WinSystemObj:Windows_Temp_Directory
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The Windows_Temp_Directory field specifies the fully-qualified path to the Windows temporary files directory.
Diagram
Diagram
Type StringObjectPropertyType
Source
 
<xs:element name="Windows_Temp_Directory" type="cyboxCommon:StringObjectPropertyType" minOccurs="0">
  <xs:annotation>
    <xs:documentation>The Windows_Temp_Directory field specifies the fully-qualified path to the Windows temporary files directory.</xs:documentation>
  </xs:annotation>
</xs:element>
Complex Type WinSystemObj:WindowsSystemObjectType
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The WindowsSystemObjectType type is intended to characterize Windows systems.
Diagram
Diagram Win_System_Object_xsd.tmp#WindowsSystemObjectType_Domain Win_System_Object_xsd.tmp#WindowsSystemObjectType_Global_Flag_List Win_System_Object_xsd.tmp#WindowsSystemObjectType_NetBIOS_Name Win_System_Object_xsd.tmp#WindowsSystemObjectType_Open_Handle_List Win_System_Object_xsd.tmp#WindowsSystemObjectType_Product_ID Win_System_Object_xsd.tmp#WindowsSystemObjectType_Product_Name Win_System_Object_xsd.tmp#WindowsSystemObjectType_Registered_Organization Win_System_Object_xsd.tmp#WindowsSystemObjectType_Registered_Owner Win_System_Object_xsd.tmp#WindowsSystemObjectType_Windows_Directory Win_System_Object_xsd.tmp#WindowsSystemObjectType_Windows_System_Directory Win_System_Object_xsd.tmp#WindowsSystemObjectType_Windows_Temp_Directory
Type extension of SystemObjectType
Type hierarchy
Used by
Children WinSystemObj:Domain, WinSystemObj:Global_Flag_List, WinSystemObj:NetBIOS_Name, WinSystemObj:Open_Handle_List, WinSystemObj:Product_ID, WinSystemObj:Product_Name, WinSystemObj:Registered_Organization, WinSystemObj:Registered_Owner, WinSystemObj:Windows_Directory, WinSystemObj:Windows_System_Directory, WinSystemObj:Windows_Temp_Directory
Source
 
<xs:complexType name="WindowsSystemObjectType" mixed="false">
  <xs:annotation>
    <xs:documentation>The WindowsSystemObjectType type is intended to characterize Windows systems.</xs:documentation>
  </xs:annotation>
  <xs:complexContent>
    <xs:extension base="SystemObj:SystemObjectType">
      <xs:sequence>
        <xs:element name="Domain" type="cyboxCommon:StringObjectPropertyType" minOccurs="0" maxOccurs="unbounded">
          <xs:annotation>
            <xs:documentation>The domain that the system belongs to.</xs:documentation>
          </xs:annotation>
        </xs:element>
        <xs:element name="Global_Flag_List" type="WinSystemObj:GlobalFlagListType" minOccurs="0">
          <xs:annotation>
            <xs:documentation>A list of global flags. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549557(v=vs.85).aspx.</xs:documentation>
          </xs:annotation>
        </xs:element>
        <xs:element name="NetBIOS_Name" type="cyboxCommon:StringObjectPropertyType" minOccurs="0">
          <xs:annotation>
            <xs:documentation>The NetBIOS_Name field specifies the NetBIOS (Network Basic Input/Output System) name of the Windows system. This is not the same as the host name.</xs:documentation>
          </xs:annotation>
        </xs:element>
        <xs:element name="Open_Handle_List" type="WinHandleObj:WindowsHandleListType" minOccurs="0">
          <xs:annotation>
            <xs:documentation>The Open_Handle_List field specifies the list of open handles for the Windows system.</xs:documentation>
          </xs:annotation>
        </xs:element>
        <xs:element name="Product_ID" type="cyboxCommon:StringObjectPropertyType" minOccurs="0" maxOccurs="1">
          <xs:annotation>
            <xs:documentation>The Product ID. See also: http://support.microsoft.com/gp/pidwin.</xs:documentation>
          </xs:annotation>
        </xs:element>
        <xs:element name="Product_Name" type="cyboxCommon:StringObjectPropertyType" minOccurs="0" maxOccurs="1">
          <xs:annotation>
            <xs:documentation>The ProductName of the current installation of Windows. This is typically found in HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion!ProductName.</xs:documentation>
          </xs:annotation>
        </xs:element>
        <xs:element name="Registered_Organization" type="cyboxCommon:StringObjectPropertyType" minOccurs="0" maxOccurs="1">
          <xs:annotation>
            <xs:documentation>The organization that this copy of Windows is registered to.</xs:documentation>
          </xs:annotation>
        </xs:element>
        <xs:element name="Registered_Owner" type="cyboxCommon:StringObjectPropertyType" minOccurs="0" maxOccurs="1">
          <xs:annotation>
            <xs:documentation>The person or organization that is the registered owner of this copy of Windows.</xs:documentation>
          </xs:annotation>
        </xs:element>
        <xs:element name="Windows_Directory" type="cyboxCommon:StringObjectPropertyType" minOccurs="0">
          <xs:annotation>
            <xs:documentation>The Windows_Directory field specifies the fully-qualified path to the Windows install directory.</xs:documentation>
          </xs:annotation>
        </xs:element>
        <xs:element name="Windows_System_Directory" type="cyboxCommon:StringObjectPropertyType" minOccurs="0">
          <xs:annotation>
            <xs:documentation>The Windows_System_Directory field specifies the fully-qualified path to the Windows system directory.</xs:documentation>
          </xs:annotation>
        </xs:element>
        <xs:element name="Windows_Temp_Directory" type="cyboxCommon:StringObjectPropertyType" minOccurs="0">
          <xs:annotation>
            <xs:documentation>The Windows_Temp_Directory field specifies the fully-qualified path to the Windows temporary files directory.</xs:documentation>
          </xs:annotation>
        </xs:element>
      </xs:sequence>
    </xs:extension>
  </xs:complexContent>
</xs:complexType>
Complex Type WinSystemObj:GlobalFlagListType
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The GlobalFlagListType type is a listing of all Windows global flags.
Diagram
Diagram Win_System_Object_xsd.tmp#GlobalFlagListType_Global_Flag
Used by
Children WinSystemObj:Global_Flag
Source
 
<xs:complexType name="GlobalFlagListType">
  <xs:annotation>
    <xs:documentation>The GlobalFlagListType type is a listing of all Windows global flags.</xs:documentation>
  </xs:annotation>
  <xs:sequence>
    <xs:element name="Global_Flag" type="WinSystemObj:GlobalFlagType" maxOccurs="unbounded">
      <xs:annotation>
        <xs:documentation>This characterizes Windows global flags. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549557(v=vs.85).aspx.</xs:documentation>
      </xs:annotation>
    </xs:element>
  </xs:sequence>
</xs:complexType>
Complex Type WinSystemObj:GlobalFlagType
Namespace http://cybox.mitre.org/objects#WinSystemObject-2
Annotations
 
The GlobalFlagType type is intended to characterize Windows global flags.
Diagram
Diagram Win_System_Object_xsd.tmp#GlobalFlagType_Abbreviation Win_System_Object_xsd.tmp#GlobalFlagType_Destination Win_System_Object_xsd.tmp#GlobalFlagType_Hexadecimal_Value Win_System_Object_xsd.tmp#GlobalFlagType_Symbolic_Name
Used by
Children WinSystemObj:Abbreviation, WinSystemObj:Destination, WinSystemObj:Hexadecimal_Value, WinSystemObj:Symbolic_Name
Source
 
<xs:complexType name="GlobalFlagType">
  <xs:annotation>
    <xs:documentation>The GlobalFlagType type is intended to characterize Windows global flags.</xs:documentation>
  </xs:annotation>
  <xs:sequence>
    <xs:element name="Abbreviation" type="cyboxCommon:StringObjectPropertyType" minOccurs="0">
      <xs:annotation>
        <xs:documentation>The abbreviation of a global flag. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549646(v=vs.85).aspx.</xs:documentation>
      </xs:annotation>
    </xs:element>
    <xs:element name="Destination" type="cyboxCommon:StringObjectPropertyType" minOccurs="0" maxOccurs="1">
      <xs:annotation>
        <xs:documentation>The destination of a global flag. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549646(v=vs.85).aspx.</xs:documentation>
      </xs:annotation>
    </xs:element>
    <xs:element name="Hexadecimal_Value" type="cyboxCommon:HexBinaryObjectPropertyType" minOccurs="0">
      <xs:annotation>
        <xs:documentation>The hexadecimal value of a global flag. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549646(v=vs.85).aspx.</xs:documentation>
      </xs:annotation>
    </xs:element>
    <xs:element name="Symbolic_Name" type="cyboxCommon:StringObjectPropertyType" minOccurs="0">
      <xs:annotation>
        <xs:documentation>The symbolic name of a global flag. See also: http://msdn.microsoft.com/en-us/library/windows/hardware/ff549646(v=vs.85).aspx.</xs:documentation>
      </xs:annotation>
    </xs:element>
  </xs:sequence>
</xs:complexType>
XML Schema documentation generated by ® XML Editor.