diff --git a/objects/ddos-claim/definition.json b/objects/ddos-claim/definition.json
new file mode 100644
index 00000000..ff30e3fa
--- /dev/null
+++ b/objects/ddos-claim/definition.json
@@ -0,0 +1,51 @@
+{
+  "attributes": {
+    "claim-validity": {
+      "description": "Validity of the claim. Valid means the target confirmed the detection of DDoS activities.",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "sane_default": [
+        "Unknown",
+        "Valid",
+        "Invalid"
+      ],
+      "ui-priority": 0
+    },
+    "proof": {
+      "description": "Proof of the claim in text format.",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "multiple": true,
+      "ui-priority": 0
+    },
+    "proof-screenshot": {
+      "description": "Proof of the screenshot.",
+      "misp-attribute": "attachment",
+      "multiple": true,
+      "ui-priority": 0
+    },
+    "reference": {
+      "description": "Reference to the DDoS claim.",
+      "disable_correlation": true,
+      "misp-attribute": "link",
+      "multiple": true,
+      "ui-priority": 0
+    },
+    "target": {
+      "description": "Target of the DDoS claim.",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "ui-priority": 0
+    }
+  },
+  "description": "DDoS-claim object describes a current claim of DDoS activity.",
+  "meta-category": "network",
+  "name": "ddos-claim",
+  "requiredOneOf": [
+    "target",
+    "proof",
+    "reference"
+  ],
+  "uuid": "2722ac76-1f1f-43b7-bc68-ba5465ec5c04",
+  "version": 1
+}
\ No newline at end of file