initial commit

2014-03-19 19:10:36 +01:00 · 2014-03-19 19:10:36 +01:00 · b27bb44e61
commit b27bb44e61
4 changed files with 114 additions and 0 deletions
--- a/.gitignore
+++ b/.gitignore
@ -0,0 +1,2 @@
+*.pyc
+pymisp/apikey.py
--- a/README.md
+++ b/README.md
@ -0,0 +1 @@
+Python API for MISP. Use the REST interface.
--- a/pymisp/init.py
+++ b/pymisp/init.py
--- a/pymisp/api.py
+++ b/pymisp/api.py
@ -0,0 +1,111 @@
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+
+
+""" Python API for MISP """
+
+import requests
+
+from apikey import key
+
+URL = 'https://misp.circl.lu/events'
+URL_TMPL = URL + '/{}'
+URL_XML_DOWNLOAD = URL + '/xml/download'
+URL_XML_DOWNLOAD_TMPL = URL_XML_DOWNLOAD + '/{}'
+
+
+def __prepare_session():
+    """
+        Prepare the headers of the session
+    """
+    session = requests.Session()
+    session.headers.update({'Authorization': key, 'Accept': 'application/xml'})
+    return session
+
+################ REST API ################
+
+def get_index():
+    """
+        Return the index.
+
+        Warning, there's a limit on the number of results
+    """
+    session = __prepare_session()
+    return session.get(URL, verify=False)
+
+def get_event(event_id):
+    """
+        Get an event
+    """
+    session = __prepare_session()
+    return session.get(URL_TMPL.format(event_id), verify=False)
+
+def add_event(event):
+    """
+        Add a new event
+    """
+    session = __prepare_session()
+    return session.post(URL, data=event, verify=False)
+
+def update_event(event_id, event):
+    """
+        Update an event
+    """
+    session = __prepare_session()
+    return session.post(URL_TMPL.format(event_id), data=event, verify=False)
+
+def delete_event(event_id):
+    """
+        Delete an event
+    """
+    session = __prepare_session()
+    return session.delete(URL_TMPL.format(event_id), verify=False)
+
+##########################################
+
+############### XML Export ###############
+
+def download_all():
+    """
+        Download all event from the instance
+    """
+    session = __prepare_session()
+    return session.get(URL_XML_DOWNLOAD, verify=False)
+
+def download(event_id):
+    """
+        Download one event in XML
+    """
+    session = __prepare_session()
+    return session.get(URL_XML_DOWNLOAD_TMPL.format(event_id), verify=False)
+
+######### REST Search #########
+
+def __prepare_rest_search(values, not_values):
+    """
+        Prepare a search
+    """
+    to_return = ''
+    if values is not None:
+        to_return += '&&'.join(values)
+    if not_values is not None:
+        if len(to_return) > 0 :
+            to_return += '&&!'
+        else:
+            to_return += '!'
+        to_return += '&&!'.join(not_values)
+    return to_return
+
+URL_SEARCH_TMPL = 'https://misp.circl.lu/attributes/restSearch/download/{}/{}/{}/{}/{}'
+
+
+def search(values=None, not_values=None, type_attribute=None,
+        category=None, org=None, tags=None, not_tags=None):
+    v = __prepare_rest_search(values, not_values).replace('/', '|')
+    t = __prepare_rest_search(tags, not_tags).replace(':', ';')
+
+    session = __prepare_session()
+    return session.get(URL_SEARCH_TMPL.format(v, type_attribute,
+        category, org, t), verify=False)
+
+##########################################
				`@ -0,0 +1 @@`
				`Python API for MISP. Use the REST interface.`