mirror of https://github.com/MISP/PyMISP
Helper methods added
parent
e364c3aed7
commit
c9fd4c11cb
|
@ -419,6 +419,63 @@ class PyMISP(object):
|
||||||
attributes.append(self._prepare_full_attribute(category, 'snort', snort, to_ids, comment, distribution))
|
attributes.append(self._prepare_full_attribute(category, 'snort', snort, to_ids, comment, distribution))
|
||||||
return self._send_attributes(event, attributes)
|
return self._send_attributes(event, attributes)
|
||||||
|
|
||||||
|
# ##### Email attributes #####
|
||||||
|
|
||||||
|
def add_email_src(self, event, email, to_ids=True, comment=None, distribution=None):
|
||||||
|
attributes = []
|
||||||
|
attributes.append(self._prepare_full_attribute('Payload delivery', 'email-src', email, to_ids, comment, distribution))
|
||||||
|
return self._send_attributes(event, attributes)
|
||||||
|
|
||||||
|
def add_email_dst(self, event, email, category='Payload delivery', to_ids=True, comment=None, distribution=None):
|
||||||
|
categories = ['Payload delivery', 'Network activity']
|
||||||
|
if category not in categories:
|
||||||
|
raise NewAttributeError('{} is invalid, category has to be in {}'.format(category, (', '.join(categories))))
|
||||||
|
attributes = []
|
||||||
|
attributes.append(self._prepare_full_attribute(category, 'email-dst', email, to_ids, comment, distribution))
|
||||||
|
return self._send_attributes(event, attributes)
|
||||||
|
|
||||||
|
def add_email_subject(self, event, email, to_ids=True, comment=None, distribution=None):
|
||||||
|
attributes = []
|
||||||
|
attributes.append(self._prepare_full_attribute('Payload delivery', 'email-subject', email, to_ids, comment, distribution))
|
||||||
|
return self._send_attributes(event, attributes)
|
||||||
|
|
||||||
|
def add_email_attachment(self, event, email, to_ids=True, comment=None, distribution=None):
|
||||||
|
attributes = []
|
||||||
|
attributes.append(self._prepare_full_attribute('Payload delivery', 'email-attachment', email, to_ids, comment, distribution))
|
||||||
|
return self._send_attributes(event, attributes)
|
||||||
|
|
||||||
|
# ##### Target attributes #####
|
||||||
|
|
||||||
|
def add_target_email(self, event, target, to_ids=True, comment=None, distribution=None):
|
||||||
|
attributes = []
|
||||||
|
attributes.append(self._prepare_full_attribute('Targeting data', 'target-email', target, to_ids, comment, distribution))
|
||||||
|
return self._send_attributes(event, attributes)
|
||||||
|
|
||||||
|
def add_target_user(self, event, target, to_ids=True, comment=None, distribution=None):
|
||||||
|
attributes = []
|
||||||
|
attributes.append(self._prepare_full_attribute('Targeting data', 'target-user', target, to_ids, comment, distribution))
|
||||||
|
return self._send_attributes(event, attributes)
|
||||||
|
|
||||||
|
def add_target_machine(self, event, target, to_ids=True, comment=None, distribution=None):
|
||||||
|
attributes = []
|
||||||
|
attributes.append(self._prepare_full_attribute('Targeting data', 'target-machine', target, to_ids, comment, distribution))
|
||||||
|
return self._send_attributes(event, attributes)
|
||||||
|
|
||||||
|
def add_target_org(self, event, target, to_ids=True, comment=None, distribution=None):
|
||||||
|
attributes = []
|
||||||
|
attributes.append(self._prepare_full_attribute('Targeting data', 'target-org', target, to_ids, comment, distribution))
|
||||||
|
return self._send_attributes(event, attributes)
|
||||||
|
|
||||||
|
def add_target_location(self, event, target, to_ids=True, comment=None, distribution=None):
|
||||||
|
attributes = []
|
||||||
|
attributes.append(self._prepare_full_attribute('Targeting data', 'target-location', target, to_ids, comment, distribution))
|
||||||
|
return self._send_attributes(event, attributes)
|
||||||
|
|
||||||
|
def add_target_external(self, event, target, to_ids=True, comment=None, distribution=None):
|
||||||
|
attributes = []
|
||||||
|
attributes.append(self._prepare_full_attribute('Targeting data', 'target-external', target, to_ids, comment, distribution))
|
||||||
|
return self._send_attributes(event, attributes)
|
||||||
|
|
||||||
# ##################################################
|
# ##################################################
|
||||||
# ######### Upload samples through the API #########
|
# ######### Upload samples through the API #########
|
||||||
# ##################################################
|
# ##################################################
|
||||||
|
|
Loading…
Reference in New Issue