MISP
/
PyMISP
mirror of https://github.com/MISP/PyMISP
2
0
Fork 0
Code Issues Releases Wiki Activity

Helper methods added

pull/3/head
grolinet 2015-10-06 16:52:58 +02:00
parent e364c3aed7
commit c9fd4c11cb
1 changed files with 58 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

59
pymisp/api.py
View File

@ -381,7 +381,7 @@ class PyMISP(object):
mutex = '\\BaseNamedObjects\\{}'.format(mutex) mutex = '\\BaseNamedObjects\\{}'.format(mutex)
attributes.append(self._prepare_full_attribute(category, 'mutex', mutex, to_ids, comment, distribution)) attributes.append(self._prepare_full_attribute(category, 'mutex', mutex, to_ids, comment, distribution))
return self._send_attributes(event, attributes) return self._send_attributes(event, attributes)
# ##### Network attributes ##### # ##### Network attributes #####
def add_ipdst(self, event, ipdst, category='Network activity', to_ids=True, comment=None, distribution=None): def add_ipdst(self, event, ipdst, category='Network activity', to_ids=True, comment=None, distribution=None):
@ -419,6 +419,63 @@ class PyMISP(object):
attributes.append(self._prepare_full_attribute(category, 'snort', snort, to_ids, comment, distribution)) attributes.append(self._prepare_full_attribute(category, 'snort', snort, to_ids, comment, distribution))
return self._send_attributes(event, attributes) return self._send_attributes(event, attributes)
# ##### Email attributes #####
def add_email_src(self, event, email, to_ids=True, comment=None, distribution=None):
attributes = []
attributes.append(self._prepare_full_attribute('Payload delivery', 'email-src', email, to_ids, comment, distribution))
return self._send_attributes(event, attributes)
def add_email_dst(self, event, email, category='Payload delivery', to_ids=True, comment=None, distribution=None):
categories = ['Payload delivery', 'Network activity']
if category not in categories:
raise NewAttributeError('{} is invalid, category has to be in {}'.format(category, (', '.join(categories))))
attributes = []
attributes.append(self._prepare_full_attribute(category, 'email-dst', email, to_ids, comment, distribution))
return self._send_attributes(event, attributes)
def add_email_subject(self, event, email, to_ids=True, comment=None, distribution=None):
attributes = []
attributes.append(self._prepare_full_attribute('Payload delivery', 'email-subject', email, to_ids, comment, distribution))
return self._send_attributes(event, attributes)
def add_email_attachment(self, event, email, to_ids=True, comment=None, distribution=None):
attributes = []
attributes.append(self._prepare_full_attribute('Payload delivery', 'email-attachment', email, to_ids, comment, distribution))
return self._send_attributes(event, attributes)
# ##### Target attributes #####
def add_target_email(self, event, target, to_ids=True, comment=None, distribution=None):
attributes = []
attributes.append(self._prepare_full_attribute('Targeting data', 'target-email', target, to_ids, comment, distribution))
return self._send_attributes(event, attributes)
def add_target_user(self, event, target, to_ids=True, comment=None, distribution=None):
attributes = []
attributes.append(self._prepare_full_attribute('Targeting data', 'target-user', target, to_ids, comment, distribution))
return self._send_attributes(event, attributes)
def add_target_machine(self, event, target, to_ids=True, comment=None, distribution=None):
attributes = []
attributes.append(self._prepare_full_attribute('Targeting data', 'target-machine', target, to_ids, comment, distribution))
return self._send_attributes(event, attributes)
def add_target_org(self, event, target, to_ids=True, comment=None, distribution=None):
attributes = []
attributes.append(self._prepare_full_attribute('Targeting data', 'target-org', target, to_ids, comment, distribution))
return self._send_attributes(event, attributes)
def add_target_location(self, event, target, to_ids=True, comment=None, distribution=None):
attributes = []
attributes.append(self._prepare_full_attribute('Targeting data', 'target-location', target, to_ids, comment, distribution))
return self._send_attributes(event, attributes)
def add_target_external(self, event, target, to_ids=True, comment=None, distribution=None):
attributes = []
attributes.append(self._prepare_full_attribute('Targeting data', 'target-external', target, to_ids, comment, distribution))
return self._send_attributes(event, attributes)
# ################################################## # ##################################################
# ######### Upload samples through the API ######### # ######### Upload samples through the API #########
# ################################################## # ##################################################