Commit Graph

1730 Commits (87fd06a8893feafaffd461d6d611be4d02e5a4a2)

Author SHA1 Message Date
Koen Van Impe 71b72f8026 Create statistical reports for MISP
PyMISP script to run every x-days to get an overview of new
events/attributes ; MISP-Galaxies ; MITRE ; Tags

Output of report is on screen or sent via e-mail ; all stats attached
as CSV
2019-07-13 00:06:37 +02:00
Raphaël Vinot 4de403c537 chg: Bump changelog 2019-07-12 16:10:18 +02:00
Raphaël Vinot 84935c211f chg: Bump version 2019-07-12 16:09:02 +02:00
Raphaël Vinot ccad2321a5 chg: Bumb misp-objects 2019-07-12 16:07:08 +02:00
Raphaël Vinot c850ec2548 chg: [tests] WTF upload_sample on travis 2019-07-05 10:59:03 +02:00
Raphaël Vinot 10bd88cb06 chg: [tests] Add custom error message on upload_sample - fix last commit. 2019-07-05 10:34:48 +02:00
Raphaël Vinot 5aa94d277b chg: [tests] Add custom error message on upload_sample 2019-07-05 10:16:47 +02:00
Raphaël Vinot b8b384a3c3 Merge branch 'master' of github.com:MISP/PyMISP 2019-07-04 16:57:15 +02:00
Raphaël Vinot 7d5b55fcdc fix: Skip attribute in object when value is empty, skip empty objects. 2019-07-04 16:56:56 +02:00
Raphaël Vinot 9f53426202
Merge pull request #408 from tomking2/master
Introduce ability to create a sharing group
2019-07-04 10:59:33 +02:00
Raphaël Vinot 24f31e44a1
Merge pull request #410 from tomking2/feature/delete_sharing_group
chg: Allow for deletion of security group
2019-07-04 10:58:48 +02:00
Raphaël Vinot 7c76d6be39
Merge pull request #409 from 3c7/bugfix/openioc_datatypes
[OpenIOC] Allow the use of content type for RouteEntryItem/Destination
2019-07-04 10:35:40 +02:00
Raphaël Vinot cb1f345908 chg: Bump dependencies 2019-07-02 12:00:36 +02:00
Raphaël Vinot e0fac90310 new: Allow to pass delimiter & quotechar to the CSV loader 2019-07-02 11:55:51 +02:00
Alexandre Dulaunoy 3e70a90b0d
chg: [last] You can now paginate over multiple results in the last example command
You can do stuff like this:

python3 last.py  -l 48h  -m 10 -p 2  | jq .[].Event.info

which means the last 10 events on second page which are between a
time range of 0 and 48 hours.
2019-06-24 15:55:01 +02:00
Tom King fcfe058509 chg: Allow for deletion of security group 2019-06-20 09:11:51 +01:00
0x3c7 7be58af56a
[openioc] changed default mapping for RouteEntryItem/Destination/string. 2019-06-19 12:45:20 +02:00
Tom King 709ba2c29c chg: Remove roaming as it can't be set in this request 2019-06-19 10:40:15 +01:00
Tom King ffcc7e0631 new: Introduce ability to create a sharing group 2019-06-19 10:25:34 +01:00
0x3c7 b7d15380c9
[openioc] Changed mapping for RouteEntryItem/Destination/string to domain instead of url because UrlHistoryItem/URL is mostly used for urls 2019-06-19 07:39:15 +02:00
0x3c7 42a3dcf704
Fixes other mapping to other types 2019-06-19 07:38:15 +02:00
0x3c7 efd8b80adb
[openioc] Allow the use of types in openioc content tags 2019-06-18 16:10:20 +02:00
Steve Clement db9824c4bc
Merge pull request #405 from SteveClement/examples
new: [example] Added edit_organisation examples.
2019-06-17 14:25:44 +10:00
Steve Clement b871ea2bf0
new: [example] Added edit_organisation examples. 2019-06-17 10:36:49 +09:00
Raphaël Vinot 409ee532ba
Merge pull request #402 from SteveClement/feedGenRedis_fix
fix: [perms] Added try/except for various permission conditions, also…
2019-06-03 10:06:26 +02:00
Steve Clement 54a2e8657a
fix: [perms] Added try/except for various permission conditions, also create the output dir if not exist
fix: [try/except] Catch Ctrl-c keyboard interrupt
fix: [style] isort imports
2019-06-03 14:06:19 +09:00
Alexandre Dulaunoy 16f403e31d
Merge pull request #401 from cudeso/master
Sync sightings between MISP servers
2019-05-29 22:01:34 +02:00
Koen Van Impe c6d4d21025 Sync sightings between MISP servers
Sync sightings between MISP servers
Sync from multiple clients to one authoritative MISP instance.
To be run from cron
(blog docu coming)
2019-05-29 17:00:13 +02:00
Alexandre Dulaunoy 583fb65924
chg: [tests] now deleted flag is returning only the deleted values (to be consistent) 2019-05-23 07:43:26 +02:00
iglocska efed003302
Merge branch 'master' of github.com:MISP/PyMISP 2019-05-22 16:32:14 +02:00
iglocska 4bd9180951
fix: [feed generator] Added missing fields 2019-05-22 16:30:36 +02:00
Raphaël Vinot 6620710580
Merge pull request #395 from MISP/lenientResponseType
fix: [direct_call] Allows the response type to be something else than a JSON (e.g. csv)
2019-05-22 16:27:18 +02:00
mokaddem 98ce3f803e fix: [direct_call] Allows the response type to be something else than a
JSON (e.g. csv).
2019-05-22 11:55:03 +02:00
Raphaël Vinot 121d8853e2 new: Method to POST a STIX file to MISP and create a new event. 2019-05-21 16:47:10 +02:00
Raphaël Vinot bab28e17db Merge branch 'master' of github.com:MISP/PyMISP 2019-05-20 16:40:57 +02:00
Raphaël Vinot 3b56b218b5 new: Object generator for ssh authorized_keys files. 2019-05-20 16:40:47 +02:00
Alexandre Dulaunoy 5a4a20e2e9
chg: [misp-objects] updated to the latest version 2019-05-19 18:28:55 +02:00
Raphaël Vinot f55add5a6d Merge branch 'master' of github.com:MISP/PyMISP 2019-05-13 10:13:21 +02:00
Raphaël Vinot 21ec93582a chg: Bump deps (lief 0.10 dev) 2019-05-13 10:13:13 +02:00
Alexandre Dulaunoy 9f7f848d55
Merge pull request #393 from Wachizungu/feature/warninglisthits_search
Added includeWarninglistHits as a possible filter for the restsearch
2019-05-12 08:47:06 +02:00
Jeroen Pinoy 309b767864 Added includeWarninglistHits as a possible filter for the event level restsearch. 2019-05-12 01:08:21 +02:00
Raphaël Vinot 767859c264
Merge pull request #385 from l3m0ntr33/master
Resolve issue with change_sharing_group which do not update event suc…
2019-05-08 16:31:42 +02:00
Raphaël Vinot a79c4ed9c2 chg: Use pydeep from pypi, add test 2019-05-08 12:16:43 +02:00
Raphaël Vinot 33b21d0ee8 chg: Bump dependencies 2019-05-08 11:34:06 +02:00
Raphaël Vinot de65608a12 fix: Properly fix deprecation warning
fix #390
2019-05-08 10:12:41 +02:00
Raphaël Vinot e8bba395bc Merge branch 'cudeso-master' 2019-05-07 11:07:51 +02:00
Raphaël Vinot 5a4c37d029 chg: Bump dependencies. 2019-05-07 11:04:25 +02:00
Koen Van Impe d016571336 Use misp_verifycert flag 2019-05-06 18:01:29 +02:00
Koen Van Impe 38a2903fc9 Take 'to_ids' setting in account and PEP8 checks
- Include check if 'to_ids' is included in the data returned from the
import module
- PEP8 checks
2019-05-06 17:31:52 +02:00
Koen Van Impe 0f49b27794 Automation script that links vmray_submit and vmray_import
Import finished VMRay tasks ; add attributes to event
Makes use of the 'incomplete' workflow taxonomy
Needs to be put in a cronjob to run in the background
2019-05-01 22:48:07 +02:00