Commit Graph

2139 Commits (9fd3d8a3e37e69028c4bbe8c79ee0bad58c0d5bd)

Author SHA1 Message Date
Raphaël Vinot 18474a2144 chg: Add comments to ELF, PE, and MachO object generators. 2020-09-15 12:39:59 +02:00
Raphaël Vinot 50e5f156bd chg: Improve error message, add comments, rename whitelist->allowedlist 2020-09-15 12:31:22 +02:00
Raphaël Vinot 73b56a61da fix: few outdated calls in the tutorial 2020-09-11 11:09:14 +02:00
Raphaël Vinot 9c48079d88 new: Method to get the new version of the templates 2020-09-10 15:26:34 +02:00
Raphaël Vinot e3815a41f1 fix: Make flake8 happy 2020-09-09 15:41:42 +02:00
Raphaël Vinot cab202e1da
Merge pull request #624 from seamustuohy/fix-badly-encoded-emails
Attempt to decode utf-8-sig encoded emails.
2020-09-09 15:02:18 +02:00
seamus tuohy 07137209e2 Attempt to decode utf-8-sig encoded emails.
eml files downloaded from Windows Online security on some Windows 11
systems are automatically encoded in UTF with a byte order mark (BOM)
at the front of the file. This will cause the email parser to fail.

This is a somewhat isolated problem. It only will affects a small
subset of Windows users who download and re-upload eml files. But,
this small subset of users is the target user-base for the MISP
email module: low expertiese users who wish to quickly share
high-value indicators on an ad-hoc basis.

While this fix could be tacked onto the MISP email module instead of
here, I beleive that this fix is more appropriate in the PyMISP object
code. As the "email" object parser this object should be built to
parse all manner of emails that it may encounter. This includes common
malformations such as this one and, even horrors such as, the .msg
format. This commit adds a generically named "attempt_decoding"
function which can be expanded to address all manner of sins that
are encountered in the future.
2020-09-09 07:45:07 -04:00
Raphaël Vinot 0220f25f98 chg: Bump changelog 2020-09-08 12:45:29 +02:00
Raphaël Vinot 49aede3947 chg: Bump version 2020-09-08 12:43:25 +02:00
Raphaël Vinot 07fed2fbb4 chg: Bump objects 2020-09-08 11:18:40 +02:00
Raphaël Vinot 7cc868bc8d Merge branch 'main' of github.com:MISP/PyMISP into main 2020-09-08 10:55:32 +02:00
Raphaël Vinot cd93d6b868 chg: Bump objects 2020-09-08 10:55:20 +02:00
Raphaël Vinot f2a9a7c241 chg: Bump dependencies 2020-09-08 10:54:48 +02:00
Alexandre Dulaunoy c7edf4e33a
chg: [describeTypes] updated 2020-09-04 16:33:11 +02:00
Alexandre Dulaunoy 5598351a8b
chg: [describeTypes] updated 2020-09-04 16:00:41 +02:00
Raphaël Vinot f1a91d0872 chg: Bump file template version 2020-09-02 15:34:45 +02:00
Raphaël Vinot 9f6f95be0e new: [test] Validate tag removal 2020-09-02 15:11:18 +02:00
Raphaël Vinot 3cbd906520 chg: Bump objects 2020-09-02 15:06:59 +02:00
Raphaël Vinot 918f841087 chg: Rename blacklist -> blocklist 2020-09-01 19:29:12 +02:00
Raphaël Vinot e0e1a7fdf4 chg: Bump dependencies 2020-08-31 13:30:59 +02:00
Alexandre Dulaunoy 92c5d11f47
new: [describeTypes] sha3 added 2020-08-24 10:38:25 +02:00
Raphaël Vinot 3b63999785 chg: Bump changelog 2020-08-20 13:02:38 +02:00
Raphaël Vinot 29af8645f7 chg: Bump version 2020-08-20 13:01:00 +02:00
Raphaël Vinot 53f9979b48 fix: Bump file template version 2020-08-20 12:52:08 +02:00
Raphaël Vinot 39d1b1ff18 chg: Bump dependencies 2020-08-20 12:44:58 +02:00
Raphaël Vinot f52ee0e0e7 chg: Bump objects 2020-08-20 12:44:35 +02:00
Raphaël Vinot 6e4bf35bda chg: Bump types 2020-08-20 12:22:12 +02:00
Raphaël Vinot 123eda7629
Merge pull request #617 from imidoriya/main
Exclude section correlation .rsrc and zero-filled
2020-08-18 11:55:46 +02:00
deku dd6922fd3a Exclude section correlation .rsrc and zero-filled 2020-08-14 11:13:53 -04:00
Raphaël Vinot 821a4f5398 Merge branch 'main' of github.com:MISP/PyMISP into main 2020-08-04 12:21:19 +02:00
Raphaël Vinot be8c94e6e7 chg: Cleanup blocklist methods 2020-08-04 12:20:21 +02:00
Raphaël Vinot 2bbf888ca7 new: Blacklist methods 2020-08-03 15:59:54 +02:00
Sami Mokaddem b952876361
Merge pull request #608 from mokaddem/testlive-tags
Updated generic tagging method to match changes in MISP's `tags/attachTagToObject` endpoint
2020-07-31 13:26:17 +02:00
Raphaël Vinot 83273b6ce8 new: Add list of missing calls 2020-07-30 16:48:37 +02:00
Raphaël Vinot 0639c1773d chg: Remove outdated example
Fix #611
2020-07-30 11:47:34 +02:00
Raphaël Vinot a5ff0b850e Merge branch 'paalbra-add-missing-whitespace' into main 2020-07-29 11:27:39 +02:00
Paal Braathen ff62f1c19c Linting/Add missing whitespace 2020-07-28 20:05:42 +02:00
mokaddem fd91bcb44e chg: [testlive_comprehensive] Updated generic tagging method to match
changes in MISP
2020-07-28 15:23:58 +02:00
Raphaël Vinot 706e553f5d
Merge pull request #607 from paalbra/remove-unnecessary-logic
Remove explicit loglevel checking
2020-07-28 12:42:44 +02:00
Jakub Onderka 82aa3c815d
fix: test_get_non_exists_event 2020-07-28 12:26:15 +02:00
Raphaël Vinot 3fa546f3c9
Merge pull request #606 from paalbra/remove-traceback
Remove explicit traceback printing
2020-07-28 11:31:33 +02:00
Raphaël Vinot c566892944 Merge branch 'main' of github.com:MISP/PyMISP into main 2020-07-28 11:27:52 +02:00
Raphaël Vinot 9f4770be3e chg: Bump dependencies 2020-07-28 11:27:42 +02:00
Raphaël Vinot ba4b22a303 fix: IP removed from the public DNS list 2020-07-28 11:27:26 +02:00
Paal Braathen e8d34ea337 Remove explicit loglevel checking 2020-07-28 11:18:43 +02:00
Paal Braathen 96881f216b Remove explicit traceback printing 2020-07-28 11:03:59 +02:00
Raphaël Vinot 7ba12d5a69
Merge pull request #605 from JakubOnderka/testlive-non-exists-event
chg: New test_get_non_exists_event
2020-07-27 14:25:47 +02:00
Jakub Onderka b10faa653f chg: New test_get_non_exists_event 2020-07-27 13:39:43 +02:00
Raphaël Vinot 2fb61d4b32 chg: Enable more tests. 2020-07-24 12:49:53 +02:00
Raphaël Vinot d01b484972
Merge pull request #604 from dadokkio/patch-1
update notebook path in readme
2020-07-23 11:40:02 +02:00