MISP
/
PyMISP
mirror of https://github.com/MISP/PyMISP
2
0
Fork 0
Code Issues Releases Wiki Activity
1,777 Commits
13 Branches
176 Tags
95 MiB
Commit Graph

259 Commits (a26a8e450b14d48bb0c8ef46b32bff2f1eadc514)

Author SHA1 Message Date
Christophe Vandeplas ff921ec6a6 YARA dumper for all rules 
This dumper also does YARA rule validation, ignores invalid rules and prevents duplicate rule names. The output is a file called misp.yara which can be used with your favorite YARA tool.
 2017-02-03 10:43:57 +01:00
Alexander J 7b0e3b521a make it little more readable 
guess that way it is easier to understand
 2017-01-26 10:39:10 +01:00
Déborah Servili 87b5eb84bb exemple addtag (dirty) 2017-01-24 15:31:50 +01:00
Raphaël Vinot 35a4dd52bc Add signing support for MISP events 2016-11-17 17:07:29 +01:00
Déborah Servili 3cadc1a78d Improvements in the user api 2016-11-04 12:00:42 +01:00
Déborah Servili a11e26f80b Improvements in the user api 2016-11-04 11:58:21 +01:00
Alexandre Dulaunoy 55b4a0725b Neo4j stuff moved into graphdb directory 2016-11-04 09:31:52 +01:00
Alexandre Dulaunoy bbf9198787 Moving Neo4j into graphdb 2016-11-04 09:31:31 +01:00
Raphaël Vinot 75ebedae5c Merge pull request #68 from MISP/tooling 
[WIP] Tooling
 2016-11-03 16:04:28 -04:00
Déborah Servili 0b462404de add user management and examples 2016-11-03 11:23:48 +01:00
Raphaël Vinot bee1630e98 Add query example 2016-10-28 14:13:57 -04:00
Raphaël Vinot 2907fd18d7 Cleanup neo4j support 2016-10-27 15:58:08 -04:00
Raphaël Vinot abd836babb Add simple script to push MISP events into Neo4j 2016-10-25 17:28:55 -04:00
Déborah Servili 0de3f7459b add example add_named_argument.py 2016-10-22 14:52:17 +02:00
Déborah Servili 30cd45e94e remove test import 2016-10-13 15:28:18 +02:00
Déborah Servili 13dbb96111 Use only metadata in situational awareness tags functions 2016-10-13 13:39:44 +02:00
Déborah Servili b1e6765bb3 fix indentation 2016-10-13 10:11:18 +02:00
Déborah Servili 9cc55341f0 fix date formatting in mispevent.py + some PEP8 cleaning 2016-10-12 15:40:49 +02:00
Déborah Servili bc5df41179 fix situational-awareness examples 2016-10-12 12:33:42 +02:00
Raphaël Vinot 8a931a89f3 Fix upload function 2016-10-05 11:07:40 +02:00
Alexandre Dulaunoy e70cc7a985 Toggle flag instead of value 2016-09-12 13:45:37 +02:00
Raphaël Vinot bf5793992b Fix examples after removal of MISP XML support 2016-09-12 12:53:58 +02:00
Déborah Servili 84eb40e42b Add some examples 2016-09-12 11:32:04 +02:00
Déborah Servili fa66c77cd1 add tags_to_graphs.py in ecamples/situational-awareness 2016-09-05 14:14:29 +02:00
Déborah Servili 95654e083c Merge https://github.com/MISP/PyMISP 2016-09-05 13:50:35 +02:00
Déborah Servili d5bdb67090 update examples/situational-awareness/README.md 2016-09-05 13:41:02 +02:00
Déborah Servili eb427e89c9 update examples/situational-awareness/README.md 2016-08-30 10:42:34 +02:00
Raphaël Vinot 8dbeec3f96 Cleanup create_events 2016-08-26 18:25:39 +02:00
Richard van den Berg 7cbda22667 Speed up et2misp 2016-08-18 11:27:02 +02:00
Raphaël Vinot a4acc5d147 Add tests 2016-08-18 00:40:30 +02:00
Raphaël Vinot cdcb1cca5e Update testing 2016-08-18 00:23:49 +02:00
Richard van den Berg 17417bd826 Add et2misp example 2016-08-12 13:48:45 +02:00
Raphaël Vinot ab09c0a1dc Fix calls to __prepare_session 
Fix #58
 2016-08-11 17:45:32 +02:00
Raphaël Vinot 5937ef9e9b Version bump 2016-08-02 15:17:42 +02:00
Raphaël Vinot 93ef3595e5 Fix fetching method for tag_search and tags_count 2016-07-29 13:25:36 +02:00
Raphaël Vinot 90bb9f3ba4 Major refactoring of the SVG generator 2016-07-27 14:48:13 +02:00
Raphaël Vinot 24d131aa32 Initial refactoring, PEP8 and cleanup 2016-07-26 16:35:46 +02:00
Deborah Servili f8dbcde607 Update README.md 2016-07-26 11:09:00 +02:00
Déborah Servili cd046d2f7a Make printed date more consistent + update README.md 2016-07-26 11:05:20 +02:00
Déborah Servili 0f68ffc617 modify fetching method to use last 2016-07-21 10:09:10 +02:00
Déborah Servili b0a66da4de handling some NaN exceptions 2016-07-21 10:06:47 +02:00
Déborah Servili eebca6ecc6 delete some files 2016-07-13 15:46:50 +02:00
Déborah Servili caa8b963ec move files from examples/treemap to examples/situational-awareness/ 2016-07-13 15:24:36 +02:00
Déborah Servili e53f59bcbf Merge https://github.com/MISP/PyMISP into newbranch 2016-07-13 15:06:27 +02:00
Deborah Servili 12849622ef Rename examples/statistics/attribute_treemap.py to examples/treemap/treemap.py 2016-07-06 09:05:35 +02:00
Deborah Servili 8c0b5b943f Rename examples/treemap/treemap.py to examples/statistics/attribute_treemap.py 2016-07-05 16:26:57 +02:00
Raphaël Vinot 836845abde Use same variable names as testing environment 2016-07-01 14:30:13 +02:00
Raphaël Vinot 13e0cd0901 Make scripts executable 2016-07-01 13:52:31 +02:00
Déborah Servili 0bf368b281 Random names for dummy files 2016-07-01 12:06:49 +02:00
Déborah Servili 29476b6eba Add examples "create_dummy_event" and "create_massive_dummy_events" 2016-07-01 10:33:44 +02:00
Alexandre Dulaunoy 5bbd2a4bcc Merge pull request #20 from Delta-Sierra/master 
Add example "create attributes distribution treemap"
 2016-06-21 16:18:16 +02:00
Déborah Servili ec4b158c84 remove useless comments 2016-06-21 16:07:08 +02:00
Déborah Servili 4445652346 Add example "create attributes distribution treemap" 2016-06-21 15:46:09 +02:00
Raphaël Vinot 8241d4ce93 Fix python3 compat. Make Pep8 happy. 2016-06-16 13:48:40 +09:00
Alexandre Dulaunoy 0cc5d9c982 Comment removed 2016-06-13 17:20:40 +02:00
Raphaël Vinot 234de2f4d1 Add tag script 2016-06-13 19:15:04 +09:00
Raphaël Vinot 1da7660934 Make pep8 happy 2016-06-13 19:14:32 +09:00
ANSSI-BSO-D f93bad9564 form 2016-05-12 17:35:05 +02:00
Tristan METAYER acf8881658 init for ioc-2-misp 2016-05-12 17:33:13 +02:00
Alexandre Dulaunoy f9ce3999e9 Merge pull request #17 from Delta-Sierra/master 
Add function for sighting using attribute id, uuid or a json file
 2016-04-30 14:52:09 +02:00
Déborah Servili 3cd9ede99f Add function for sighting using attribute id, uuid or a json file 2016-04-29 16:35:27 +02:00
Alexandre Dulaunoy 7dc9e20997 More stats example 2016-04-28 15:05:31 +02:00
Alexandre Dulaunoy f490898a5c Statistics test script added 2016-04-28 14:44:01 +02:00
Iglocska 423757530b Added the option to filter out attributes based on distribution level 2016-04-14 10:35:03 +02:00
Déborah Servili b573daf86d Correct module help 2016-04-08 10:06:35 +02:00
Raphaël Vinot dca755ef08 Improve examples 2016-03-21 21:24:15 +01:00
Koen Van Impe f495c23303 Check if objectType exists in event 
Prevent failing when f.e. an event does not have a tag.
 2016-03-11 14:51:38 +01:00
Iglocska 8d0c26288e Updated the feed generator 
- only save fields that are actually necessary and don't reveal too much of unneeded information (such as correlation)
- add contextual fields to the manifest
 2016-03-07 03:29:34 +01:00
Alexandre Dulaunoy ec7337cbc2 Merge branch 'master' of github.com:CIRCL/PyMISP 2016-03-01 15:54:17 +01:00
Iglocska be242152e7 Script for the upcoming feed generator 
- also some minor modifications to the get_index api
 2016-03-01 15:32:58 +01:00
Alexander J f99329a8b0 Update yara.py 2016-02-12 11:34:02 +01:00
Alexander J 11b1403e4c Update upload.py 2016-02-12 11:33:45 +01:00
Alexander J fb355d3acb Update searchall.py 2016-02-12 11:33:25 +01:00
Alexander J ca45771171 Update get.py 2016-02-12 11:31:48 +01:00
Alexander J b5764c8660 Update last.py 2016-02-12 11:30:56 +01:00
Alexandre Dulaunoy 654f238e5c Merge branch 'master' of github.com:MISP/PyMISP 2015-11-24 17:17:13 +01:00
Alexandre Dulaunoy 3403a57391 Threat level id is from 1 to 4 (not from 0 to 3) 
https://github.com/MISP/MISP/issues/729
 2015-11-24 17:16:47 +01:00
Will Urbanski b5acf414e9 Fix KeyError when no results in time period 
Fix a KeyError when no results were found for the specified time period.
 2015-11-22 17:52:12 -05:00
Alexandre Dulaunoy 2cdf1aa88d Authentication parameters updated 2015-11-06 11:40:27 +01:00
Alexandre Dulaunoy 55ca454b92 Auth parameters updated 2015-11-06 11:22:38 +01:00
Alexandre Dulaunoy 4c0ed124f5 Updated auth parameters 2015-11-06 11:16:32 +01:00
Alexandre Dulaunoy 006103d2fe Normalized auth parameters 2015-11-06 11:12:31 +01:00
Alexandre Dulaunoy 761b831708 Normalized auth parameters 2015-11-06 11:11:22 +01:00
Alexandre Dulaunoy 424c1671aa Sample keys file added 2015-11-06 11:09:17 +01:00
Alexandre Dulaunoy dbd45f0f01 Normalized auth parameters 2015-11-06 11:06:37 +01:00
Alexandre Dulaunoy fc0873bed1 Normalized auth parameters 2015-11-06 10:17:20 +01:00
Alexandre Dulaunoy db1221dd52 Auth parameters normalized 2015-11-06 10:14:45 +01:00
Raphaël Vinot 08e1c40987 Add helpers to update events with specific attributes. 2015-09-01 18:46:10 +02:00
Raphaël Vinot c7b03640fb Multiple updates, cleanup 
* Remove attribute (Fix #4)
* Deprecate pure XML API
* Cleanups and fixes in the upload file functionality
 2015-08-28 17:07:30 +02:00
Raphaël Vinot 218ffcd915 Add Yara rules download support (by event) 2015-08-19 10:43:03 +02:00
iglocska 4436383624 Dump the entire event including the 'Event' container element 2015-08-12 10:09:23 +02:00
Raphaël Vinot d8a6ae28ff Add test scripts to get and update an event. 2015-08-11 17:14:16 +02:00
Raphaël Vinot 2ad737e7b7 Add search all 2015-08-06 17:43:12 +02:00
Raphaël Vinot 208091dc47 Fix last commit 2015-08-06 09:49:44 +02:00
Raphaël Vinot cc13a779b3 Merge branch 'master' of github.com:CIRCL/PyMISP 2015-08-05 17:30:20 +02:00
Raphaël Vinot 97dfe2a4f6 Add last param to restSearch + example script 2015-08-05 17:20:59 +02:00
Raphaël Vinot effd8084a7 Cleanup of the upload API 2015-08-05 16:01:57 +02:00
Koen Van Impe 2e1da3b777 Add netflow filter output 
- get event data for event with “—event X”
- get netflow filter with “—netflow”
   simple host X or host X
 2015-08-04 23:25:15 +02:00
Raphaël Vinot bef354ac44 Preliminary version of the file uploader 2015-08-04 16:24:55 +02:00
Raphaël Vinot 58bfd30a23 Add test script to add attachement to event 2015-08-03 18:09:39 +02:00
Raphaël Vinot 4e942fa33b Merge remote-tracking branch 'origin/master' 
Conflicts:
	examples/get_network_activity.py  (python 2.7 & 3 compatible print)
 2015-08-03 16:44:52 +02:00
Iglocska 507c5a5446 API made a bit more flexible with input data 
- input for add_event() and update_event() can now be a JSON object, JSON string, XML
 2015-07-30 15:53:34 +02:00
Iglocska c315ecaef6 Fix to an issue with using XML as input for add_event() and update_event() 
- also a change to the copy_list.py script to account for the change
 2015-07-30 15:26:05 +02:00
Raphaël Vinot b6ff8746bc Make the code python3 friendly 2015-05-03 02:47:47 +02:00
Raphaël Vinot 33597f97ef Make PEP8 Happy 2015-02-24 14:31:01 +01:00
Koen Van Impe 4c7e0731cd Example script to download MISP network activity 2014-11-16 17:02:23 +01:00
Raphaël Vinot 81fd66d612 support update events 2014-05-02 17:10:53 +02:00
Raphaël Vinot 31eb0d4c96 Add the following options: 
- possibility to copy in one direction or the other between instance
- add loop to simply put event ids to copy
 2014-05-02 11:46:04 +02:00
Raphaël Vinot f2c7bbe5c9 Add installer, proper copy script 2014-04-16 15:14:58 +02:00