MISP
/
PyMISP
mirror of https://github.com/MISP/PyMISP
2
0
Fork 0
Code Issues Releases Wiki Activity
3,232 Commits
13 Branches
176 Tags
95 MiB
Commit Graph

27 Commits (a7cf9dc3f03ffda5ee6c1b614792455fe43d8704)

Author SHA1 Message Date
Raphaël Vinot 6c3e91cbc0
new: create a sign_blob method to sign events 2024-12-16 12:22:38 +01:00
iglocska 671c9fabf5
new: [support for signing] added 
- added new class CryptographicKeys
- added functions to to_feed calls to include crypto keys
- added protected boolean field to misp event

- updated feed generator to support signing
  - if the new setting is set to True signing will be attempted for protected events
  - protected events are now passed to the /cryptographic_keys/serverSign endpoint of misp for signing
  - signatures are included as a .asc file in the output directory

- TODO:
  - currently the JSON dumping is moved from a streamed dumping to an in memory dump before saving to disk
  - add a check for protected events and revert to streamed dumping for non protected events
  - alternatively use the already saved files to request signing from MISP
 2024-12-08 18:48:07 +01:00
deku c8d633f15b Add feed option for local tag exclusion #817 2022-01-19 21:30:30 +00:00
Christophe Vandeplas 79f4107b7f fix: [feed-generator] fix missing except type 2021-11-29 16:16:54 +01:00
Christophe Vandeplas a9970d3078 chg: [feed-generator] support for distribution and sharing groups 2021-11-29 15:54:34 +01:00
Sami Mokaddem 57de6de139
chg: [feed-generator] Make the feature to exlude attribute type more generic 2021-11-17 12:38:25 +01:00
Sami Mokaddem 820eb77cff
fix: [feed-generator] Revert back the event initial search to use the index endpoint instead of RestSearch 
Relying on RestSearch was offering more flexibility than index in terms of filtering options,
however, it might introduce a significant overhead potentially leading to timeout.
 2021-11-17 12:35:26 +01:00
Sami Mokaddem 93cff2e50e
chg: [feed-generator] Added exclude malware samples option 2021-11-05 11:37:10 +01:00
Raphaël Vinot fa536ee41e fix: revert rename, fix mypy 2021-06-21 11:39:08 -07:00
Raphaël Vinot 481284dc12 chg: Update mypy, change accordingly 2021-06-21 11:20:41 -07:00
Raphaël Vinot 2fbf6c96a3 new: Optionally include deleted attributes/objects in feed 2020-06-19 13:41:58 +02:00
Raphaël Vinot 337d9a6306 chg: More flexible when an event is in a weird state. 2020-02-05 13:28:11 +01:00
AndreC10002 cd659614ed
Update generate.py 2020-01-02 14:03:52 -05:00
Raphaël Vinot 4e50f58a74 fix: Feed generator was broken 
Fix #506
 2019-12-24 00:16:10 +01:00
Raphaël Vinot 85b9c92313 fix: Event without hashable attribute 
Related #506
 2019-12-23 21:32:21 +01:00
Raphaël Vinot 6098cd869f chg: Make the feed generator more generic 2019-11-22 17:36:24 +01:00
Raphaël Vinot 5ebaca3b52 chg: Use New version of PyMISP in the feed generator 2019-11-20 12:50:28 +01:00
iglocska 4bd9180951
fix: [feed generator] Added missing fields 2019-05-22 16:30:36 +02:00
Christophe Vandeplas 60575d4cf6 fix: readme update + python3 + pep8 
align python path to readme specifying python3
 2018-10-28 13:01:26 +01:00
Andras Iklody 78d2ac5778
Added missing field to feed generator 2018-04-23 09:12:31 +02:00
iglocska 195cd6d7fc Rework of the feed generator 
- use objects, attribute tags and object references correctly
- generate quickhashlist for fast lookups / future MISP caching mechanism
- saner structure (herp-a-derp)
 2017-11-04 14:18:15 +01:00
Raphaël Vinot bf5793992b Fix examples after removal of MISP XML support 2016-09-12 12:53:58 +02:00
Raphaël Vinot 8241d4ce93 Fix python3 compat. Make Pep8 happy. 2016-06-16 13:48:40 +09:00
Iglocska 1d4261fa5a Added the option to filter out attributes based on distribution level 2016-04-11 15:18:05 +02:00
Koen Van Impe f495c23303 Check if objectType exists in event 
Prevent failing when f.e. an event does not have a tag.
 2016-03-11 14:51:38 +01:00
Iglocska 8d0c26288e Updated the feed generator 
- only save fields that are actually necessary and don't reveal too much of unneeded information (such as correlation)
- add contextual fields to the manifest
 2016-03-07 03:29:34 +01:00
Iglocska be242152e7 Script for the upcoming feed generator 
- also some minor modifications to the get_index api
 2016-03-01 15:32:58 +01:00