Commit Graph

319 Commits (c280ea146d18a8b95b9f4b55b1051a1c23542c64)

Author SHA1 Message Date
Raphaël Vinot 4962e5c1b2 chg: Add authenticode support in generate_file_objects 2021-01-19 16:18:28 +01:00
Raphaël Vinot 76c4f92c17 chg: Use lief 0.11.0, generate authenticode entries 2021-01-19 15:44:58 +01:00
Raphaël Vinot c50bbd5d1c chg: Add controller argument to get_csv script 2021-01-11 11:49:12 +01:00
Raphaël Vinot bbc68f4f2d
Merge pull request #664 from kuselfu/main
update vmray_automation
2020-11-30 14:40:13 +01:00
Jens Thom 0b9781b4da update `vmray_automation` to stay compatible with the changes made to `vmray_import` MISP modules 2020-11-30 12:11:44 +01:00
Raphaël Vinot 8f0f75720b chg: Add path to CSV sample files
Related: #502
2020-11-24 11:28:36 +01:00
Alexandre Dulaunoy ff7ed7a838
new: [add_gitlab_user] new gitlab user fetch script to MISP object
usage: add_gitlab_user.py [-h] -e EVENT [-f] -u USERNAME [-l LINK]

Fetch GitLab user details and add it in object in MISP

optional arguments:
  -h, --help            show this help message and exit
  -e EVENT, --event EVENT
                        Event ID to update
  -f, --force-template-update
  -u USERNAME, --username USERNAME
                        GitLab username to add
  -l LINK, --link LINK  Url to access the GitLab instance, Default is
                        www.gitlab.com.
2020-10-07 12:41:03 +02:00
garanews d5209776c7
fix PyMISP repo URL
MISP/PyMISP vs  CIRCL/PyMISP
2020-10-05 17:14:25 +02:00
garanews cd785aab09 fix typo
fix typo
2020-10-01 13:45:29 +02:00
Alexandre Dulaunoy 0e0424fa30
chg: [add_github_user] add ssh keys of the user in the MISP object 2020-09-17 10:36:54 +02:00
Alexandre Dulaunoy 156d5564e8
chg: [add_github_user] more fields added from the GitHub API 2020-09-17 07:40:13 +02:00
Alexandre Dulaunoy 13995e1eca
chg: [add_github_user] add following to the MISP object 2020-09-16 21:40:34 +02:00
Raphaël Vinot 3fccd106a0 chg: Pass a list to add_attributes 2020-09-16 21:08:02 +02:00
Raphaël Vinot 808e8132f2 chg: Use MISPObject instead of GenericObjectGenerator 2020-09-16 20:58:57 +02:00
Alexandre Dulaunoy b9ee5c69bb
new: [example] add_github_user example - WiP
usage: add_github_user.py [-h] -e EVENT [-f] -u USERNAME

Fetch GitHub user details and add it in object in MISP

optional arguments:
  -h, --help            show this help message and exit
  -e EVENT, --event EVENT
                        Event ID to update
  -f, --force-template-update
  -u USERNAME, --username USERNAME
                        GitHub username to add
2020-09-16 17:36:37 +02:00
Raphaël Vinot 781161f82c fix: Wrong call to pymisp.search_index 2020-09-15 16:56:21 +02:00
Raphaël Vinot 0639c1773d chg: Remove outdated example
Fix #611
2020-07-30 11:47:34 +02:00
Raphaël Vinot 945752ea32 fix: Example using deprecated calls
fix #602
2020-07-22 12:18:35 +02:00
Raphaël Vinot 6cd0c70679 fix: dummy event example
Fix #598
2020-07-16 11:30:47 +02:00
Raphaël Vinot 2fbf6c96a3 new: Optionally include deleted attributes/objects in feed 2020-06-19 13:41:58 +02:00
Sebastian Wagner d05b4faf3d
Fix end of line encoding of examples/cytomic_orion.py 2020-05-21 15:47:01 +02:00
Raphaël Vinot c77603eb30
Update up.py
Fix #563
2020-04-17 13:01:11 +02:00
Raphaël Vinot 12e05fd0ce chg: Remove old suricata script, keep reference to old code. 2020-04-02 14:04:39 +02:00
Raphaël Vinot c6656a1a2e chg: Add option to aggregare by country 2020-03-24 13:25:41 +01:00
Raphaël Vinot a9ad33e8e3 Merge branch 'master' of github.com:MISP/PyMISP 2020-03-20 09:54:09 +01:00
Raphaël Vinot c0b2369922 chg: [CSSE COVID] Publish the event immediately. 2020-03-20 09:53:40 +01:00
Sebastian Wagner 240b1e1617
dos2unix examples/stats_report.py 2020-03-17 15:45:07 +01:00
Koen Van Impe b4e17a8d02 Cytomic Orion API access 2020-03-11 14:34:13 +01:00
Koen Van Impe 3b38de3455 Add organisations from CSV 2020-03-11 14:17:05 +01:00
Koen Van Impe 65e4e3b4ec Minor updates to vmray_automation for travis 2020-03-11 14:07:44 +01:00
Koen Van Impe 6616561e96 VMRay Automation with ExpandedPyMISP 2020-03-11 14:00:34 +01:00
Raphaël Vinot 67442dd503 new: Add import script for dxy data 2020-03-02 00:13:53 +01:00
Raphaël Vinot 2cb90bc826 chg: Add tag, set distribution, add file and source (CSSE importer) 2020-02-29 02:10:20 +01:00
Raphaël Vinot a57b8aeeb4 new: csse covid19 daily report importer 2020-02-29 01:33:03 +01:00
Raphaël Vinot 43838d3034 new: Admin script to setup a sync server 2020-02-20 15:39:19 +01:00
Raphaël Vinot 337d9a6306 chg: More flexible when an event is in a weird state. 2020-02-05 13:28:11 +01:00
Manabu Niseki 2c491b237a chore: delete old examples
Delete examples which use deprecated/deleted methods
2020-01-30 07:35:30 +09:00
Raphaël Vinot 97d960883c chg: Trustar example uses objects 2020-01-24 13:17:48 +01:00
Raphaël Vinot 202519b0ac
Merge pull request #518 from goodlandsecurity/trustar-integration
Trustar integration
2020-01-24 11:39:38 +01:00
Raphaël Vinot b0e95fd5af chg: Refactorize typing, validate 2020-01-23 10:27:40 +01:00
turtlefac3 d41e0d9b30 fixed trailing lines 2020-01-17 13:51:53 -06:00
turtlefac3 42ddaaf10d fixed trailing lines 2020-01-17 13:50:50 -06:00
turtlefac3 d7cbbc707e custom integration written in python to scrape Proofpoint VAP API for metrics of top Very Attacked Persons and create MISP events 2020-01-17 13:44:10 -06:00
th3jiv3r ded30d42e0 scrape trustar intel platform reports and create misp events 2020-01-15 13:19:43 -06:00
th3jiv3r 2b1cc6e616 configuration for trustar integration 2020-01-15 13:17:57 -06:00
Raphaël Vinot 33f3fe4c77
Merge pull request #514 from goodlandsecurity/proofpoint-tap-integration
Proofpoint tap integration
2020-01-15 16:43:38 +01:00
AaronK a5ac29a68b
Update README.md
minor typo
2020-01-15 16:30:07 +01:00
th3jiv3r 6000364d56 fixed TODO, added quarantineFolder/quarantineRule from messagesBlocked, added some error handling to prevent empty attributes from trying to be added 2020-01-14 14:34:52 -06:00
th3jiv3r 7dfb2003ab scrape proofpoint tap api for messages blocked/delivered & clicks blocked/permitted and create misp events 2020-01-13 14:49:09 -06:00
th3jiv3r c439b50766 add variable for proofpoint tap api auth 2020-01-13 14:47:59 -06:00