Commit Graph

226 Commits (e53e1a06e6a5960be320cc31cae9aa45bd1806b6)

Author SHA1 Message Date
Raphaël Vinot 7c76d6be39
Merge pull request #409 from 3c7/bugfix/openioc_datatypes
[OpenIOC] Allow the use of content type for RouteEntryItem/Destination
2019-07-04 10:35:40 +02:00
Raphaël Vinot e0fac90310 new: Allow to pass delimiter & quotechar to the CSV loader 2019-07-02 11:55:51 +02:00
0x3c7 7be58af56a
[openioc] changed default mapping for RouteEntryItem/Destination/string. 2019-06-19 12:45:20 +02:00
0x3c7 b7d15380c9
[openioc] Changed mapping for RouteEntryItem/Destination/string to domain instead of url because UrlHistoryItem/URL is mostly used for urls 2019-06-19 07:39:15 +02:00
0x3c7 42a3dcf704
Fixes other mapping to other types 2019-06-19 07:38:15 +02:00
0x3c7 efd8b80adb
[openioc] Allow the use of types in openioc content tags 2019-06-18 16:10:20 +02:00
Raphaël Vinot 3b56b218b5 new: Object generator for ssh authorized_keys files. 2019-05-20 16:40:47 +02:00
Raphaël Vinot 67cb8e9d53 chg: Allow to pass a eml as string to EmailObject 2019-04-24 15:37:40 +02:00
Raphaël Vinot 52402c2acf new: add_attributes method in MISPObject (for multiple attributes) 2019-04-09 17:54:12 +02:00
Raphaël Vinot e5a42b812f new: Add CSV loader
Fix #376
2019-04-03 16:28:31 +02:00
Raphaël Vinot 1e060f669f new: Helper to create MISP Objects for regcheck.org.uk 2019-04-02 17:13:07 +02:00
Falconieri bdff7e635f fix: [exportpdf] Doc update 2019-03-14 08:11:30 +01:00
Falconieri ea4ed24f4f fix: [exportpdf] Coding Style 2019-03-14 08:02:45 +01:00
Raphaël Vinot 9d2251cb38 chg: Initial set of refactoring on PDF generator 2019-03-12 15:14:44 +01:00
Falconieri 9d6585cd3a fix: [exportpdf] Custom path for fonts and font package 2019-03-05 11:37:01 +01:00
Raphaël Vinot b8759673b9 chg: Add i8n for pdfexport, without all the fonts in the main repo 2019-03-04 16:06:38 -08:00
Falconieri 1b8921d820 fix: [exportpdf] fix empty object/attribute/galaxy bugs 2019-03-01 11:12:04 +01:00
Falconieri b2c5477cd9 fix: [exportpdf] Add suggestions (UX) 2019-03-01 10:45:44 +01:00
Falconieri ead9cec7d3 fix: [exportpdf] switch page size to A4 2019-03-01 09:56:38 +01:00
Falconieri 39b4677bf9 fix: [exportpdf] switch page size to A4 2019-03-01 09:55:42 +01:00
Falconieri f1d2f3ae1e Merge branch 'master' of github.com:Vincent-CIRCL/PyMISP 2019-03-01 09:22:55 +01:00
Falconieri e6291e71d5 fix: [exportpdf] None if no Galaxies bug 2019-03-01 09:21:48 +01:00
Vincent-CIRCL 83ef1b851e
Merge branch 'master' into master 2019-03-01 09:07:45 +01:00
Falconieri a06c8cf5b8 fix: [reportlab] Galaxies and Clusters printing 2019-03-01 09:06:01 +01:00
Falconieri 24e1a1732c fix: [reportlab] Clusters added. Still UX to perform 2019-02-28 16:34:07 +01:00
Falconieri 79e66363d2 fix: [reportlab] working clusters and galaxies. Not nice however 2019-02-28 15:14:52 +01:00
Falconieri 6031a7d426 chg: [exportpdf] BIG refactoring. Classes, comments, Galaxy starting 2019-02-28 13:44:54 +01:00
Falconieri 9adff0b574 chg: [exportPDF] add basic handling of clusters 2019-02-28 10:58:49 +01:00
Raphaël Vinot 2e93aad34a fix: Make sure install works even without reportlab installed. 2019-02-27 21:16:49 -08:00
Falconieri a9c0ce4107 fix: [exportPDF] Adding facultative text description, sightings, tests cases 2019-02-27 11:48:56 +01:00
Falconieri 10b5496174 fix : [exportpdf] Add Object date 2019-02-26 15:51:06 +01:00
Falconieri 133db6aeaa fix : [exportpdf] Double property printing error fixed 2019-02-26 15:42:49 +01:00
Falconieri 8194c534d7 add : [exportpdf] Objects handling, tests cases,
test files
2019-02-26 15:35:40 +01:00
Falconieri 029ca57b5f fix: [exportpdf] Refactoring, nicer code 2019-02-26 14:28:31 +01:00
Falconieri 29a1b05c1f add: [exportpdf] Handling pictures embedded as attributes 2019-02-26 14:03:25 +01:00
Falconieri cefcc3430c add : [exportpdf] Picture management, manual 2019-02-26 11:13:24 +01:00
Falconieri 2adac8f0d2 chg: [exportpdf] Add metadata, bugfixes cases (too long values, sanitization), links to misp instances 2019-02-25 15:49:53 +01:00
Falconieri 37d3f2f613 fix & add: [exportpdf] Add metadata, fix special cases (too long values, sanitization) 2019-02-22 17:47:22 +01:00
Falconieri 76ef3d058f fix: [pdfexport] Fix tests paths, dependency in pipfile, imports, and 'file' name overwrite in test function 2019-02-22 11:34:41 +01:00
Falconieri 57eccfe7dc add: exportpdf tool working 2019-02-22 10:18:44 +01:00
Falconieri 0fc780994f general improvement : deisgn, exhaustiviness of mispEvent values displayed, good pratice concerning paragraphe/table made 2019-02-20 16:15:56 +01:00
Falconieri 01b2ad9199 update with table basics 2019-02-19 16:00:57 +01:00
Falconieri c7511812f0 Structure of the improvements OK : test file, test folder, report generator 2019-02-19 15:17:00 +01:00
Raphaël Vinot fe91d06b91 chg: Remove dependency on six 2019-02-06 11:31:05 +01:00
Raphaël Vinot fd365943a1 fix: Typo in OpenIOC script
Fix #237
2018-07-16 13:52:51 +02:00
Raphaël Vinot b11ad18d2b chg: Add comments
Fix #242
2018-07-16 13:40:51 +02:00
Raphaël Vinot 42c99054f8 fix: Decoding issue. 2018-05-11 10:20:07 -04:00
Raphaël Vinot 04d3183115 fix: Properly get and decode the body of the email 2018-05-08 11:02:32 +02:00
Raphaël Vinot cb15bdfca1 fix: Provide the extension of the EML file to attach. 2018-05-07 10:18:38 +02:00
Raphaël Vinot 1193e904bf fix: Properly handle attachments 2018-05-04 16:06:48 +02:00
Raphaël Vinot ab54c85509 new: Properly implement the Email object creator 2018-05-03 20:51:04 +02:00
Raphaël Vinot 6d630efebd fix: Geolocation object filename 2018-03-28 11:21:55 +02:00
Raphaël Vinot dbcadfb4b1 new: Add helper for Geolocation object 2018-03-28 10:52:12 +02:00
Raphaël Vinot f0772d299a new: Add helper for ASN object 2018-03-28 10:27:02 +02:00
Raphaël Vinot 6297cac315 fix: consider a timestamp < 30000000 as a date 2018-03-28 10:02:47 +02:00
Raphaël Vinot fbf9df4a19 new: More flexibility in <something> -> datetime 2018-03-28 09:47:36 +02:00
Raphaël Vinot 43d1f73d9b fix: typo 2018-03-27 15:19:52 +02:00
Raphaël Vinot b73df4fad6 new: Add helper for DomainIP 2018-03-27 15:18:50 +02:00
Raphaël Vinot f937e844dd chg: Make object helpers more generic, cleanup. 2018-03-27 14:57:12 +02:00
Raphaël Vinot 8125b073a1 chg: Update fail2ban helper & example 2018-03-27 10:29:57 +02:00
Raphaël Vinot ecf9bd549f fix: disable email object for python <3.6 2018-03-26 13:42:55 +02:00
Raphaël Vinot 8ebb963adf new: add preliminary fail2ban object 2018-03-26 12:07:40 +02:00
Raphaël Vinot 5c6314c45c new: Add email object generator 2018-03-18 23:21:29 +01:00
Raphaël Vinot e937c3ae81 new: Add bindings for Galaxies and Taxonimies 2018-01-26 17:02:47 +01:00
Raphaël Vinot 250190e8a8 new: Add bindings to PyMISPWarninglists 2018-01-25 17:56:30 +01:00
Raphaël Vinot e2bb66d01c chg: Cleanup new sbsignature generator 2018-01-23 11:07:36 +01:00
garanews db235899bf sb-signature library
Created sb-signature library with relative example for testing.
Thanks @dadokkio
2018-01-23 10:35:21 +01:00
Raphaël Vinot e17349cba2 chg: Remove old warning. 2018-01-11 14:07:31 +01:00
Raphaël Vinot e8e13f3218 chg: Update documentation 2017-12-22 17:22:07 +01:00
Raphaël Vinot 4a1d43c7e2 fix: Fix typo 2017-12-20 14:27:31 +01:00
Raphaël Vinot d19a10ddcc chg: Make the library easier to use 2017-12-13 15:45:02 +01:00
Raphaël Vinot 7946e2ef83 fix: Disable pseudofile support in py2, skip tests. 2017-12-09 13:35:44 +01:00
Raphaël Vinot 52e079fea2 chg: Allow to pass a pseudofile to LIEF 2017-12-09 13:12:04 +01:00
Raphaël Vinot 1d190cdf50
Merge pull request #146 from c-goes/lief_integrity_exception
Make FileObject creation work if lief parsing fails
2017-12-04 18:57:52 +01:00
Raphaël Vinot 42c5cc5e37 chg: allow to pass a proxy to query VT 2017-12-04 18:43:44 +01:00
c-goes b514600965 Make FileObject creation work if lief parsing fails 2017-12-04 17:52:13 +01:00
Raphaël Vinot 0875ad4a5f chg: Add example file to push OpenIOC file to MISP
chg: Add some imports in the tool's init file
2017-11-28 11:54:08 +01:00
Raphaël Vinot bfe9867b2e chg: Add a generic MISP object generator 2017-11-15 17:37:17 +01:00
Raphaël Vinot 134df0cafb chg: Properly use python logging module. 2017-11-07 18:10:04 -08:00
Raphaël Vinot 78eb6e3080 fix: Update dependencies for VT generator. 2017-10-25 15:00:00 -04:00
Thomas Gardner e2d690d0ef added vtreportobject and vt_to_misp example 2017-10-25 09:48:18 -04:00
Andras Iklody cae7f635ea Update openioc.py 2017-10-18 16:27:54 +02:00
Raphaël Vinot 3e73ae826f Fix: create file object
Was broken in case the file was neither PE/ELF/Mach-O
2017-09-27 16:05:06 +02:00
Raphaël Vinot d3d34d5953 update: make make_binary_objects more flexible
fix: use proper exception handlers
2017-09-20 11:44:55 +01:00
Raphaël Vinot b1989f16f2 Merge branch 'objects' 2017-09-18 11:43:48 +01:00
Raphaël Vinot da2b28a927 Use MISPAbstract as a master class everywhere.
This is probably breaking everything.... ¯\_(ツ)_/¯
2017-09-12 16:46:06 +02:00
Raphaël Vinot b74e558f75 Some more refactoring 2017-08-31 10:40:18 +02:00
Raphaël Vinot 74037cb6fa Some more refactoring and cleanup 2017-08-30 12:47:32 +02:00
Raphaël Vinot 8452e16dbd Update PE generator 2017-08-29 10:25:45 +02:00
Raphaël Vinot 2bc0745fbf Refactoring in order to load objects 2017-08-28 19:16:20 +02:00
Raphaël Vinot 44f32bc443 Add support for multiple entries of the same type in an object 2017-08-27 18:12:42 +02:00
Raphaël Vinot ed441d6356 Remove some python versions from travis 2017-08-25 18:35:53 +02:00
Raphaël Vinot a5531990ae Do not try to run code requiring lief 2017-08-25 17:41:58 +02:00
Raphaël Vinot 9ff3739753 Remove ImportError 2017-08-25 17:37:35 +02:00
Raphaël Vinot f06bfd310b Do not fail if pymisp is not installed 2017-08-25 16:38:12 +02:00
Raphaël Vinot 44008d1c0c Add support for ELF and MachO objects 2017-08-25 15:57:12 +02:00
Raphaël Vinot f66af15c62 Update get_template_id, cleanup 2017-08-25 09:45:56 +02:00
Raphaël Vinot c09ce0032c Refactor all the things
Add script for MISP core, make everything generic.
2017-08-24 19:21:52 +02:00
Raphaël Vinot 314f7eaed1 Re-enable python < 3.5 support. 2017-08-23 16:55:32 +02:00
Raphaël Vinot 77845bd813 Update file/pe/pe-sections objects creator. 2017-08-23 15:37:04 +02:00
Raphaël Vinot 2fd3b05202 Update accordingly to the current server implementation 2017-07-24 17:16:40 +02:00
Sebastian Wagner 5a85788c5d
Fix shebangs and executable permissions
Files containing a shebang should be executable (examples/*.py)
Non-executable files should not contain a shebang (pymisp/...)

spotted with rpmlint
2017-07-24 13:27:28 +02:00
Raphaël Vinot 0c66d80dd1 Re-enable python2 support... 2017-07-22 22:22:39 +02:00
Raphaël Vinot 78488db7aa Initial commit supporting MISP Objects 2017-07-21 20:34:56 +02:00
Raphaël Vinot d0eb1252ae Avoid a comment set to NoneNone
Fix https://github.com/MISP/misp-modules/issues/127
2017-07-12 12:13:34 +02:00
Raphaël Vinot bb9642445a Revert "Fix OpenIOC import"
This reverts commit acd6d8b052.
2017-07-12 11:07:54 +02:00
Raphaël Vinot acd6d8b052 Fix OpenIOC import 2017-07-12 10:49:45 +02:00
Raphaël Vinot b43722c73f Make pep8 happy 2017-05-24 07:38:17 +02:00
Tristan METAYER d72d3dceb7 correction for https://travis-ci.org/MISP/misp-modules/jobs/231065469
code refactoring

add new composite
2017-05-15 20:25:16 +02:00
Tristan METAYER e232392335 remove unused variable 2017-05-03 15:36:08 +02:00
Tristan METAYER 2267e8a97b remove category
It will be automaticly detected
https://github.com/MISP/PyMISP/blob/master/pymisp/tools/openioc.py
2017-05-03 15:19:27 +02:00
Tristan METAYER 6548ed6e6f revert tab to escape 2017-05-03 10:56:41 +02:00
Tristan METAYER abe54225b7 Ajout de mapping
Ajout de la prise en compte d'autre composite
2017-05-02 18:47:53 +02:00
Raphaël Vinot c348fcc7dc Properly split ip:port for ipv4 (openioc import) 2017-02-27 18:38:52 +01:00
Raphaël Vinot be0c8a1f8c Properly support CDATA fields in OpenIOC files. 2017-02-27 18:01:37 +01:00
Raphaël Vinot a55603e5c8 Allow to pass a pseudo file to OpenIOC loader. 2017-02-27 11:33:07 +01:00
Raphaël Vinot 748136f3f1 Allow to update an event by UUID, syntax fixes. 2017-01-16 14:41:32 -05:00
Raphaël Vinot f956fd526e Fix neo4j 2016-11-30 17:14:55 +01:00
Hannah Ward f7b228ac56
Use misp_stix_converter.converters.convert's load_stix method 2016-11-21 11:57:49 +00:00
Raphaël Vinot 0c2a1f0d50 Update missing dependency exception 2016-11-16 16:35:06 +01:00
Raphaël Vinot 477f81d3ab Fix openioc loader, update mapping 2016-11-10 11:41:13 +01:00
Raphaël Vinot 9f0737c34a Add some mapping to openioc, add python version in the user agent 2016-11-03 16:02:09 -04:00
Raphaël Vinot 6c5289d495 Initial version of the OpenIOC loader 2016-10-29 15:27:48 -04:00
Raphaël Vinot ac2e801d97 Add helper tool to load STIX objects. 2016-10-27 16:25:17 -04:00
Raphaël Vinot 2907fd18d7 Cleanup neo4j support 2016-10-27 15:58:08 -04:00
Raphaël Vinot abd836babb Add simple script to push MISP events into Neo4j 2016-10-25 17:28:55 -04:00