MISP
/
PyMISP
mirror of https://github.com/MISP/PyMISP
2
0
Fork 0
Code Issues Releases Wiki Activity
2,821 Commits
13 Branches
166 Tags
93 MiB
Commit Graph

1451 Commits (f0a20cd8ad4d083da88f636231c25bdf779480e0)

Author SHA1 Message Date
Raphaël Vinot 63d402b358 chg: Make mypy happy 2022-06-16 13:15:27 +02:00
malvidin cfded6e8bb Fix multiple_space warning 2022-06-16 09:44:25 +02:00
malvidin 2b98616982 Option to include more URLObject attributes 
Add publicsuffixlist faup for URLObject Windows support
URLObject with PSLFaup prefers IP to host/domain
 2022-06-16 09:38:39 +02:00
Christophe Vandeplas 8b34993480 fix: [feed] fixes bug when template_uuid does not exist 2022-06-15 07:18:18 +02:00
Yun Zheng Hu 49b6a45502 Ensure that keys are sorted in the returned `_to_feed()` dictionary 
This allows for better deterministic feed output generation.
 2022-06-09 14:38:06 +02:00
Raphaël Vinot bb9f053b68
Merge pull request #835 from tomking2/feature/search_sharinggroup 
new: Search by sharing groups
 2022-06-07 13:18:35 +02:00
Raphaël Vinot cd4b5d533b chg: Bump version 2022-05-30 11:00:59 +02:00
Tom King 31958dd160 chg: Add ability to filter by sharing group for RestSearch for MISP >= v2.4.158 2022-04-21 10:38:52 +01:00
Raphaël Vinot b1892efb6a chg: Bump object templates 2022-03-24 15:45:34 +01:00
Raphaël Vinot 6799346aa0 chg: Bump version 2022-03-24 15:29:09 +01:00
Raphaël Vinot 2783879d72 chg: Bump deps, objects 2022-03-24 15:29:09 +01:00
Alexandre Dulaunoy 78ec1fd2f7
chg: [misp-objects] updated to the latest version 2022-03-17 10:26:56 +01:00
Raphaël Vinot 03dc22f959 chg: Bump changelog 2022-03-03 19:18:01 +01:00
Raphaël Vinot 883889c9c5 fix: Incorrect call when requesting a new API key 2022-03-03 19:09:58 +01:00
Raphaël Vinot fd6a396061 chg: Bump version 2022-03-03 15:09:57 +01:00
Raphaël Vinot 7321abdb1e chg: Bump misp-objects 2022-03-03 15:07:28 +01:00
Raphaël Vinot 24e79c8340 new: get_new_authkey for a user 2022-03-03 15:07:28 +01:00
Alexandre Dulaunoy e5ac59578b
chg: [misp-objects] updated to the latest version 2022-02-04 10:45:04 +01:00
Alexandre Dulaunoy cdf2ee08c1
chg: [FIPS] no clean way to support OpenSSL hashlib interface for FIPS 2022-01-27 15:56:16 +01:00
Alexandre Dulaunoy 14bf1f8189
chg: [FIPS] falling back on older version of Python not having usedforsecurity 2022-01-27 15:47:37 +01:00
Alexandre Dulaunoy 1efc735fb3
fix: [mispevent] cannot type 2022-01-27 15:34:18 +01:00
Alexandre Dulaunoy 6e018a4582
chg: [FIPS] in some cases, the `usedforsecurity` is not used. So fail if 
the FIPS compliance is required and then the `usedforsecurity` is
disabled
 2022-01-27 15:29:15 +01:00
Alexandre Dulaunoy 02bc129341
chg: [feeds] FIPS: when MD5 hashes are generated for fast-lookup it's not for security. 
hashlib provides an option to tell if the hash is used for security or
not. By default, it's set to True. For the feed cache generation, it's
not. Then usedforsecurity=False

Ref: https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402annexa.pdf
 2022-01-27 15:20:57 +01:00
deku c8d633f15b Add feed option for local tag exclusion #817 2022-01-19 21:30:30 +00:00
Raphaël Vinot 75cb39e0ca fix: Make mypy happy 2022-01-13 08:32:30 +01:00
Raphaël Vinot a3634742b3 chg: Bump deps, objects 2022-01-13 08:18:38 +01:00
Raphaël Vinot ae3c358dca chg: Bump version 2021-12-22 11:08:46 +01:00
Raphaël Vinot 43296cce45 chg: Bump deps, object templates 2021-12-22 11:07:38 +01:00
Raphaël Vinot e803d1358d chg: Bump objects templates 2021-12-20 13:18:30 +01:00
Raphaël Vinot 5e1e2b532f chg: Bump misp-objects 2021-12-20 12:05:32 +01:00
Raphaël Vinot bc37a03174 fix: Update live tests to support proper format of SGs 2021-11-30 11:41:53 +01:00
Christophe Vandeplas afedd8d90b fix: [sharinggroups] Fixes wrong model for SharingGroupOrg 2021-11-30 10:43:44 +01:00
Christophe Vandeplas 38105f68b0 fix: [feed-generator] code style fixes 2021-11-29 16:35:12 +01:00
Christophe Vandeplas dd5b448760 fix: [feed-generator] keeping function compatibility 2021-11-29 16:26:57 +01:00
Christophe Vandeplas a9970d3078 chg: [feed-generator] support for distribution and sharing groups 2021-11-29 15:54:34 +01:00
Raphaël Vinot a6fd8ca4b2 chg: Bump version 2021-11-19 01:52:14 -08:00
Raphaël Vinot 474794992b chg: Bump misp-objects 2021-11-17 11:50:01 -08:00
Sami Tainio 25fb7b5a28
chg: Removed a whitespace 2021-11-01 13:41:51 +02:00
Sami Tainio 8772c1fa5e
new: Add Blind Carbon Copy (bcc) headers 2021-11-01 13:35:39 +02:00
Raphaël Vinot f85ccb3e19
Merge pull request #802 from MISP/JakubOnderka-patch-2 
fix: PyMISP.get_user_setting method
 2021-10-28 16:34:43 -04:00
Raphaël Vinot a16aa03872 chg: Keep strict and generate attributes when needed 2021-10-28 16:29:27 -04:00
Raphaël Vinot 7e9490e12e chg: Slight changes regarding timezones 2021-10-28 16:21:08 -04:00
Thomas Dupuy c82dd6848f chg: Unified constructors 2021-10-27 14:27:38 -04:00
Alexandre Dulaunoy b212894152
chg: [types] remove the duplicate 2021-10-26 21:55:37 +02:00
Alexandre Dulaunoy 17b288d9ca
chg: [describeTypes] remove duplicate filename-pattern 2021-10-26 16:28:31 +02:00
Alexandre Dulaunoy 3b90ab722e
chg: [misp-objects] updated 2021-10-26 16:26:28 +02:00
Alexandre Dulaunoy 772bb52760
Merge branch 'main' of github.com:MISP/PyMISP into main 2021-10-26 11:43:36 +02:00
Alexandre Dulaunoy 4e495935b8
chg: [describeTypes] updated to include ssh-fingerprint 2021-10-26 11:42:26 +02:00
Jakub Onderka 74196ee96f
fix: PyMISP.get_user_setting method 2021-10-25 22:51:28 +02:00
Alexandre Dulaunoy 91f6c1e4b3
chg: [misp-objects] updated to the latest version 2021-10-25 15:40:38 +02:00
Raphaël Vinot ec4172dfba
Merge pull request #795 from tomking2/feature/sharing_group_improvements 
Improve sharing groups, new get_sharing_group and return sharing group orgs
 2021-10-14 14:51:11 +02:00
Raphaël Vinot e84d5a11f3
Merge pull request #794 from tomking2/feature/org_user_search 
chg: Add ability to search against orgs and users by freetext search (both) or organisation (users)
 2021-10-14 14:46:34 +02:00
Jakub Onderka 5064107093
Merge pull request #783 from JakubOnderka/fixes-149 
Changes for upcoming MISP 2.4.150
 2021-10-08 16:38:50 +02:00
Raphaël Vinot e07321bfa9 fix: Missing import in __init__ 
Fix #796
 2021-10-08 15:43:16 +02:00
Tom King a56e344a21 fix: Fix final nosetest 2021-10-04 11:56:13 +01:00
Tom King b3dee88fab fix: Fix nosetests 2021-10-04 11:52:35 +01:00
Tom King c120db02b8 chg: Improve sharing groups, bring back organsations included and ability to get specific SG 2021-10-04 11:41:36 +01:00
Tom King 43d8cdff4a chg: Add ability to search against orgs and users by freetext search (both) or organisation (users) 2021-10-04 11:39:43 +01:00
Raphaël Vinot 21dd71bf4b chg: Bump misp-objects 2021-09-30 11:16:03 +02:00
Raphaël Vinot 54d38df6dc fix: message_from_bytes really dislikes newline at the beginning of a mail 2021-09-30 11:16:03 +02:00
Sami Tainio f6c8e2ad0d
Remove unicode to ascii parts 2021-09-28 16:42:15 +03:00
Sami Tainio 2fb354a938
Fix #787 and add Unicode to ASCII function 
Fix #787
- Uses regex to pick up the hostnames/domains from the "Received: from" headers.

Unicode to ASCII function
- Spam messages more often than not contain junk text as unicode characters in the headers. The "from" and "subject" headers being the most common ones. Before this change the script would error on such emails or sometimes replace the unicode characters with questionmarks "?".
- Function takes argument as an input and then encodes it in ascii while ignoring any malformed data. It then returns an ASCII string without the unicode characters.
- Currently implemented for "from" and "subject" handling.
 2021-09-28 14:50:17 +03:00
Raphaël Vinot d44847b63a fix: skip IPs in Received header 
Related:  #787
 2021-09-27 10:27:14 +02:00
Alexandre Dulaunoy 28b016ace1
Merge branch 'main' of github.com:MISP/PyMISP into main 2021-09-24 15:39:56 +02:00
Alexandre Dulaunoy bf8c8711ab
chg: [misp-objects] updated to the latest version 2021-09-24 15:39:35 +02:00
Raphaël Vinot 9fc4d90454 new: Add few keys to email object creator 
Fix #787
 2021-09-23 17:10:27 +02:00
Alexandre Dulaunoy 06d034947d
chg: [misp-objects] updated to the latest version 2021-09-15 13:31:30 +02:00
Raphaël Vinot 253730759a fix: Upload of STIX document with non-ascii characters 
Due to: https://github.com/psf/requests/issues/5560

TL;DR: a variable of type str passed to data in a POST request will be
silently re-encoded to ISO-8859-1, making MISP barf on the other side.
 2021-09-09 16:58:27 +02:00
Raphaël Vinot 0bdfb3892d chg: Bump live tests 2021-09-07 14:26:22 +02:00
Jakub Onderka e227cd970b fix: [types] Update types to use `filename-pattern` type 2021-08-31 16:57:54 +02:00
Alexandre Dulaunoy 90e988cf48
chg: [misp-objects] updated to the latest version 2021-08-27 11:02:30 +02:00
Christophe Vandeplas d82a50efb7 chg: [types] updated types/categories mapping 2021-08-20 08:42:00 +02:00
Raphaël Vinot 6f7157cf26 chg: Bump objects template 2021-08-05 11:34:20 +02:00
Raphaël Vinot fc9e7ca59b chg: Bump version 2021-08-05 11:32:28 +02:00
Raphaël Vinot 3dd88a1418 fix: Typo in key name 2021-08-05 11:14:04 +02:00
Jakub Onderka 76ce8d8c38 new: Save one REST call when initialize PyMISP class 2021-08-05 11:11:06 +02:00
Jakub Onderka 7ccf4c15d2 chg: Do not load schema for event when not necessary 2021-08-05 11:10:33 +02:00
iglocska 9ea5ec8b1f Revert "chg: Remove legacy stix converter." 
This reverts commit 94ce4a367b.

- breaks misp-stix converter, reverting it for now, let's find a way to deprecate this without outright removing it
 2021-08-05 11:10:33 +02:00
Jakub Onderka 1746138eb3 chg: `get_taxonomy` supports namespace 2021-08-05 11:10:33 +02:00
Jakub Onderka 2ecfc24c14 new: Method `organisation_exists` 2021-08-05 11:10:33 +02:00
Jakub Onderka 7dab091c85 new: Method `sharing_group_exists` 2021-08-05 11:10:31 +02:00
Jakub Onderka 88d0b4ac93 new: Method `update_sharing_group` 2021-08-05 11:09:33 +02:00
Jakub Onderka 270d16cd4c new: `to_dict` method supports `json_format` parameter 2021-06-29 13:28:24 +02:00
Raphaël Vinot 481284dc12 chg: Update mypy, change accordingly 2021-06-21 11:20:41 -07:00
Raphaël Vinot 436181e5bb fix: properly handle the case MISP is in a sub redirect 
Fix #757
 2021-06-17 19:48:15 -07:00
Raphaël Vinot fcb4d41d63 new: Exclude decayed attributes in search 
Fix #753
 2021-06-08 10:09:14 -07:00
Raphaël Vinot c14d599d15 chg: Bump version 2021-06-07 07:36:33 -07:00
Raphaël Vinot dd007ce6a7 chg: Bump object templates 2021-06-07 07:35:37 -07:00
Raphaël Vinot 107561e574 chg: bump version, deps 2021-05-13 22:53:12 -07:00
Raphaël Vinot db1ffe7be6 new: method to get the raw object template 2021-05-11 12:30:00 -07:00
Raphaël Vinot 286712d0e1 fix: first-seen and last-seen on attributes and objects were not checked for sanity 2021-05-11 07:28:54 -07:00
Raphaël Vinot 2f1cf24eaa chg: Bump objects templates 2021-05-11 07:28:00 -07:00
Raphaël Vinot 18300f8aed chg: Bump version 2021-04-26 10:52:56 +02:00
Raphaël Vinot 18049212a5 new: Support for correlation exclusion list 
Fix #732
 2021-04-22 10:47:58 +02:00
Raphaël Vinot b471633acb fix: Enable/disable feeds 2021-04-20 15:36:11 +02:00
Raphaël Vinot cc1af2573f chg: Bump objects templates 2021-04-19 23:12:27 +02:00
Raphaël Vinot 95e31bd2e3 chg: Add comment for controller attribute in search 2021-04-06 20:05:10 +02:00
Raphaël Vinot f0b2a2b943 fix bump version, deps, templates 2021-04-02 16:35:22 +02:00
Raphaël Vinot 5cc994e253 chg: get_uuid_or_id_from_abstract_misp accepts dict 2021-03-30 14:31:31 +02:00
Raphaël Vinot c68ee576b3 fix: use get_uuid_or_id_from_abstract_misp in tag methods 
Fix #725
 2021-03-30 14:23:32 +02:00