MISP
/
PyMISP
mirror of https://github.com/MISP/PyMISP
2
0
Fork 0
Code Issues Releases Wiki Activity
2,130 Commits
13 Branches
166 Tags
93 MiB
Commit Graph

2130 Commits (f248a8bfffe400a4be54c34d222775f74831d1e9)

Author SHA1 Message Date
Raphaël Vinot f248a8bfff chg: Bump changelog 2020-10-16 13:14:23 +02:00
Raphaël Vinot 624c6e0422 chg: Bump object templates 2020-10-16 13:13:43 +02:00
Raphaël Vinot cd17f481c0 chg: Bump changelog 2020-10-16 13:11:36 +02:00
Raphaël Vinot e683ceabf7 chg: Bump version 2020-10-16 13:09:29 +02:00
Raphaël Vinot 1005a0fa5c chg: Bump test cases 2020-10-16 13:09:02 +02:00
Raphaël Vinot 8392a84c83 Merge branch 'main' of github.com:MISP/PyMISP into main 2020-10-16 13:01:29 +02:00
Raphaël Vinot 782a3bb863 Merge branch 'tomking2-feature/tagdelete_searchsg' into main 2020-10-16 13:00:57 +02:00
Alexandre Dulaunoy 83b8172dc6
chg: [type] updated 2020-10-15 15:12:47 +02:00
Tom King e5d413ca4f Merge remote-tracking branch 'upstream/main' into feature/tagdelete_searchsg 2020-10-14 17:14:52 +01:00
Raphaël Vinot 9a5aeede19 chg: Bump file obj version in tests 2020-10-14 00:11:49 +02:00
Alexandre Dulaunoy 1d83f38725
chg: [data] misp-objects updated 2020-10-13 22:57:38 +02:00
Alexandre Dulaunoy 84be2f4b69
Merge branch 'main' of github.com:MISP/PyMISP into main 2020-10-13 22:34:59 +02:00
Alexandre Dulaunoy 85c2600bd7
new: [attribute type] telfhash added 2020-10-13 22:34:24 +02:00
Raphaël Vinot bacd4c78cd Merge branch 'main' of github.com:MISP/PyMISP into main 2020-10-09 12:54:18 +02:00
Raphaël Vinot cce228564b chg: Bump build system to poetry 1.1 2020-10-09 12:54:09 +02:00
Alexandre Dulaunoy ff7ed7a838
new: [add_gitlab_user] new gitlab user fetch script to MISP object 
usage: add_gitlab_user.py [-h] -e EVENT [-f] -u USERNAME [-l LINK]

Fetch GitLab user details and add it in object in MISP

optional arguments:
  -h, --help            show this help message and exit
  -e EVENT, --event EVENT
                        Event ID to update
  -f, --force-template-update
  -u USERNAME, --username USERNAME
                        GitLab username to add
  -l LINK, --link LINK  Url to access the GitLab instance, Default is
                        www.gitlab.com.
 2020-10-07 12:41:03 +02:00
Raphaël Vinot 76b9b4c598
Merge pull request #635 from garanews/patch-1 
fix PyMISP repo URL
 2020-10-05 20:02:37 +02:00
garanews d5209776c7
fix PyMISP repo URL 
MISP/PyMISP vs  CIRCL/PyMISP
 2020-10-05 17:14:25 +02:00
Alexandre Dulaunoy 77e7111c29
chg: [type] new type added 2020-10-01 15:08:45 +02:00
Raphaël Vinot b425ab4826
Merge pull request #633 from garanews/main 
fix typo
 2020-10-01 14:06:11 +02:00
garanews cd785aab09 fix typo 
fix typo
 2020-10-01 13:45:29 +02:00
Raphaël Vinot c9491ae0f1 Merge branch 'main' of github.com:MISP/PyMISP into main 2020-09-29 11:26:00 +02:00
Raphaël Vinot 516e7472bb chg: Bump deps, objects 2020-09-29 11:17:16 +02:00
Raphaël Vinot bdd8fe6782 chg: Add test for delete=True in get_event 2020-09-29 11:10:39 +02:00
Alexandre Dulaunoy 0e0424fa30
chg: [add_github_user] add ssh keys of the user in the MISP object 2020-09-17 10:36:54 +02:00
Alexandre Dulaunoy e40b14e897
Merge branch 'main' of github.com:MISP/PyMISP into main 2020-09-17 08:05:08 +02:00
Alexandre Dulaunoy 156d5564e8
chg: [add_github_user] more fields added from the GitHub API 2020-09-17 07:40:13 +02:00
Raphaël Vinot 0467a967b4 Merge branch 'main' of github.com:MISP/PyMISP into main 2020-09-16 23:27:40 +02:00
Raphaël Vinot ae24aad6d8 chg: Bump dependencies 2020-09-16 23:27:12 +02:00
Alexandre Dulaunoy 13995e1eca
chg: [add_github_user] add following to the MISP object 2020-09-16 21:40:34 +02:00
Raphaël Vinot 3fccd106a0 chg: Pass a list to add_attributes 2020-09-16 21:08:02 +02:00
Raphaël Vinot 808e8132f2 chg: Use MISPObject instead of GenericObjectGenerator 2020-09-16 20:58:57 +02:00
Alexandre Dulaunoy b9ee5c69bb
new: [example] add_github_user example - WiP 
usage: add_github_user.py [-h] -e EVENT [-f] -u USERNAME

Fetch GitHub user details and add it in object in MISP

optional arguments:
  -h, --help            show this help message and exit
  -e EVENT, --event EVENT
                        Event ID to update
  -f, --force-template-update
  -u USERNAME, --username USERNAME
                        GitHub username to add
 2020-09-16 17:36:37 +02:00
Alexandre Dulaunoy ba1e394d24
chg: [doc] add a reference to the license 2020-09-16 15:07:38 +02:00
Raphaël Vinot 2e2cdbeb7e fix: Test on macosx 
Fix #630
 2020-09-16 12:07:58 +02:00
Raphaël Vinot c39328f30a fix: Do not modify default_attributes_parameters in MISPObject 2020-09-15 17:01:56 +02:00
Raphaël Vinot 781161f82c fix: Wrong call to pymisp.search_index 2020-09-15 16:56:21 +02:00
Raphaël Vinot cf3d7e5e0f
Merge pull request #629 from chrisinmtown/fix-api-doc-params 
Fix api doc params
 2020-09-15 16:53:50 +02:00
Lott, Christopher (cl778h) f1de0fb794 chg: add docstrings and extend conf.py for RTD 
Add minimal docstrings to public methods so ReadTheDocs will display them.
Add autodoc mock import for lief so RTD can generate HTML for tools.

This fixes issue #626
 2020-09-15 10:40:21 -04:00
Chris Lott 315195a629
Merge pull request #1 from MISP/main 
Pull
 2020-09-15 10:22:47 -04:00
Raphaël Vinot d3db7fe52a chg: Remove PyMISPExpanded from the docs 2020-09-15 12:41:49 +02:00
Raphaël Vinot 18474a2144 chg: Add comments to ELF, PE, and MachO object generators. 2020-09-15 12:39:59 +02:00
Raphaël Vinot 50e5f156bd chg: Improve error message, add comments, rename whitelist->allowedlist 2020-09-15 12:31:22 +02:00
Raphaël Vinot 73b56a61da fix: few outdated calls in the tutorial 2020-09-11 11:09:14 +02:00
Raphaël Vinot 9c48079d88 new: Method to get the new version of the templates 2020-09-10 15:26:34 +02:00
Raphaël Vinot e3815a41f1 fix: Make flake8 happy 2020-09-09 15:41:42 +02:00
Raphaël Vinot cab202e1da
Merge pull request #624 from seamustuohy/fix-badly-encoded-emails 
Attempt to decode utf-8-sig encoded emails.
 2020-09-09 15:02:18 +02:00
seamus tuohy 07137209e2 Attempt to decode utf-8-sig encoded emails. 
eml files downloaded from Windows Online security on some Windows 11
systems are automatically encoded in UTF with a byte order mark (BOM)
at the front of the file. This will cause the email parser to fail.

This is a somewhat isolated problem. It only will affects a small
subset of Windows users who download and re-upload eml files. But,
this small subset of users is the target user-base for the MISP
email module: low expertiese users who wish to quickly share
high-value indicators on an ad-hoc basis.

While this fix could be tacked onto the MISP email module instead of
here, I beleive that this fix is more appropriate in the PyMISP object
code. As the "email" object parser this object should be built to
parse all manner of emails that it may encounter. This includes common
malformations such as this one and, even horrors such as, the .msg
format. This commit adds a generically named "attempt_decoding"
function which can be expanded to address all manner of sins that
are encountered in the future.
 2020-09-09 07:45:07 -04:00
Raphaël Vinot 0220f25f98 chg: Bump changelog 2020-09-08 12:45:29 +02:00
Raphaël Vinot 49aede3947 chg: Bump version 2020-09-08 12:43:25 +02:00