mirror of https://github.com/MISP/PyMISP
27 lines
1.1 KiB
Python
Executable File
27 lines
1.1 KiB
Python
Executable File
#!/usr/bin/env python
|
|
# -*- coding: utf-8 -*-
|
|
|
|
from pymisp import ExpandedPyMISP, MISPEvent
|
|
from keys import misp_url, misp_key, misp_verifycert
|
|
import argparse
|
|
|
|
|
|
if __name__ == '__main__':
|
|
parser = argparse.ArgumentParser(description='Create an event on MISP.')
|
|
parser.add_argument("-d", "--distrib", type=int, help="The distribution setting used for the attributes and for the newly created event, if relevant. [0-3].")
|
|
parser.add_argument("-i", "--info", help="Used to populate the event info field if no event ID supplied.")
|
|
parser.add_argument("-a", "--analysis", type=int, help="The analysis level of the newly created event, if applicable. [0-2]")
|
|
parser.add_argument("-t", "--threat", type=int, help="The threat level ID of the newly created event, if applicable. [1-4]")
|
|
args = parser.parse_args()
|
|
|
|
misp = ExpandedPyMISP(misp_url, misp_key, misp_verifycert)
|
|
|
|
event = MISPEvent()
|
|
event.distribution = args.distrib
|
|
event.threat_level_id = args.threat
|
|
event.analysis = args.analysis
|
|
event.info = args.info
|
|
|
|
event = misp.add_event(event, pythonify=True)
|
|
print(event)
|