Python library using the MISP Rest API
Go to file
obsidianpentesting c18d5cac6d Simple function to cache all feeds at once. This is almost identical to fetch_feed. In the future, I would like to specify the scope to include other values. 2017-07-06 16:06:59 -05:00
docs doc version updated to 2.4.71 2017-06-30 08:51:25 +02:00
examples add multithreaded suricata search code, fetching ids rules based on parameters and terms 2017-06-28 14:21:43 +01:00
pymisp Simple function to cache all feeds at once. This is almost identical to fetch_feed. In the future, I would like to specify the scope to include other values. 2017-07-06 16:06:59 -05:00
tests
.gitchangelog.rc
.gitignore
.travis.yml
CHANGELOG.txt new: Added changelog in-repo 2017-05-09 15:46:29 +01:00
LICENSE
MANIFEST.in
README.md
setup.cfg
setup.py

README.md

README

Documentation Status Build Status Coverage Status

PyMISP - Python Library to access MISP

PyMISP is a Python library to access MISP platforms via their REST API.

PyMISP allows you to fetch events, add or update events/attributes, add or update samples or search for attributes.

Requirements

Install from pip

pip3 install pymisp

Install the lastest version from repo

git clone https://github.com/CIRCL/PyMISP.git && cd PyMISP
python3 setup.py install

Samples and how to use PyMISP

Various examples and samples scripts are in the examples/ directory.

In the examples directory, you will need to change the keys.py.sample to enter your MISP url and API key.

cd examples
cp keys.py.sample keys.py
vim keys.py

The API key of MISP is available in the Automation section of the MISP web interface.

To test if your URL and API keys are correct, you can test with examples/last.py to fetch the last 10 events published.

cd examples
python3 last.py -l 10

Documentation

PyMISP API documentation is available.

Documentation can be generated with epydoc:

epydoc --url https://github.com/CIRCL/PyMISP --graph all --name PyMISP --pdf pymisp -o doc