commit
1257a2e378
|
@ -0,0 +1,35 @@
|
||||||
|
#!/usr/bin/env python3
|
||||||
|
# -*- coding: utf-8 -*-
|
||||||
|
'''
|
||||||
|
Koen Van Impe
|
||||||
|
|
||||||
|
Demo script for domain check against warninglists
|
||||||
|
|
||||||
|
'''
|
||||||
|
|
||||||
|
from pymispwarninglists import WarningLists
|
||||||
|
|
||||||
|
|
||||||
|
def init():
|
||||||
|
'''
|
||||||
|
Template to get the module started
|
||||||
|
'''
|
||||||
|
return WarningLists()
|
||||||
|
|
||||||
|
|
||||||
|
if __name__ == '__main__':
|
||||||
|
warninglists = init()
|
||||||
|
|
||||||
|
# Fetch this list of domains from MISP via PyMISP search
|
||||||
|
# For demo purpose we put it in a Python list
|
||||||
|
domain_list = ['google.com', 'circl.lu']
|
||||||
|
|
||||||
|
for domain in domain_list:
|
||||||
|
r = warninglists.search(domain)
|
||||||
|
if r:
|
||||||
|
# Now update the attribute for the domain
|
||||||
|
# Attribute ID can be included when querying the domains via PyMISP
|
||||||
|
# If a hit is found, set the tag for the attribute
|
||||||
|
print("Hit found for %s in warninglists" % (domain))
|
||||||
|
for hit in r:
|
||||||
|
print(" %s %s %s %s" % (hit.type, hit.name, hit.version, hit.description))
|
|
@ -152,3 +152,6 @@ class WarningLists(collections.Mapping):
|
||||||
|
|
||||||
def __len__(self):
|
def __len__(self):
|
||||||
return len(self.warninglists)
|
return len(self.warninglists)
|
||||||
|
|
||||||
|
def get_loaded_lists(self):
|
||||||
|
return self.warninglists
|
||||||
|
|
Loading…
Reference in New Issue