mirror of https://github.com/MISP/misp-modules
Deployed 0d80d5f
with MkDocs version: 1.0.4
parent
9d16401fd7
commit
1f446f3be4
|
@ -288,6 +288,13 @@
|
|||
apiosintds
|
||||
</a>
|
||||
|
||||
</li>
|
||||
|
||||
<li class="md-nav__item">
|
||||
<a href="#apivoid" title="apivoid" class="md-nav__link">
|
||||
apivoid
|
||||
</a>
|
||||
|
||||
</li>
|
||||
|
||||
<li class="md-nav__item">
|
||||
|
@ -868,6 +875,13 @@
|
|||
apiosintds
|
||||
</a>
|
||||
|
||||
</li>
|
||||
|
||||
<li class="md-nav__item">
|
||||
<a href="#apivoid" title="apivoid" class="md-nav__link">
|
||||
apivoid
|
||||
</a>
|
||||
|
||||
</li>
|
||||
|
||||
<li class="md-nav__item">
|
||||
|
@ -1361,6 +1375,23 @@ Hashes and urls resulting from the query to OSINT.digitalside.it
|
|||
The apiosintDS python library to query the OSINT.digitalside.it API.</p>
|
||||
</blockquote>
|
||||
<hr />
|
||||
<h4 id="apivoid"><a href="https://github.com/MISP/misp-modules/tree/master/misp_modules/modules/expansion/apivoid.py">apivoid</a><a class="headerlink" href="#apivoid" title="Permanent link">¶</a></h4>
|
||||
<p><img src=logos/apivoid.png height=60></p>
|
||||
<p>Module to query APIVoid with some domain attributes.
|
||||
- <strong>features</strong>:</p>
|
||||
<blockquote>
|
||||
<p>This module takes a domain name and queries API Void to get the related DNS records and the SSL certificates. It returns then those pieces of data as MISP objects that can be added to the event.</p>
|
||||
<p>To make it work, a valid API key and enough credits to proceed 2 queries (0.06 + 0.07 credits) are required.
|
||||
- <strong>input</strong>:
|
||||
A domain attribute.
|
||||
- <strong>output</strong>:
|
||||
DNS records and SSL certificates related to the domain.
|
||||
- <strong>references</strong>:
|
||||
<a href="https://www.apivoid.com/">https://www.apivoid.com/</a>
|
||||
- <strong>requirements</strong>:
|
||||
A valid APIVoid API key with enough credits to proceed 2 queries</p>
|
||||
</blockquote>
|
||||
<hr />
|
||||
<h4 id="assemblyline_query"><a href="https://github.com/MISP/misp-modules/tree/master/misp_modules/modules/expansion/assemblyline_query.py">assemblyline_query</a><a class="headerlink" href="#assemblyline_query" title="Permanent link">¶</a></h4>
|
||||
<p><img src=logos/assemblyline.png height=60></p>
|
||||
<p>A module tu query the AssemblyLine API with a submission ID to get the submission report and parse it.
|
||||
|
@ -1462,12 +1493,12 @@ Text to describe the blockchain balance and the transactions related to the btc
|
|||
<p>Module to access CIRCL Passive DNS.
|
||||
- <strong>features</strong>:</p>
|
||||
<blockquote>
|
||||
<p>This module takes a hostname, domain or ip-address (ip-src or ip-dst) attribute as input, and queries the CIRCL Passive DNS REST API to get and display information about this input.</p>
|
||||
<p>This module takes a hostname, domain or ip-address (ip-src or ip-dst) attribute as input, and queries the CIRCL Passive DNS REST API to get the asssociated passive dns entries and return them as MISP objects.</p>
|
||||
<p>To make it work a username and a password are thus required to authenticate to the CIRCL Passive DNS API.
|
||||
- <strong>input</strong>:
|
||||
Hostname, domain, or ip-address attribute.
|
||||
- <strong>ouput</strong>:
|
||||
Text describing passive DNS information related to the input attribute.
|
||||
Passive DNS objects related to the input attribute.
|
||||
- <strong>references</strong>:
|
||||
<a href="https://www.circl.lu/services/passive-dns/">https://www.circl.lu/services/passive-dns/</a>, <a href="https://datatracker.ietf.org/doc/draft-dulaunoy-dnsop-passive-dns-cof/">https://datatracker.ietf.org/doc/draft-dulaunoy-dnsop-passive-dns-cof/</a>
|
||||
- <strong>requirements</strong>:
|
||||
|
@ -1479,12 +1510,12 @@ pypdns: Passive DNS python library, A CIRCL passive DNS account with username &a
|
|||
<p>Modules to access CIRCL Passive SSL.
|
||||
- <strong>features</strong>:</p>
|
||||
<blockquote>
|
||||
<p>This module takes an ip-address (ip-src or ip-dst) attribute as input, and queries the CIRCL Passive SSL REST API to get and display information about this input.</p>
|
||||
<p>To make it work a username and a password are thus required to authenticate to the CIRCL Passive SSL API.
|
||||
<p>This module takes an ip-address (ip-src or ip-dst) attribute as input, and queries the CIRCL Passive SSL REST API to gather the related certificates and return the corresponding MISP objects.</p>
|
||||
<p>To make it work a username and a password are required to authenticate to the CIRCL Passive SSL API.
|
||||
- <strong>input</strong>:
|
||||
Ip-address attribute.
|
||||
IP address attribute.
|
||||
- <strong>output</strong>:
|
||||
Text describing passive SSL information related to the input attribute.
|
||||
x509 certificate objects seen by the IP address(es).
|
||||
- <strong>references</strong>:
|
||||
<a href="https://www.circl.lu/services/passive-ssl/">https://www.circl.lu/services/passive-ssl/</a>
|
||||
- <strong>requirements</strong>:
|
||||
|
|
Binary file not shown.
After Width: | Height: | Size: 6.8 KiB |
Binary file not shown.
After Width: | Height: | Size: 6.8 KiB |
Binary file not shown.
After Width: | Height: | Size: 6.8 KiB |
File diff suppressed because one or more lines are too long
14
sitemap.xml
14
sitemap.xml
|
@ -2,37 +2,37 @@
|
|||
<urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9">
|
||||
<url>
|
||||
<loc>https://www.misp-project.org/</loc>
|
||||
<lastmod>2019-12-03</lastmod>
|
||||
<lastmod>2019-12-20</lastmod>
|
||||
<changefreq>daily</changefreq>
|
||||
</url>
|
||||
<url>
|
||||
<loc>https://www.misp-project.org/expansion/</loc>
|
||||
<lastmod>2019-12-03</lastmod>
|
||||
<lastmod>2019-12-20</lastmod>
|
||||
<changefreq>daily</changefreq>
|
||||
</url>
|
||||
<url>
|
||||
<loc>https://www.misp-project.org/export_mod/</loc>
|
||||
<lastmod>2019-12-03</lastmod>
|
||||
<lastmod>2019-12-20</lastmod>
|
||||
<changefreq>daily</changefreq>
|
||||
</url>
|
||||
<url>
|
||||
<loc>https://www.misp-project.org/import_mod/</loc>
|
||||
<lastmod>2019-12-03</lastmod>
|
||||
<lastmod>2019-12-20</lastmod>
|
||||
<changefreq>daily</changefreq>
|
||||
</url>
|
||||
<url>
|
||||
<loc>https://www.misp-project.org/install/</loc>
|
||||
<lastmod>2019-12-03</lastmod>
|
||||
<lastmod>2019-12-20</lastmod>
|
||||
<changefreq>daily</changefreq>
|
||||
</url>
|
||||
<url>
|
||||
<loc>https://www.misp-project.org/contribute/</loc>
|
||||
<lastmod>2019-12-03</lastmod>
|
||||
<lastmod>2019-12-20</lastmod>
|
||||
<changefreq>daily</changefreq>
|
||||
</url>
|
||||
<url>
|
||||
<loc>https://www.misp-project.org/license/</loc>
|
||||
<lastmod>2019-12-03</lastmod>
|
||||
<lastmod>2019-12-20</lastmod>
|
||||
<changefreq>daily</changefreq>
|
||||
</url>
|
||||
</urlset>
|
BIN
sitemap.xml.gz
BIN
sitemap.xml.gz
Binary file not shown.
Loading…
Reference in New Issue