From 60f772b9050ccd9ae3678dd38bbd9003de2df3c1 Mon Sep 17 00:00:00 2001
From: Sebdraven <slarinier@gmail.com>
Date: Fri, 29 Jun 2018 11:27:36 +0200
Subject: [PATCH] add new module dnstrails

---
 misp_modules/modules/expansion/dnstrails.py | 25 +++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 misp_modules/modules/expansion/dnstrails.py

diff --git a/misp_modules/modules/expansion/dnstrails.py b/misp_modules/modules/expansion/dnstrails.py
new file mode 100644
index 0000000..d77c8d1
--- /dev/null
+++ b/misp_modules/modules/expansion/dnstrails.py
@@ -0,0 +1,25 @@
+import logging
+import sys
+
+log = logging.getLogger('dnstrails')
+log.setLevel(logging.DEBUG)
+ch = logging.StreamHandler(sys.stdout)
+ch.setLevel(logging.DEBUG)
+formatter = logging.Formatter('%(asctime)s - %(name)s - %(levelname)s - %(message)s')
+ch.setFormatter(formatter)
+log.addHandler(ch)
+
+misperrors = {'error': 'Error'}
+mispattributes = {
+    'input': ['hostname', 'domain', 'ip-src', 'ip-dst'],
+    'output': ['hostname', 'domain', 'ip-src', 'ip-dst', 'dns-soa-email']
+}
+
+moduleinfo = {'version': '1', 'author': 'Sebastien Larinier @sebdraven',
+              'description': 'Query on securitytrails.com',
+              'module-type': ['expansion', 'hover']}
+
+# config fields that your code expects from the site admin
+moduleconfig = ['apikey']
+
+