MISP
/
misp-modules
mirror of https://github.com/MISP/misp-modules
2
0
Fork 0
Code Issues Releases Wiki Activity

add expand subdomains

Browse Source
pull/208/head
Sebdraven 5 years ago
parent 2d1adf4aa9
commit 64847a8a04
1 changed files with 23 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 23
      misp_modules/modules/expansion/dnstrails.py

23
misp_modules/modules/expansion/dnstrails.py
Unescape View File

@ -2,6 +2,7 @@ import json
import logging
import sys
from dnstrails import DnsTrails
from dnstrails import APIError
log = logging.getLogger('dnstrails')
log.setLevel(logging.DEBUG)
@ -163,9 +164,31 @@ def expand_domain_info(api, misperror,domain):
results['current_dns']['soa']['first_seen'])
})
return r, status_ok
def expand_subdomains(api, domain):
r = []
status_ok = False
try:
results = api.subdomains(domain)
if results:
status_ok = True
if 'subdomains' in results:
r.append({
'type': ['domain'],
'values': ['%s.%s' % (sub,domain) for sub in results['subdomains']],
}
)
except APIError as e:
misperrors['error'] = e
return r, status_ok
def introspection():
return mispattributes

Write Preview
Loading…
Cancel
Save