From 714d9fb813b42e96fc16fa11edcfda2abb334944 Mon Sep 17 00:00:00 2001 From: Alexandre Dulaunoy Date: Thu, 21 Nov 2019 08:16:21 +0100 Subject: [PATCH] Deployed 6dcba6c with MkDocs version: 1.0.4 --- expansion/index.html | 96 +++++++++++++++++++++++++++++- expansion/logos/assemblyline.png | Bin 0 -> 175511 bytes expansion/logos/eql.png | Bin 0 -> 62384 bytes export_mod/index.html | 28 +++++++++ export_mod/logos/assemblyline.png | Bin 0 -> 175511 bytes export_mod/logos/eql.png | Bin 0 -> 62384 bytes import_mod/index.html | 8 +-- import_mod/logos/assemblyline.png | Bin 0 -> 175511 bytes import_mod/logos/eql.png | Bin 0 -> 62384 bytes search/search_index.json | 2 +- sitemap.xml | 14 ++--- sitemap.xml.gz | Bin 251 -> 251 bytes 12 files changed, 132 insertions(+), 16 deletions(-) create mode 100644 expansion/logos/assemblyline.png create mode 100644 expansion/logos/eql.png create mode 100644 export_mod/logos/assemblyline.png create mode 100644 export_mod/logos/eql.png create mode 100644 import_mod/logos/assemblyline.png create mode 100644 import_mod/logos/eql.png diff --git a/expansion/index.html b/expansion/index.html index cd369a8..d90efd7 100644 --- a/expansion/index.html +++ b/expansion/index.html @@ -91,7 +91,7 @@ - + Skip to content @@ -283,6 +283,20 @@
On demand query API for OSINT.digitalside.it project. +- features:
+++The module simply queries the API of OSINT.digitalside.it with a domain, ip, url or hash attribute.
+The result of the query is then parsed to extract additional hashes or urls. A module parameters also allows to parse the hashes related to the urls.
+Furthermore, it is possible to cache the urls and hashes collected over the last 7 days by OSINT.digitalside.it +- input: +A domain, ip, url or hash attribute. +- output: +Hashes and urls resulting from the query to OSINT.digitalside.it +- references: +https://osint.digitalside.it/#About +- requirements: +The apiosintDS python library to query the OSINT.digitalside.it API.
+
A module to submit samples and URLs to AssemblyLine for advanced analysis, and return the link of the submission. +- features:
+++The module requires the address of the AssemblyLine server you want to query as well as your credentials in this instance. Credentials include the user-ID and an API key or the password associated to the user-ID.
+If the sample or url is correctly submitted, you get then the link of the submission. +- input: +Sample, or url to submit to AssemblyLine. +- output: +Link of the report generated in AssemblyLine. +- references: +https://www.cyber.gc.ca/en/assemblyline +- requirements: +assemblyline_client: Python library to query the AssemblyLine rest API.
+
Query backscatter.io (https://backscatter.io/). - features:
@@ -1530,6 +1606,20 @@ MISP attributes mapped after the Domaintools API has been queried, included in t Domaintools python library, A Domaintools API access (username & apikey)EQL query generation for a MISP attribute. +- features:
+++This module adds a new attribute to a MISP event containing an EQL query for a network or file attribute. +- input: +A filename or ip attribute. +- output: +Attribute containing EQL for a network or file attribute. +- references: +https://eql.readthedocs.io/en/latest/
+
A module to query the Phishing Initiative service (https://phishing-initiative.lu). @@ -1698,7 +1788,7 @@ jbxapi: Joe Sandbox API python3 library
- input: Sample, url (or domain) to submit to Joe Sandbox for an advanced analysis. - output: -Link of the data in input submitted to Joe Sandbox. +Link of the report generated in Joe Sandbox. - references: https://www.joesecurity.org, https://www.joesandbox.com/ - requirements: diff --git a/expansion/logos/assemblyline.png b/expansion/logos/assemblyline.png new file mode 100644 index 0000000000000000000000000000000000000000..bda4518a8e21746d87999775bbc65918902a76dc GIT binary patch literal 175511 zcmaI7Wmp_r(=H5z5Hz^EOK^9e!QI`R!QGPJHU#$&++BlvkPu*SC%9X1OTHm{KkxgT z?>g6+KRw;OylPe5b=T@BRb?48WFll37#K7;S!s0`82CgO7+3>DIOr2tRjwrHh0p__ z>!IOn?cr_aW(6Z*>1=LAAqO(Eu~N4(v-EWxu@Z)XdF5}Xsq3Muq$p_N3}Q8VDZ}am za)H){fe{w-aWS)Su=1cVx3aNw5}`V4@1~-#vlOAy;Zb5&a*?vKwUhO8v(oTW*0k_* zun@4M5)-8m_7Q|O0J8EhqwoPaI=Kt_h*14)R}lLDxly4J#0zF~#bEyz--}a|X
z{MZ|t?@QL6lxXh=>CcTzam-BpTIMAoB@q>@fZ}pqo+}A>Xf~RXJEo|K_LpROjK0u=
z@hf0UDJgSy8@R2mjsuNGlSDfBV;^CYs!(aklq(>fz!UEbE9rQ;R7%d)tK>md)4_Z}
z8oA|Aqsx`f)P~ipmeA3}taU%`ryZV)?1w37%uA`wB_HbP4(nayZch1;^bG=92b&IE
zL&I2k$xs9EmlfFQ1n?FF`SLc&+uA6f6-z4PjYVjz?L$}D6^;^1DnnN(>biP_{#LaXD5x<4eb<9cahtmVul_Jp6w(8%|9c#5uXl+(>BK^hk->UDOsBJ)7I8jB
GwPXK*ld$5Y3
zUQ3sfNYXXhKm>*A8Y
2)6;|cuCaUfZv9-cWC@ONuml3dYJ^Des}~;Vp+qWq
z%&@050g@`o#?-~&eS2D(#2Ivv0zMHX4DWkHW*6$LWNMrOdaC>AxIziORvx=TuMh@i
zm?^{cB*!Nr<7rkH&1J-63eD?nOI&yF`1lL
z&t(6C1ryDkgKa}OOZyLz`pmNE)rxzE#(H}PvpC~Z$tQLa8CX=hC@(*+rStH8w7g48
zbAk18G~_?=Q&9x%8yv1mx|k(Z4k!R}gBkOjpsEi&SPE-Z22A-}qzEq|9OP`|%H5
zr47Z1dm0D|RtF3LI!P9fO-#T03%A_%@mJcK)YjH&Rw9*M9ew!)$yb(6;V#P&I!bQd
z