MISP
/
misp-modules
mirror of https://github.com/MISP/misp-modules
2
0
Fork 0
Code Issues Releases Wiki Activity

Deployed 55d63f8 with MkDocs version: 1.6.0

gh-pages
Alexandre Dulaunoy 2024-06-06 07:45:06 +02:00
parent dc494262ba
commit a94d3d2762
15 changed files with 75 additions and 38 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
404.html
View File

@ -16,7 +16,7 @@
<link rel="icon" href="/img/favicon.ico">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.21">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.25">
@ -24,7 +24,7 @@
<link rel="stylesheet" href="/assets/stylesheets/main.66ac8b77.min.css">
<link rel="stylesheet" href="/assets/stylesheets/main.6543a935.min.css">
<link rel="stylesheet" href="/assets/stylesheets/palette.06af60db.min.css">
@ -496,7 +496,7 @@
<script id="__config" type="application/json">{"base": "/", "features": [], "search": "/assets/javascripts/workers/search.b8dbb3d2.min.js", "translations": {"clipboard.copied": "Copied to clipboard", "clipboard.copy": "Copy to clipboard", "search.result.more.one": "1 more on this page", "search.result.more.other": "# more on this page", "search.result.none": "No matching documents", "search.result.one": "1 matching document", "search.result.other": "# matching documents", "search.result.placeholder": "Type to start searching", "search.result.term.missing": "Missing", "select.version": "Select version"}}</script>
<script src="/assets/javascripts/bundle.a7c05c9e.min.js"></script>
<script src="/assets/javascripts/bundle.081f42fc.min.js"></script>
</body>

4
assets/javascripts/bundle.a7c05c9e.min.js → assets/javascripts/bundle.081f42fc.min.js vendored
View File

File diff suppressed because one or more lines are too long

6
assets/javascripts/bundle.a7c05c9e.min.js.map → assets/javascripts/bundle.081f42fc.min.js.map
View File

File diff suppressed because one or more lines are too long

2
assets/stylesheets/main.66ac8b77.min.css → assets/stylesheets/main.6543a935.min.css vendored
View File

File diff suppressed because one or more lines are too long

2
assets/stylesheets/main.66ac8b77.min.css.map → assets/stylesheets/main.6543a935.min.css.map
View File

File diff suppressed because one or more lines are too long

6
contribute/index.html
View File

@ -22,7 +22,7 @@
<link rel="icon" href="../img/favicon.ico">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.21">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.25">
@ -30,7 +30,7 @@
<link rel="stylesheet" href="../assets/stylesheets/main.66ac8b77.min.css">
<link rel="stylesheet" href="../assets/stylesheets/main.6543a935.min.css">
<link rel="stylesheet" href="../assets/stylesheets/palette.06af60db.min.css">
@ -1105,7 +1105,7 @@ curl<span class="w"> </span>-s<span class="w"> </span>http://127.0.0.1:6666/quer
<script id="__config" type="application/json">{"base": "..", "features": [], "search": "../assets/javascripts/workers/search.b8dbb3d2.min.js", "translations": {"clipboard.copied": "Copied to clipboard", "clipboard.copy": "Copy to clipboard", "search.result.more.one": "1 more on this page", "search.result.more.other": "# more on this page", "search.result.none": "No matching documents", "search.result.one": "1 matching document", "search.result.other": "# matching documents", "search.result.placeholder": "Type to start searching", "search.result.term.missing": "Missing", "select.version": "Select version"}}</script>
<script src="../assets/javascripts/bundle.a7c05c9e.min.js"></script>
<script src="../assets/javascripts/bundle.081f42fc.min.js"></script>
</body>

42
expansion/index.html
View File

@ -22,7 +22,7 @@
<link rel="icon" href="../img/favicon.ico">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.21">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.25">
@ -30,7 +30,7 @@
<link rel="stylesheet" href="../assets/stylesheets/main.66ac8b77.min.css">
<link rel="stylesheet" href="../assets/stylesheets/main.6543a935.min.css">
<link rel="stylesheet" href="../assets/stylesheets/palette.06af60db.min.css">
@ -565,6 +565,15 @@
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#google_threat_intelligence" class="md-nav__link">
<span class="md-ellipsis">
google_threat_intelligence
</span>
</a>
</li>
<li class="md-nav__item">
@ -1650,6 +1659,15 @@
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#google_threat_intelligence" class="md-nav__link">
<span class="md-ellipsis">
google_threat_intelligence
</span>
</a>
</li>
<li class="md-nav__item">
@ -2873,6 +2891,24 @@ Text containing the result of a Google search on the input url.
The python Google Search API library</p>
</blockquote>
<hr />
<h4 id="google_threat_intelligence"><a href="https://github.com/MISP/misp-modules/tree/main/misp_modules/modules/expansion/google_threat_intelligence.py">google_threat_intelligence</a><a class="headerlink" href="#google_threat_intelligence" title="Permanent link">&para;</a></h4>
<p><img src=../logos/google_threat_intelligence.png height=60></p>
<p>An expansion module to have the observable's threat score assessed by Google Threat Intelligence.
- <strong>features</strong>:</p>
<blockquote>
<p>GTI assessment for the given observable, this include information about level of severity, a clear verdict (malicious, suspicious, undetected and bening) and additional information provided by the Mandiant expertise combined with the VirusTotal database.</p>
<p><a href="https://github.com/MISP/MISP/assets/4747608/e275db2f-bb1e-4413-8cc0-ec3cb05e0414">Output example screeshot</a>
- <strong>input</strong>:
A domain, hash (md5, sha1, sha256 or sha512), hostname or IP address attribute.
- <strong>output</strong>:
Text fields containing the threat score, the severity, the verdict and the threat label of the observable inspected.
- <strong>references</strong>:
- <a href="https://www.virustotal.com/">https://www.virustotal.com/</a>
- <a href="https://gtidocs.virustotal.com/reference">https://gtidocs.virustotal.com/reference</a>
- <strong>requirements</strong>:
An access to the Google Threat Intelligence API (apikey), with a high request rate limit.</p>
</blockquote>
<hr />
<h4 id="greynoise"><a href="https://github.com/MISP/misp-modules/tree/main/misp_modules/modules/expansion/greynoise.py">greynoise</a><a class="headerlink" href="#greynoise" title="Permanent link">&para;</a></h4>
<p><img src=../logos/greynoise.png height=60></p>
<p>Module to query IP and CVE information from GreyNoise
@ -4267,7 +4303,7 @@ MISP attributes and objects fetched from the Yeti instances.
<script id="__config" type="application/json">{"base": "..", "features": [], "search": "../assets/javascripts/workers/search.b8dbb3d2.min.js", "translations": {"clipboard.copied": "Copied to clipboard", "clipboard.copy": "Copy to clipboard", "search.result.more.one": "1 more on this page", "search.result.more.other": "# more on this page", "search.result.none": "No matching documents", "search.result.one": "1 matching document", "search.result.other": "# matching documents", "search.result.placeholder": "Type to start searching", "search.result.term.missing": "Missing", "select.version": "Select version"}}</script>
<script src="../assets/javascripts/bundle.a7c05c9e.min.js"></script>
<script src="../assets/javascripts/bundle.081f42fc.min.js"></script>
</body>

6
export_mod/index.html
View File

@ -22,7 +22,7 @@
<link rel="icon" href="../img/favicon.ico">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.21">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.25">
@ -30,7 +30,7 @@
<link rel="stylesheet" href="../assets/stylesheets/main.66ac8b77.min.css">
<link rel="stylesheet" href="../assets/stylesheets/main.6543a935.min.css">
<link rel="stylesheet" href="../assets/stylesheets/palette.06af60db.min.css">
@ -1042,7 +1042,7 @@ vt_graph_api, the python library to query the VirusTotal graph API</p>
<script id="__config" type="application/json">{"base": "..", "features": [], "search": "../assets/javascripts/workers/search.b8dbb3d2.min.js", "translations": {"clipboard.copied": "Copied to clipboard", "clipboard.copy": "Copy to clipboard", "search.result.more.one": "1 more on this page", "search.result.more.other": "# more on this page", "search.result.none": "No matching documents", "search.result.one": "1 matching document", "search.result.other": "# matching documents", "search.result.placeholder": "Type to start searching", "search.result.term.missing": "Missing", "select.version": "Select version"}}</script>
<script src="../assets/javascripts/bundle.a7c05c9e.min.js"></script>
<script src="../assets/javascripts/bundle.081f42fc.min.js"></script>
</body>

6
import_mod/index.html
View File

@ -22,7 +22,7 @@
<link rel="icon" href="../img/favicon.ico">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.21">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.25">
@ -30,7 +30,7 @@
<link rel="stylesheet" href="../assets/stylesheets/main.66ac8b77.min.css">
<link rel="stylesheet" href="../assets/stylesheets/main.6543a935.min.css">
<link rel="stylesheet" href="../assets/stylesheets/palette.06af60db.min.css">
@ -965,7 +965,7 @@ vmray_rest_api</p>
<script id="__config" type="application/json">{"base": "..", "features": [], "search": "../assets/javascripts/workers/search.b8dbb3d2.min.js", "translations": {"clipboard.copied": "Copied to clipboard", "clipboard.copy": "Copy to clipboard", "search.result.more.one": "1 more on this page", "search.result.more.other": "# more on this page", "search.result.none": "No matching documents", "search.result.one": "1 matching document", "search.result.other": "# matching documents", "search.result.placeholder": "Type to start searching", "search.result.term.missing": "Missing", "select.version": "Select version"}}</script>
<script src="../assets/javascripts/bundle.a7c05c9e.min.js"></script>
<script src="../assets/javascripts/bundle.081f42fc.min.js"></script>
</body>

7
index.html
View File

@ -20,7 +20,7 @@
<link rel="icon" href="img/favicon.ico">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.21">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.25">
@ -28,7 +28,7 @@
<link rel="stylesheet" href="assets/stylesheets/main.66ac8b77.min.css">
<link rel="stylesheet" href="assets/stylesheets/main.6543a935.min.css">
<link rel="stylesheet" href="assets/stylesheets/palette.06af60db.min.css">
@ -645,6 +645,7 @@ without modifying core components. The API is available via a simple REST API wh
<li><a href="misp_modules/modules/expansion/eql.py">EQL</a> - an expansion module to generate event query language (EQL) from an attribute. <a href="https://eql.readthedocs.io/en/latest/">Event Query Language</a></li>
<li><a href="https://github.com/MISP/misp-modules/tree/main/misp_modules/modules/expansion/farsight_passivedns.py">Farsight DNSDB Passive DNS</a> - a hover and expansion module to expand hostname and IP addresses with passive DNS information.</li>
<li><a href="https://github.com/MISP/misp-modules/tree/main/misp_modules/modules/expansion/geoip_country.py">GeoIP</a> - a hover and expansion module to get GeoIP information from geolite/maxmind.</li>
<li>[Google Threat Intelligence] (<a href="https://github.com/MISP/misp-modules/tree/main/misp_modules/modules/expansion/google_threat_intelligence.py">https://github.com/MISP/misp-modules/tree/main/misp_modules/modules/expansion/google_threat_intelligence.py</a>) - An expansion module to have the observable's threat score assessed by Google Threat Intelligence.</li>
<li><a href="https://github.com/MISP/misp-modules/tree/main/misp_modules/modules/expansion/greynoise.py">Greynoise</a> - a hover to get information from greynoise.</li>
<li><a href="https://github.com/MISP/misp-modules/tree/main/misp_modules/modules/expansion/hashdd.py">hashdd</a> - a hover module to check file hashes against <a href="http://www.hashdd.com">hashdd.com</a> including NSLR dataset.</li>
<li><a href="https://github.com/MISP/misp-modules/tree/main/misp_modules/modules/expansion/hibp.py">hibp</a> - a hover module to lookup against Have I Been Pwned?</li>
@ -799,7 +800,7 @@ For further information please see <a href="contribute/">Contribute</a>.</p>
<script id="__config" type="application/json">{"base": ".", "features": [], "search": "assets/javascripts/workers/search.b8dbb3d2.min.js", "translations": {"clipboard.copied": "Copied to clipboard", "clipboard.copy": "Copy to clipboard", "search.result.more.one": "1 more on this page", "search.result.more.other": "# more on this page", "search.result.none": "No matching documents", "search.result.one": "1 matching document", "search.result.other": "# matching documents", "search.result.placeholder": "Type to start searching", "search.result.term.missing": "Missing", "select.version": "Select version"}}</script>
<script src="assets/javascripts/bundle.a7c05c9e.min.js"></script>
<script src="assets/javascripts/bundle.081f42fc.min.js"></script>
</body>

6
install/index.html
View File

@ -22,7 +22,7 @@
<link rel="icon" href="../img/favicon.ico">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.21">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.25">
@ -30,7 +30,7 @@
<link rel="stylesheet" href="../assets/stylesheets/main.66ac8b77.min.css">
<link rel="stylesheet" href="../assets/stylesheets/main.6543a935.min.css">
<link rel="stylesheet" href="../assets/stylesheets/palette.06af60db.min.css">
@ -874,7 +874,7 @@ Next you can follow standard install procedure.</p>
<script id="__config" type="application/json">{"base": "..", "features": [], "search": "../assets/javascripts/workers/search.b8dbb3d2.min.js", "translations": {"clipboard.copied": "Copied to clipboard", "clipboard.copy": "Copy to clipboard", "search.result.more.one": "1 more on this page", "search.result.more.other": "# more on this page", "search.result.none": "No matching documents", "search.result.one": "1 matching document", "search.result.other": "# matching documents", "search.result.placeholder": "Type to start searching", "search.result.term.missing": "Missing", "select.version": "Select version"}}</script>
<script src="../assets/javascripts/bundle.a7c05c9e.min.js"></script>
<script src="../assets/javascripts/bundle.081f42fc.min.js"></script>
</body>

6
license/index.html
View File

@ -20,7 +20,7 @@
<link rel="icon" href="../img/favicon.ico">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.21">
<meta name="generator" content="mkdocs-1.6.0, mkdocs-material-9.5.25">
@ -28,7 +28,7 @@
<link rel="stylesheet" href="../assets/stylesheets/main.66ac8b77.min.css">
<link rel="stylesheet" href="../assets/stylesheets/main.6543a935.min.css">
<link rel="stylesheet" href="../assets/stylesheets/palette.06af60db.min.css">
@ -1141,7 +1141,7 @@ For more information on this, and how to apply and follow the GNU AGPL, see
<script id="__config" type="application/json">{"base": "..", "features": [], "search": "../assets/javascripts/workers/search.b8dbb3d2.min.js", "translations": {"clipboard.copied": "Copied to clipboard", "clipboard.copy": "Copy to clipboard", "search.result.more.one": "1 more on this page", "search.result.more.other": "# more on this page", "search.result.none": "No matching documents", "search.result.one": "1 matching document", "search.result.other": "# matching documents", "search.result.placeholder": "Type to start searching", "search.result.term.missing": "Missing", "select.version": "Select version"}}</script>
<script src="../assets/javascripts/bundle.a7c05c9e.min.js"></script>
<script src="../assets/javascripts/bundle.081f42fc.min.js"></script>
</body>

BIN
logos/google_threat_intelligence.png Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 18 KiB

14
sitemap.xml
View File

@ -2,37 +2,37 @@
<urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9">
<url>
<loc>https://www.misp-project.org/</loc>
<lastmod>2024-05-09</lastmod>
<lastmod>2024-06-06</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://www.misp-project.org/contribute/</loc>
<lastmod>2024-05-09</lastmod>
<lastmod>2024-06-06</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://www.misp-project.org/expansion/</loc>
<lastmod>2024-05-09</lastmod>
<lastmod>2024-06-06</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://www.misp-project.org/export_mod/</loc>
<lastmod>2024-05-09</lastmod>
<lastmod>2024-06-06</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://www.misp-project.org/import_mod/</loc>
<lastmod>2024-05-09</lastmod>
<lastmod>2024-06-06</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://www.misp-project.org/install/</loc>
<lastmod>2024-05-09</lastmod>
<lastmod>2024-06-06</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://www.misp-project.org/license/</loc>
<lastmod>2024-05-09</lastmod>
<lastmod>2024-06-06</lastmod>
<changefreq>daily</changefreq>
</url>
</urlset>

BIN
sitemap.xml.gz
View File

Binary file not shown.