Commit Graph

208 Commits (karenyousefi-main)

Author SHA1 Message Date
Alexandre Dulaunoy e3ddbe66a6
chg: [doc] asciidoctor requirement removed (new PDF module use reportlab) 2019-03-04 23:08:58 +01:00
cgi1 3b415cb53a
Adding virtualenv to apt-get install 2019-03-01 12:13:27 +01:00
Alexandre Dulaunoy 2a59c6becc
chg: [doc] PDF export 2019-02-25 21:33:47 +01:00
iwitz 9abc3a4b0a
add: rhel installation instructions 2019-02-15 10:16:52 +01:00
chrisr3d 74594f29aa
Merge branch 'master' of github.com:MISP/misp-modules into new_module 2019-02-11 09:28:49 +01:00
9b e4c1468968 Stubbed module 2019-02-08 12:27:20 -05:00
chrisr3d d1000d82c4
add: New module to check if a bitcoin address has been abused
- Also related update of documentation
2019-02-05 14:46:42 +01:00
Raphaël Vinot aa0581d3ca
Merge pull request #266 from MISP/pipenv
chg: Use pipenv, update bgpranking/ipasn modules, fix imports for sigma
2019-01-21 14:18:26 +01:00
Raphaël Vinot 55f05e0524 chg: Use pipenv, update bgpranking/ipasn modules 2019-01-21 13:31:52 +01:00
Alexandre Dulaunoy c25ea545ee
chg: [doc] osquery export module added. 2018-12-26 12:22:23 +01:00
Alexandre Dulaunoy 352860c342
chg: [doc] Nexthink export format added 2018-12-26 12:19:27 +01:00
Alexandre Dulaunoy 7952a8d6e7
chg: [doc] cannot type today 2018-12-13 10:19:23 +01:00
Alexandre Dulaunoy 630ef4762e
chg: [intel471] module added 2018-12-13 09:30:57 +01:00
chrisr3d 5e7a588d56 add: Added missing expansion modules in readme 2018-11-22 12:29:45 +01:00
Steve Clement 91f922b5c4 chg: [btc] Removed simple PoC for btc expansion. 2018-11-07 22:53:21 +09:00
Sascha Rommelfangen 06eba154b5
added btc_steroids 2018-11-07 14:38:50 +01:00
Alexandre Dulaunoy 815f1ec0ed
chg: [doc] btc module added 2018-11-06 07:33:57 +01:00
chrisr3d af0870b59c
Updated list of modules in readme 2018-10-31 10:35:10 +01:00
milkmix 37e3d09102 documentation for export module 2018-10-25 21:54:25 +02:00
Steve Clement d08962afd2 chg: [docs] Added some missing dependencies and instructions for virtualenv deployment 2018-10-25 00:34:44 +09:00
Alexandre Dulaunoy 69c8e27dfa
Merge branch 'master' into master 2018-09-20 11:50:53 +02:00
chrisr3d 697b397d40 Merge branch 'master' of github.com:MISP/misp-modules into documentation 2018-09-20 10:01:27 +02:00
Codelinefi-admin 4ad60ca948 Updated README. Added a link to the integration tutorial 2018-09-19 21:51:23 +03:00
Codelinefi-admin db7dbd6ed5 macaddress.io hover module added 2018-09-13 17:02:49 +03:00
chrisr3d 754321b4e2
Merging readme 2018-09-13 10:37:46 +02:00
chrisr3d c91795dbcc Merge branch 'master' of github.com:MISP/misp-modules into documentation 2018-09-13 10:34:25 +02:00
chrisr3d 90baa1dd5a
add: Added DBL spamhaus module documentation and in expansion init file 2018-08-08 17:05:22 +02:00
Alexandre Dulaunoy 1fcc16efb7
securitytrails.com expansion module added 2018-07-18 22:19:52 +02:00
chrisr3d a62078aad1
add: Experimental expansion module to display the SIEM signatures from a sigma rule 2018-07-11 23:43:42 +02:00
chrisr3d 08d8459e1a
add: STIX2 pattern syntax validator 2018-07-02 11:38:33 +02:00
chrisr3d e9ee09eec6
Updated README to add sigma & some other missing modules 2018-06-28 11:27:35 +02:00
chrisr3d 479e66cc9b
fix: Removed STIX related libraries, files, documentation, etc. 2018-06-11 17:03:23 +02:00
Alexandre Dulaunoy 1e1e694169
add: mixing modules 2018-05-30 06:56:42 +02:00
chrisr3d 013e552f90
Added Documentation explanations on readme file 2018-03-06 16:22:46 +01:00
chrisr3d 9b34602f73
Added GoAML export module in description 2018-02-22 01:22:08 +01:00
Alexandre Dulaunoy 37ea090cba
add: YARA syntax validator 2018-02-12 21:13:32 +01:00
Alexandre Dulaunoy deed898c04
add: CSV import module added 2018-02-02 07:16:44 +01:00
Christophe Vandeplas 8a1a860cda added CrowdStrike Falcon Intel Indicators expansion module 2018-01-19 14:42:25 +01:00
Alexandre Dulaunoy 8008d62bc1
add: RBL added 2018-01-16 20:16:53 +01:00
Christophe Vandeplas 46975f4f16 Added ThreatAnalyzer sandbox import
Experimental module - some parts should be migrated to
2018-01-16 11:05:26 +01:00
Alexandre Dulaunoy 9734f59b02
Added ThreatStream and PDF export 2018-01-08 20:45:30 +01:00
Christophe Vandeplas 0ec8339d7a New Farsight DNSDB Passive DNS expansion module 2017-12-05 16:41:41 +01:00
Alexandre Dulaunoy df9adddc95
Broken links fixed 2017-08-06 20:43:00 +02:00
Alexandre Dulaunoy 30a46ab253
ThreatConnect export module added 2017-08-06 20:38:40 +02:00
Alexandre Dulaunoy 11b5f3f728
OTX and ThreatCrowd added 2017-07-11 20:22:53 +02:00
Alexandre Dulaunoy cdc61c34bd Missing expansion modules added in README 2017-03-08 17:37:28 +01:00
Alexandre Dulaunoy 9bf3346e88 ThreatMiner added 2017-03-08 17:25:11 +01:00
Alexandre Dulaunoy 312f792b22 OpenIOC import module added 2017-02-27 14:10:11 +01:00
truckydev 6953b847e5 add information about offline installation 2017-02-24 15:09:18 +01:00
Alexandre Dulaunoy 6f378578dc fix: misp-modules are by default installed in /bin 2017-02-21 11:27:59 +01:00
Alexandre Dulaunoy f61edd98d2 Training materials updated + Cuckoo JSON import module was missing 2017-01-07 10:45:22 +01:00
seamus tuohy 0ff270a3be Fixed basic errors 2016-12-26 14:33:10 -08:00
seamus tuohy 08261366b7 Merged with current master 2016-12-26 14:17:20 -08:00
seamus tuohy ec2d78c768 Adding more steps to module testing 2016-12-26 14:09:21 -08:00
seamus tuohy 86ae72c444 Added attachment and url support 2016-12-26 13:55:54 -08:00
robin.marsollier@conix.fr 97c49e2675 add libjpeg-dev as a dep to allow pillow to be installed succesfully 2016-12-20 16:14:08 +01:00
Alexandre Dulaunoy 1753c89bed GeoIP module added 2016-12-17 15:06:08 +01:00
Alexandre Dulaunoy 1bb2b10800 DomainTools module added 2016-12-02 17:12:21 +01:00
Alexandre Dulaunoy 50dcc02700 Merge pull request #78 from deralexxx/patch-2
Update README.md
2016-12-01 22:13:53 +01:00
Alexander J 1637304691 Update README.md
mentioning import / export modules
2016-12-01 14:59:42 +01:00
Alexander J 04b9da883c Update README.md 2016-12-01 13:10:23 +01:00
Raphaël Vinot 1e303b7af5 Update README.md 2016-11-29 13:49:00 +01:00
Alexandre Dulaunoy b35c0ae4de VMRay import module added 2016-11-21 12:09:44 +01:00
seamus tuohy 5033b1a9ca Added email meta-data import module.
This email meta-data import module collects basic meta-data from an e-mail
and populates an event with it. It populates the email subject, source
addresses, destination addresses, subject, and any attachment file names.
This commit also contains unit-tests for this module as well as updates to
the readme. Readme updates are additions aimed to make it easier for
outsiders to build modules.
2016-10-22 17:13:20 -04:00
Andras Iklody 92726085da Update README.md 2016-09-02 11:15:39 +02:00
Alexandre Dulaunoy 496b3802f5 Typo fixed 2016-09-01 20:35:18 +02:00
Alexandre Dulaunoy 545e057298 CEF export module added 2016-09-01 20:30:23 +02:00
Alexandre Dulaunoy 331b3ea0b6 README updated for the new modules 2016-08-17 10:46:13 +02:00
Hannah Ward 317f820bbf
Modified readme with virustotal/countrycode 2016-08-17 09:33:49 +01:00
Alexandre Dulaunoy d499ac0ce6 Merge pull request #44 from Rafiot/travis
Add coverage, update logging
2016-08-12 15:20:26 +02:00
Raphaël Vinot b24b16b30a Add coverage, update logging 2016-08-12 15:15:38 +02:00
Alexandre Dulaunoy dcdb11b709 Fix a link to the STIX import module reference 2016-08-12 14:26:39 +02:00
Raphaël Vinot e21e10416c Merge remote-tracking branch 'origin/master' into pr/41 2016-08-12 14:24:08 +02:00
Alexandre Dulaunoy b0e819f611 Add info about the import modules 2016-08-12 13:48:02 +02:00
Hannah Ward 6f770ad0c7
Merge branch 'master' of https://github.com/MISP/misp-modules 2016-08-12 12:35:47 +01:00
Hannah Ward 2f6054e97f Merge branch 'stix_import' 2016-08-12 12:17:40 +01:00
Alexandre Dulaunoy bfedd69a81 pip --upgrade must be always called (to have modules updated) 2016-08-12 12:39:46 +02:00
Hannah Ward 29b57258ab
I can't spell 2016-08-12 10:11:13 +01:00
Hannah Ward 46f8141071
Added STIXImport to readme 2016-08-12 10:10:19 +01:00
Raphaël Vinot ff3e37ee14 Update documentation.
Fix https://github.com/MISP/MISP/issues/1424
2016-08-09 17:51:20 +02:00
Iglocska d3c9558b3f Added category to the return format description 2016-07-26 12:13:49 +02:00
Trey Darley 4400a316e5 Refine the installation procedure
Tweak this to make it more inline with the MISP installation docs, start misp-modules at startup via /etc/rc.local
2016-07-22 09:56:31 +00:00
Alexandre Dulaunoy a27113db4d Install documentation updated 2016-06-28 21:21:13 +02:00
Raphaël Vinot 123b26274c Fix typos in the readme 2016-06-24 09:15:25 +09:00
Raphaël Vinot 22eaba6ab6 Make sure misp-modules can be launched from anywhere 2016-06-23 19:51:13 +09:00
Alexandre Dulaunoy 6f033a6714 ASN History added 2016-05-08 16:33:54 +02:00
Alexandre Dulaunoy 8b94e3bd79 ipasn module added 2016-05-03 23:18:45 +02:00
Alexandre Dulaunoy a0463bc19c EUPI module added 2016-04-28 17:01:12 +02:00
Raphaël Vinot 319d0ab4af Fix install commands 2016-04-11 12:24:13 +02:00
Raphaël Vinot 89d9790a1c Add Travis logo 2016-04-11 12:18:56 +02:00
Raphaël Vinot bf57ce0b12 Update README.md 2016-04-10 16:35:32 +02:00
Alexandre Dulaunoy 233d73e655 New modules added 2016-03-30 22:46:21 +02:00
Alexandre Dulaunoy 39f3c3b0f8 Slides reference added 2016-03-27 21:57:07 +02:00
Brandon Dixon 34b814463c Rewrote the entire PassiveTotal extension 2016-03-24 16:46:20 -07:00
Alexandre Dulaunoy 199a23cc4b How to start MISP modules 2016-03-24 16:52:53 +01:00
Alexandre Dulaunoy 23c2ef3664 2.4.28 includes misp modules by default 2016-03-21 23:10:48 +01:00
Alexandre Dulaunoy 57a9ada5bf types are now described 2016-03-20 19:54:32 +01:00
Alexandre Dulaunoy 4231cf1f6f README updated to reflect config parameters changes 2016-03-16 07:57:37 +01:00
Alexandre Dulaunoy ab7d93292e sourcecache module added 2016-03-14 20:47:45 +01:00
Alexandre Dulaunoy 2eb6d159f4 Typo fixed + meta output 2016-03-09 08:59:12 +01:00
Alexandre Dulaunoy 715e7f3a4b Minimal functions requirements updated + PR request 2016-03-09 07:49:46 +01:00
Alexandre Dulaunoy e0d8462227 Example of module introspection including meta information 2016-03-09 07:25:54 +01:00
Alexandre Dulaunoy 0ad82a688a Authentication notes added 2016-03-03 07:18:51 +01:00
Alexandre Dulaunoy c5eebfc420 Passivetotal module added 2016-03-02 21:26:04 +01:00
Alexandre Dulaunoy 93624bf0c3 Add a note regarding error codes 2016-02-29 21:49:42 +01:00
Alexandre Dulaunoy d990de3995 Output updated (type of module added) 2016-02-24 00:55:14 +01:00
Alexandre Dulaunoy 598baa78a5 Format updated following Andras updates 2016-02-24 00:23:26 +01:00
Alexandre Dulaunoy a0c462ee33 Minimal documentation added 2016-02-17 18:40:55 +01:00