misp-modules

Commit Graph

Author	SHA1	Message	Date
chrisr3d	f99174af2e	fix: Removed multiple spaces to comply with pep8	2 years ago
chrisr3d	26b0357ac7	fix: Making pep8 happy	2 years ago
chrisr3d	c0dae2b31b	fix: Removed trustar_import module name in init to avoid validation issues (until it is submitted via PR?)	2 years ago
Jesse Hedden	a70558945a	removed obsolete file	2 years ago
Jesse Hedden	67bdb38fc8	WIP: initial push	2 years ago
Jesse Hedden	8a95a000ee	initial commit. not a working product. need to create a class to manage the MISP event and TruStar client	2 years ago
chrisr3d	422f654988	fix: Making pep8 happy with indentation	2 years ago
Jakub Onderka	fe34023866	csvimport: Return error if input is not valid UTF-8	2 years ago
Hendrik	8f9940200b	Lastline verify_ssl option Helps people with on-prem boxes	2 years ago
chrisr3d	b2c8f79220	fix: Making pep8 happy	2 years ago
Georg Schölly	04685ea63e	joe: (1) allow users to disable PE object import (2) set 'to_ids' to False	2 years ago
Stefano Ortolani	66bf650b79	change: migrate to analysis API when submitting tasks to Lastline	2 years ago
chrisr3d	cf5ad29f27	chg: Checking attributes category - We check the category before adding the attribute to the event - Checking if the category is correct and if not, doing a case insensitive check - If the category is not correct after the 2 first tests, we simply delete it from the attribute and pymisp will give the attribute a default category value based on the atttribute type, at the creation of the attribute	2 years ago
Raphaël Vinot	b70c32af7b	fix: Somewhat broken emails needed some love	3 years ago
Raphaël Vinot	6f95445143	chg: Update email import module, support objects	3 years ago
Stefano Ortolani	f749578525	add: Modules to query/import/submit data from/to Lastline	3 years ago
chrisr3d	91d6f1baa0	fix: Fixed csv file parsing	3 years ago
chrisr3d	fe1987101d	fix: Making pep8 happy	3 years ago
chrisr3d	c5c5c16ff1	fix: Avoiding errors with uncommon lines - Excluding first from data parsed all lines that are comments or empty - Skipping lines with failing indexes	3 years ago
chrisr3d	3d7de2dc22	fix: Fixed unassigned variable name	3 years ago
chrisr3d	ffe43acd89	fix: Removed no longer used variables	3 years ago
chrisr3d	cfc6438c47	fix: csv import rework & improvement - More efficient parsing - Support of multiple csv formats - Possibility to customise headers - More improvement to come for external csv file	3 years ago
Pierre-Jean Grenier	b2ab727f9b	fix: prevent symlink attacks	3 years ago
Pierre-Jean Grenier	413cc2469f	chg: [cuckooimport] Handle archives downloaded from both the WebUI and the API	3 years ago
Pierre-Jean Grenier	6ba6f8bb1f	new: Rewrite cuckooimport	3 years ago
chrisr3d	0b603fc5d3	fix: Fixed unnecessary dictionary field call - No longer necessary to go under 'Event' field since PyMISP does not contain it since the latest update	3 years ago
chrisr3d	aa3e873845	fix: Making pep8 happy + added joe_import module in the init list	3 years ago
chrisr3d	0d40830a7f	fix: Some quick fixes - Fixed strptime matching because months are expressed in abbreviated format - Made data loaded while the parsing function is called, in case it has to be called multiple times at some point	3 years ago
chrisr3d	74b73f9332	chg: Moved JoeParser class to make it reachable from expansion & import modules	3 years ago
Georg Schölly	9377a892f4	support url analyses	3 years ago
Georg Schölly	380b8d46ba	improve forwards-compatibility	3 years ago
chrisr3d	8ac651562e	fix: Making pep8 & travis happy	3 years ago
chrisr3d	be05de62c0	add: Parsing MITRE ATT&CK tactic matrix related to the Joe report	3 years ago
chrisr3d	e608107a09	add: Parsing domains, urls & ips contacted by processes	3 years ago
chrisr3d	cfec9a6b1c	fix: Added references between processes and the files they drop	3 years ago
chrisr3d	191034d311	add: Starting parsing dropped files	3 years ago
chrisr3d	417c306ace	fix: Avoiding network connection object duplicates	3 years ago
chrisr3d	72e5f0099d	fix: Avoid creating a signer info object when the pe is not signed	3 years ago
chrisr3d	54f5fa6fa9	fix: Avoiding dictionary indexes issues - Using tuples as a dictionary indexes is better than using generators...	3 years ago
chrisr3d	0d5f867825	add: Starting parsing network behavior fields	3 years ago
chrisr3d	f9515c14d0	fix: Avoiding attribute & reference duplicates	3 years ago
chrisr3d	2246fc0d02	add: Parsing registry activities under processes	3 years ago
chrisr3d	067b229224	fix: Handling case of multiple processes in behavior field - Also starting parsing file activities	3 years ago
chrisr3d	d195b554a5	fix: Testing if some fields exist before trying to import them - Testing for pe itself, pe versions and pe signature	3 years ago
chrisr3d	fc8a56d1d9	fix: Removed test print	3 years ago
chrisr3d	df7047dff0	fix: Fixed output format to match with the recent changes on modules	3 years ago
chrisr3d	29e681ef81	add: Parsing processes called by the file analyzed in the joe sandbox report	3 years ago
chrisr3d	d39fb7da18	add: Parsing some object references at the end of the process	3 years ago
chrisr3d	728386d8a0	add: [new_module] Module to import data from Joe sandbox reports - Parsing file, pe and pe-section objects from the report file info field - Deeper file info parsing to come - Other fields parsing to come as well	3 years ago
chrisr3d	77db21cf18	fix: Making pep8 happy	3 years ago

1 2 3 4

167 Commits (master)