chrisr3d
529d22cca8
fix: skipping empty lines
2018-01-29 09:19:58 +01:00
chrisr3d
56cbd72b65
Fixed data treatment & other updates
2018-01-28 18:12:40 +01:00
chrisr3d
4d846f968f
Updated delimiter parsing & data reading functions
2018-01-26 17:11:01 +01:00
chrisr3d
b9d72bb043
First version of csv import module
...
- If more than 1 misp type is recognized, for each one an
attribute is created
- Needs to have header set by user as parameters of the module atm
- Review needed to see the feasibility with fields that can create
confusion and be interpreted both as misp type or attribute field
(for instance comment is a misp type and an attribute field)
2018-01-25 15:44:08 +01:00
Raphaël Vinot
f29515f86c
Merge pull request #154 from cvandeplas/master
...
added CrowdStrike Falcon Intel Indicators expansion module
2018-01-19 16:59:05 +01:00
Christophe Vandeplas
8a1a860cda
added CrowdStrike Falcon Intel Indicators expansion module
2018-01-19 14:42:25 +01:00
Alexandre Dulaunoy
8008d62bc1
add: RBL added
2018-01-16 20:16:53 +01:00
Alexandre Dulaunoy
be258ce2b6
Merge pull request #150 from chrisr3d/master
...
RBL check module
2018-01-16 20:09:23 +01:00
chrisr3d
d045cf7d5f
chg: Modified output format
2018-01-16 19:46:52 +01:00
chrisr3d
dcab9aa150
Merge github.com:MISP/misp-modules
2018-01-16 17:15:36 +01:00
Alexandre Dulaunoy
c3823b74cf
Merge pull request #149 from cvandeplas/master
...
Added ThreatAnalyzer sandbox import
2018-01-16 17:11:38 +01:00
chrisr3d
18523c4ada
Check an IPv4 address against known RBLs
2018-01-16 17:08:44 +01:00
Christophe Vandeplas
0be1886444
fix farsight_passivedns - rdata 404 not found
2018-01-16 15:13:17 +01:00
Christophe Vandeplas
46975f4f16
Added ThreatAnalyzer sandbox import
...
Experimental module - some parts should be migrated to
2018-01-16 11:05:26 +01:00
Alexandre Dulaunoy
9734f59b02
Added ThreatStream and PDF export
2018-01-08 20:45:30 +01:00
Alexandre Dulaunoy
1d225b31da
Merge branch 'robertnixon2003-master' + a small fix
2018-01-08 20:31:58 +01:00
Alexandre Dulaunoy
5c4df3075e
Fix the __init__ import
2018-01-08 20:31:26 +01:00
Robert Nixon
85f1a9bd91
Update threatStream_misp_export.py
2018-01-08 12:09:23 -05:00
Robert Nixon
1d2f3d9c3c
Updated __init__.py
...
Added reference to new ThreatStream export module
2018-01-08 11:03:42 -05:00
Robert Nixon
49d5520fa3
Added threatStream_misp_export.py
2018-01-08 11:01:16 -05:00
Alexandre Dulaunoy
d35a2ee4ae
Merge branch 'cvandeplas-master'
2017-12-06 09:30:05 +01:00
Christophe Vandeplas
4cdb143733
fixes missing init file in dnsdb library folder
2017-12-06 09:23:44 +01:00
Christophe Vandeplas
0ec8339d7a
New Farsight DNSDB Passive DNS expansion module
2017-12-05 16:41:41 +01:00
Raphaël Vinot
f30cf99ff9
fix: Make travis happy.
2017-11-20 15:06:24 +01:00
Raphaël Vinot
02253e5a87
Merge branch 'master' of github.com:MISP/misp-modules
2017-11-20 14:57:18 +01:00
Raphaël Vinot
5a546dac34
chg: Add new dependency (oauth2)
2017-11-20 14:56:08 +01:00
Raphaël Vinot
6d7f041dfe
chg: dnspython3 has been superseded by the regular dnspython kit.
2017-11-20 14:55:47 +01:00
Andras Iklody
8129fcd2f6
Merge pull request #144 from attritionorg/patch-1
...
minor touch-ups on error messages for user friendliness
2017-11-17 08:29:40 +01:00
Jericho
32958324ca
minor touch-ups on error messages for user friendliness
2017-11-16 23:04:41 -07:00
Alexandre Dulaunoy
b216c1a1af
Merge pull request #140 from cudeso/master
...
VulnDB Queries
2017-11-16 10:31:36 +01:00
Koen Van Impe
74e660d61b
VulnDB Queries
...
Search on CVE at https://vulndb.cyberriskanalytics.com/
https://www.riskbasedsecurity.com/
Get extended CVE info, links + CPE
2017-11-06 14:23:03 +01:00
Koen Van Impe
b28d116787
Merge remote-tracking branch 'MISP/master'
2017-11-06 12:26:43 +01:00
Raphaël Vinot
37d9b3831c
Add quick and dirty pdf export
2017-10-26 16:54:20 -04:00
Raphaël Vinot
c09135d251
Merge pull request #139 from Rafiot/master
...
fix: OpenIOC importer
2017-10-25 11:41:46 -04:00
Raphaël Vinot
951a0f974b
fix: OpenIOC importer
2017-10-25 11:27:59 -04:00
Alexandre Dulaunoy
03baa0b84d
fix : #137 when a CVE is not found, a return message is given
2017-10-21 19:52:19 +02:00
Raphaël Vinot
2f6406b1e5
Merge pull request #135 from DomainTools/domaintools-patch-1
...
Added code to allow 3rd party modules
2017-09-06 16:34:06 +02:00
Viktor von Drakk
113ac21a5d
added default parameter for new -m flag
2017-09-01 07:44:53 -07:00
Viktor von Drakk
76a733fa66
Added code to allow 3rd party modules
...
The new '-m pip.module.name' feature allows a pip-installed module to be specified on the command line and then loaded into the available modules without having to copy-paste files into the appropriate directories of this package.
2017-08-25 05:45:57 -07:00
Alexandre Dulaunoy
df9adddc95
Broken links fixed
2017-08-06 20:43:00 +02:00
Alexandre Dulaunoy
30a46ab253
ThreatConnect export module added
2017-08-06 20:38:40 +02:00
Alexandre Dulaunoy
7695dd1b62
Merge pull request #133 from CenturyLinkCIRT/master
...
ThreatConnect export module
2017-08-06 20:30:35 +02:00
Thomas Gardner
72c52da7ed
added threat_connect_export to export_mod.__init__
2017-08-06 08:15:17 -06:00
Thomas Gardner
441d41cf5d
added test files for threat_connect_export
2017-08-03 16:21:41 -06:00
Thomas Gardner
529719d9d8
added threat_connect_export.py
2017-08-03 16:21:26 -06:00
Raphaël Vinot
4c2cda9903
Merge pull request #129 from seamustuohy/utf_hate
...
Added support for malformed internationalized email headers
2017-07-18 10:06:08 +02:00
Alexandre Dulaunoy
11b5f3f728
OTX and ThreatCrowd added
2017-07-11 20:22:53 +02:00
Alexandre Dulaunoy
d5e5179ec4
Merge pull request #130 from chrisdoman/master
...
Add AlienVault OTX and ThreatCrowd Expansions
2017-07-11 20:14:24 +02:00
Chris Doman
c4fe78b39d
Add AlienVault OTX and ThreatCrowd Expansions
2017-07-11 18:16:45 +01:00
seamus tuohy
40c71af637
Added support for malformed internationalized email headers
...
When an emails contains headers that use Unicode without properly crafing
them to comform to RFC-6323 the email import module would crash.
(See issue #119 & issue #93 )
To address this I have added additional layers of encoding/decoding to
any possibly internationalized email headers. This decodes properly
formed and malformed UTF-8, UTF-16, and UTF-32 headers appropriately.
When an unknown encoding is encountered it is returned as an 'encoded-word'
per RFC2047.
This commit also adds unit-tests that tests properly formed and malformed
UTF-8, UTF-16, UTF-32, and CJK encoded strings in all header fields; UTF-8,
UTF-16, and UTF-32 encoded message bodies; and emoji testing for headers
and attachment file names.
2017-07-02 18:03:14 -04:00