MISP
/
misp-modules
mirror of https://github.com/MISP/misp-modules
2
0
Fork 0
Code Issues Releases Wiki Activity
2,500 Commits
7 Branches
55 Tags
19 MiB
Commit Graph

1235 Commits (0798a094bb5870b9164b48ddcb55ac4f161725ea)

Author SHA1 Message Date
Alexandre Dulaunoy a01aa157e5
Merge pull request #687 from crowdsecurity/feat/release-2.1.0 
feat(crowdsec): Update module (v2.1.1)
 2024-08-24 07:52:20 +02:00
Julien Loizelet 4dc71af301
feat(crowdsec): Use misp-objects template and check IP 2024-08-23 17:04:07 +09:00
Alexandre Dulaunoy 55a3d8e9f5
chg: [modules] formatting updated 2024-08-22 15:14:11 +02:00
Alexandre Dulaunoy 80f1f6ec1e
chg: [modules] add a loogo in the moduleinfo 2024-08-22 15:10:55 +02:00
Alexandre Dulaunoy 318318726b
Merge remote-tracking branch 'karen/main' into karenyousefi-main 2024-08-22 15:05:54 +02:00
Julien Loizelet 8c1d7b2c20
feat(crowdsec): Add missing moduleinfo fields 2024-08-22 14:48:30 +09:00
Julien Loizelet 57a1965b52
feat(crowdsec): Update module (v2.1.0) 2024-08-22 11:23:30 +09:00
Karen Yousefi dea91594ae
Update __init__.py 2024-08-19 23:25:44 -07:00
Karen Yousefi 2247e90e42
Update __init__.py 
fix bug pr #682
 2024-08-20 03:20:27 +03:30
Alexandre Dulaunoy feeeaddeb1
fix: [expansion] whois module added back 2024-08-19 11:23:45 +02:00
Alexandre Dulaunoy fd45532501
new: [whois] added back the whois module based on Raphael changes 2024-08-19 11:21:46 +02:00
Stefano Ortolani b89a33b74f Migrate to poetry and optimize dependencies 2024-08-17 15:54:37 +01:00
Karen Yousefi f7a4545727
Add Triage Submit 
Module to submit samples to tria.ge
 2024-08-16 18:52:01 -07:00
Karen Yousefi 1d5d0336c6
MalShare Upload 
Module to push malware samples to MalShare
 2024-08-16 18:50:33 -07:00
Karen Yousefi e3472136f0
VirusTotal Upload 
Module to push malware samples to VirusTotal
 2024-08-16 18:49:35 -07:00
Christophe Vandeplas 1bdb24c9bc
fix: fixes issues added in latest commit 2024-08-12 11:34:13 +02:00
Christophe Vandeplas 842f91a4db
chg: [doc] Big doc revamp #680 2024-08-12 11:23:10 +02:00
Christophe Vandeplas 79442c2cd3
fix: [modules] many modules not loaded as python module 2024-08-10 08:06:14 +02:00
Christophe Vandeplas 9e95c0e81d
fix: [cisco_firesight_manager_ACL_rule_export] include in __init__ 2024-08-10 07:46:01 +02:00
Christophe Vandeplas 33824e04ad
fix: [yara_export] add new module to __init__ 2024-08-10 07:39:53 +02:00
Christophe Vandeplas 01b07975a4
Merge branch 'main' of https://github.com/MISP/misp-modules 2024-08-09 15:54:10 +02:00
Christophe Vandeplas 20ec7c8a18
new: [yara_export] new export module 2024-08-09 15:53:27 +02:00
Germán Esteban 7a3ab8e413
Merge branch 'MISP:main' into main 2024-08-09 10:54:45 +02:00
Christophe Vandeplas dd3ac91afd
fix: [cve] fix CVE module to new vulnerability.circl.lu url 2024-08-09 09:53:14 +02:00
Germán Esteban 5daf7c6628
Merge branch 'MISP:main' into main 2024-08-09 07:54:35 +02:00
Daniel Pascual d720c38b0f WIP 2024-08-08 16:58:17 +02:00
german-esteban 50b96c0524 Update expansion/vysion.py 2024-08-08 15:40:25 +02:00
Daniel Pascual f6305f4041 WIP 2024-08-08 14:13:07 +02:00
Daniel Pascual 3b69446185 WIP 2024-08-07 17:10:28 +02:00
german-esteban 321879e165 Added cryptocurrencies types #2 2024-08-07 15:53:15 +02:00
german-esteban 572a97d1ee Added cryptocurrencies types 2024-08-07 15:45:55 +02:00
Daniel Pascual 798f05a117 Add more attributes to the GTI enrichment 2024-08-07 11:16:57 +02:00
german-esteban ba9798cf87 Update expansion module + Vysion client update version 2024-08-05 12:58:19 +02:00
Koen Van Impe 672640083b Fix 'Object' object has no attribute 'url' in virustotal 
Fix

File "/var/www/MISP/venv/lib/python3.8/site-packages/misp_modules/__init__.py", line 210, in run_request
    response = module.handler(q=json_payload)
  File "/var/www/MISP/venv/lib/python3.8/site-packages/misp_modules/modules/expansion/virustotal_public.py", line 248, in handler
    parser.query_api(attribute)
  File "/var/www/MISP/venv/lib/python3.8/site-packages/misp_modules/modules/expansion/virustotal_public.py", line 46, in query_api
    self.input_types_mapping[self.attribute.type](self.attribute.value)
  File "/var/www/MISP/venv/lib/python3.8/site-packages/misp_modules/modules/expansion/virustotal_public.py", line 143, in parse_hash
    related_file_object = self.create_misp_object(related_file)
  File "/var/www/MISP/venv/lib/python3.8/site-packages/misp_modules/modules/expansion/virustotal_public.py", line 83, in create_misp_object
    misp_object.add_attribute('Url', type='url', value=report.url)
  File "/var/www/MISP/venv/lib/python3.8/site-packages/vt/object.py", line 160, in __getattribute__
    value = super().__getattribute__(attr)
AttributeError: 'Object' object has no attribute 'url'
 2024-08-02 11:24:26 +02:00
Stefano Ortolani a52da45eff Update pandas and pandas_ods_reader and patch ods_enrich 2024-07-19 11:02:36 +01:00
Stefano Ortolani 308c5fb3ce Improve compatibility and upgrade python to 3.12 
Changes:
* Remove vysion (not compatible with python 3.12 and no public repository)
* Remove stiximport (requires archaic version of pymisp)
* Update Python to 3.12
* Pin Numpy to 1.X
* Add missing dependencies
* Commit lock file
* Update requirements file
 2024-07-12 17:09:19 +01:00
Christian Studer 2423bc7ade
fix: [vulnerability_lookup] Avoiding issues with `Iterator` in python3.8 2024-07-08 11:52:26 +02:00
Christian Studer 7d7dc1e633
fix: [vulnerability_lookup] Avoiding KeyError exceptions on some fields 2024-07-02 11:09:26 +02:00
Christian Studer 42fb1bcf14
new: [vulnerability_lookup] New module to query Vulnerability Lookup 
- Reusing the `variotdbs` code to parse the
  vulnerability description from VariotDB
 2024-07-01 23:25:37 +02:00
Alexandre Dulaunoy cd435c0565
fix: [ipasn] add support for `ip` type 2024-06-06 09:54:20 +02:00
Daniel Pascual a9dda347bb Add web doc and fix logo for the Google Threat Intelligence module 2024-05-14 12:47:20 +02:00
Daniel Pascual 636dc3cdfa merge 2024-05-13 20:28:41 +02:00
Daniel Pascual 3af14a7f6e Logo and desc 2024-05-13 20:00:14 +02:00
Daniel Pascual da072cc38a Remove debug traces 2024-05-13 19:50:46 +02:00
Daniel Pascual bb42e5d9c1 Google Threat Intelligence MISP module 2024-05-13 10:59:21 +02:00
Alexandre Dulaunoy b5579e5e42
chg: [virustotal] support ip-src/ip-dst|port attribute type 
Fix #632
 2024-05-09 17:43:24 +02:00
Alexandre Dulaunoy 8b25af853f
fix: [virustotal] fix the typo for the VT link 
Fix #644
Fix #595
 2024-05-09 17:32:29 +02:00
Alexandre Dulaunoy 55d7fc95dc
fix: [dns] add the exception in the error message 
As there are still distribution installing old version of dnspython,
it's easier to debug if we receive the exception directly in misp-module.
 2024-05-09 17:03:18 +02:00
goodlandsecurity 80a5bd1e77
add slack action module 2024-05-09 08:57:25 -05:00
goodlandsecurity f5ff7d37d8
add stairwell expansion module and update misp-objects to a193e03 2024-05-08 10:47:35 -05:00