Commit Graph

1837 Commits (098616846da8ee85f6a9a02061e8e08e816161db)

Author SHA1 Message Date
chrisr3d 1349ef61a5
chg: Turned the Shodan expansion module into a misp_standard format module
- As expected with the misp_standard modules, the
  input is a full attribute and the module is able
  to return attributes and objects
- There was a lot of data that was parsed as regkey
  attributes by the freetext import, the module now
  parses properly the different field of the result
  of the query returned by Shodan
2020-08-28 16:55:50 +02:00
Alexandre Dulaunoy dedce3da28
Merge pull request #426 from hildenjohannes/main
Recorded Future module: Add proxy support and User-Agent header
2020-08-28 11:06:12 +02:00
johannesh 8087c9a6a1 Add proxy support and User-Agent header 2020-08-24 11:19:15 +02:00
Alexandre Dulaunoy c1815beff2
Merge pull request #425 from elhoim/elhoim-patch-1
Disable correlation for detection-ratio attribute in virustotal.py
2020-08-24 10:32:11 +02:00
David André b5d7c9c7a3
Disable correlation for detection-ratio in virustotal.py 2020-08-24 10:11:08 +02:00
Jakub Onderka bd7f7fa1f3 fix: [virustotal] Resolve key error when user enrich hostname 2020-08-17 17:34:21 +02:00
Alexandre Dulaunoy 7021a0d657
Merge pull request #422 from trustar/feat/EN-5047/MISP-manual-update
Feat/en 5047/misp manual update
2020-08-11 06:59:33 +02:00
Jesse Hedden 10e432ec55
Merge branch 'main' into feat/EN-5047/MISP-manual-update 2020-08-10 08:08:06 -07:00
Jesse Hedden a3c01fa318 added comments 2020-08-10 07:53:24 -07:00
Jesse Hedden 91417d390b added comments 2020-08-09 20:41:52 -07:00
Jesse Hedden 0b576faa68 added comments 2020-08-09 20:36:47 -07:00
Jesse Hedden 2d464adfd6 added error checking 2020-08-09 20:29:37 -07:00
Alexandre Dulaunoy c321082f5c
Merge pull request #420 from hildenjohannes/main
Fix typo error introduced in commit: 3b7a5c4dc2541f3b07baee69a7e8b969…
2020-08-09 10:07:11 +02:00
johannesh 85d319e85e Fix typo error introduced in commit: 3b7a5c4dc2 2020-08-07 10:36:40 +02:00
Jesse Hedden ee21a88127 updating to include metadata and alter type of trustar link generated 2020-08-06 21:59:13 -07:00
Alexandre Dulaunoy b1ec21360c
Merge pull request #417 from trustar/feat/EN-4664/trustar-misp
Feat/en 4664/trustar misp
2020-07-30 09:45:32 +02:00
Jesse Hedden 0b869750d7 added description to readme 2020-07-29 09:35:08 -07:00
Jesse Hedden d7acce9e6d Merge branch 'master' of github.com:trustar/misp-modules into feat/EN-4664/trustar-misp 2020-07-29 09:31:03 -07:00
chrisr3d f1dac0c8df
fix: Fixed pep8 2020-07-28 15:23:24 +02:00
chrisr3d 163b4a64b4 Merge branch 'main' of github.com:MISP/misp-modules into main 2020-07-28 15:07:07 +02:00
chrisr3d d2661c7a20
fix: Fixed pep8 + some copy paste issues introduced with the latest commits 2020-07-28 15:06:25 +02:00
Alexandre Dulaunoy 96634bf8bc
Merge pull request #416 from hildenjohannes/main
Add Recorded Future module documentation
2020-07-28 14:57:14 +02:00
johannesh 988bf3487d Improve wording 2020-07-28 13:46:43 +02:00
johannesh a316e1877f Add Recorded Future module documentation 2020-07-28 13:33:48 +02:00
chrisr3d 3ab67b23b6
fix: Avoid issues with the attribute value field name
- The module setup allows 'value1' as attribute
  value field name, but we want to make sure that
  users passing standard misp format with 'value'
  instead, will not have issues, as well as
  keeping the current setup
2020-07-28 11:56:03 +02:00
chrisr3d 3b7a5c4dc2
add: Specific error message for misp_standard format expansion modules
- Checking if the input format is respected and
  displaying an error message if it is not
2020-07-28 11:47:53 +02:00
chrisr3d 6d528628c7
chg: Updated documentation about the greynoise module 2020-07-27 17:26:07 +02:00
chrisr3d f7b60bed29
chg: Updated Greynoise tests following the latest changes on the expansion module 2020-07-27 17:21:52 +02:00
chrisr3d 8180ecbfa8
chg: Making use of the Greynoise v2 API 2020-07-27 17:20:36 +02:00
Alexandre Dulaunoy 4e36bc6b87
Merge pull request #415 from hildenjohannes/main
Add Recorded Future expansion module
2020-07-27 09:38:41 +02:00
johannesh c91a61110a Add Recorded Future expansion module 2020-07-23 12:28:56 +02:00
chrisr3d a4e9fe456e Merge branch 'main' of github.com:MISP/misp-modules into main 2020-07-03 10:24:45 +02:00
chrisr3d a755624886 Merge remote-tracking branch 'origin' into main 2020-07-03 10:24:27 +02:00
chrisr3d 8e4c688dce
fix: Fixed list of sigma backends 2020-07-03 10:10:24 +02:00
chrisr3d b5e0995926
fix: Fixed validators dependency issues
- Possible rollback if we get issues with virustotal
2020-07-03 09:41:20 +02:00
Alexandre Dulaunoy a518306ac0
Merge pull request #411 from JakubOnderka/vt-subdomains-fix
fix: [virustotal] Subdomains is optional in VT response
2020-07-01 16:24:47 +02:00
Jakub Onderka cda5feedaa fix: [virustotal] Subdomains is optional in VT response 2020-07-01 16:13:40 +02:00
chrisr3d f99174af2e
fix: Removed multiple spaces to comply with pep8 2020-07-01 11:27:36 +02:00
chrisr3d 26b0357ac7
fix: Making pep8 happy 2020-06-30 23:10:35 +02:00
Jesse Hedden f45d9964f3 removed obsoleted module name 2020-06-30 10:07:16 -07:00
chrisr3d de8d78cc70
add: Trustar python library added to Pipfile 2020-06-30 18:41:42 +02:00
chrisr3d c0dae2b31b
fix: Removed trustar_import module name in init to avoid validation issues
(until it is submitted via PR?)
2020-06-30 18:08:34 +02:00
chrisr3d 50f31cd63a Merge branch 'trustar-feat/EN-4664/trustar-misp' 2020-06-30 18:07:38 +02:00
chrisr3d 3e12feae79
Merge branch 'feat/EN-4664/trustar-misp' of https://github.com/trustar/misp-modules into trustar-feat/EN-4664/trustar-misp 2020-06-30 18:07:14 +02:00
Christian Studer 9c55495e19
Merge pull request #381 from MISP/new_module
New module for MALWAREbazaar
2020-06-30 17:39:47 +02:00
chrisr3d cadcc8947c Merge branch 'main' of github.com:MISP/misp-modules into new_module 2020-06-30 17:14:38 +02:00
Jesse Hedden a70558945a removed obsolete file 2020-06-27 17:46:51 -07:00
Jesse Hedden a91d50b507 corrected variable name 2020-06-27 17:29:01 -07:00
Jesse Hedden c66195d7cb
Merge pull request #1 from trustar/feat/EN-4664/trustar-misp
Feat/en 4664/trustar misp
2020-06-26 13:17:20 -07:00
Jesse Hedden 9e1bc5681b fixed indent 2020-06-25 15:22:54 -07:00