Commit Graph

2210 Commits (1a4a7610820f5a9334e86c9c51f731a73c450cb0)

Author SHA1 Message Date
Alexandre Dulaunoy ffe3f0680a
chg: [requirements] lxml updated 2021-12-17 13:49:14 +01:00
Alexandre Dulaunoy eaff5700de
chg: [doc] updated 2021-11-24 11:05:00 +01:00
Alexandre Dulaunoy 06d62d101c
Merge pull request #536 from qintel/feat/qintel_qsentry
New Module: Qintel QSentry
2021-11-23 18:47:42 +01:00
Calvin Krzywiec 897164c5ed
feature: add qintel qsentry module documentation 2021-11-22 15:52:58 -05:00
Calvin Krzywiec dc0660acd0
feature: add qintel qsentry expansion module 2021-11-22 15:46:46 -05:00
Steve Clement d4856a0c68
Merge pull request #534 from SteveClement/main 2021-11-09 23:49:21 +09:00
Steve Clement 800135f4e2
fix: [py] Dependency fix 2021-11-09 15:48:34 +01:00
Steve Clement 293c74c3b5
Merge pull request #533 from SteveClement/main 2021-11-09 23:43:58 +09:00
Steve Clement e34b019f29
chg: [py] Dependency bump. Works on buuntu 18.04.x 2021-11-09 15:37:56 +01:00
Steve Clement 887bfffa91
Merge pull request #532 from SteveClement/main 2021-11-09 23:03:52 +09:00
Steve Clement 5bad98cf47
chg: [py] Pandas requirements update 2021-11-09 14:59:57 +01:00
Alexandre Dulaunoy 7cb7a9bd52
chg: [documentation] updated 2021-10-27 22:25:41 +02:00
Alexandre Dulaunoy 04a6e89813
chg: [doc] updated 2021-10-27 22:24:38 +02:00
Alexandre Dulaunoy aa21c8619c
fix: [mkdocs] updated configuration for version 5 of mkdocs 2021-10-27 22:23:50 +02:00
Alexandre Dulaunoy eeb321fae7
new: [doc] Passive SSH documentation 2021-10-27 22:01:46 +02:00
Alexandre Dulaunoy 9c25f4e778
Merge pull request #529 from gallypette/main
passive-ssh expansion module
2021-10-26 16:37:39 +02:00
Jean-Louis Huynen 84ecc19206
Merge branch 'MISP:main' into main 2021-10-26 15:12:12 +02:00
Jean-Louis Huynen 7967542be6 add: [passive-ssh] initial commit 2021-10-26 15:11:20 +02:00
Alexandre Dulaunoy 66ac7fefad
Merge pull request #528 from rderkachrf/rf_release_2_0
Release 2.0: Update Recorded future expansion module with the new data
2021-10-25 21:14:24 +02:00
rderkach 4fd3323220 Update Recorded future expansion module with the new data
In this release, we added new data that we have called Links.
It represents better and more filtered related data.
Also did some code formatting.
2021-10-25 18:01:05 +03:00
Alexandre Dulaunoy e802679f25
Merge pull request #526 from korrosivesec/patch-1
Add libcaca-dev to apt packages required
2021-10-21 22:29:54 +02:00
Kory Kyzar 58e4080b4f
Add libcaca-dev to apt packages required
I needed to add libcaca-dev to make gtcaca.

## Before
```
misp@server:/usr/local/src/gtcaca/build$ cmake .. && make
-- The C compiler identification is GNU 7.5.0
-- The CXX compiler identification is GNU 7.5.0
-- Check for working C compiler: /usr/bin/cc
-- Check for working C compiler: /usr/bin/cc -- works
-- Detecting C compiler ABI info
-- Detecting C compiler ABI info - done
-- Detecting C compile features
-- Detecting C compile features - done
-- Check for working CXX compiler: /usr/bin/c++
-- Check for working CXX compiler: /usr/bin/c++ -- works
-- Detecting CXX compiler ABI info
-- Detecting CXX compiler ABI info - done
-- Detecting CXX compile features
-- Detecting CXX compile features - done
CMake system name: Linux
-- Found PkgConfig: /usr/bin/pkg-config (found version "0.29.1")
pkg config path:
-- Check if the system is big endian
-- Searching 16 bit integer
-- Looking for sys/types.h
-- Looking for sys/types.h - found
-- Looking for stdint.h
-- Looking for stdint.h - found
-- Looking for stddef.h
-- Looking for stddef.h - found
-- Check size of unsigned short
-- Check size of unsigned short - done
-- Using unsigned short
-- Check if the system is big endian - little endian
-- Checking for module 'caca'
--   No package 'caca' found
CMake Error at /usr/share/cmake-3.10/Modules/FindPkgConfig.cmake:415 (message):
  A required package was not found
Call Stack (most recent call first):
  /usr/share/cmake-3.10/Modules/FindPkgConfig.cmake:593 (_pkg_check_modules_internal)
  CMakeLists.txt:69 (pkg_check_modules)


-- Configuring incomplete, errors occurred!
See also "/usr/local/src/gtcaca/build/CMakeFiles/CMakeOutput.log".
```

## After
```
misp@server:/usr/local/src/gtcaca/build$ cmake .. && make
CMake system name: Linux
pkg config path:
-- Checking for module 'caca'
--   Found caca, version 0.99.beta19
libcaca link library: -lcaca
CMake system: Linux
-- Configuring done
-- Generating done
-- Build files have been written to: /usr/local/src/gtcaca/build
```
2021-10-21 09:14:13 -04:00
chrisr3d be5635b0a4
fix: [yara_query] Fixed module input parsing
- The module used to work properly when called
  from a single attribute enrichment, but was
  broken when called from the hover enrichment
  feature, because of the additional `persistent`
  field used to define which type of hover
  enrichment is queried
2021-10-15 17:18:29 +02:00
Alexandre Dulaunoy 4162ccb528
chg: [hashlookup] KnownMalicious field added 2021-09-24 15:35:14 +02:00
Alexandre Dulaunoy b6e0c4ce53
chg: [hashlookup] add new fields such as source, SSDEEP and TLSH 2021-09-24 15:29:23 +02:00
Alexandre Dulaunoy 9783113a1e
fix: [hashlookup] FileName and size are not required fields and can be missing in a hashlookup record 2021-09-24 15:09:07 +02:00
Luciano Righetti e7488791d3 fix: add missing dependency (ndjson) of cof2misp1 2021-09-20 15:17:12 +02:00
Andras Iklody 4115b7607e
fix: added note about the Domaintools module being deprecated
- as requested by Domaintools, including a link to their own, up to date module
2021-09-09 13:57:29 +02:00
Alexandre Dulaunoy 1a86419331
Merge pull request #520 from aaronkaplan/fix-github-alerts
Fix github's security alert: fix
2021-08-26 17:47:32 +02:00
aaronkaplan 327ee8e5c3 Fix github's security alert: fix
* CVE-2021-28676
* CVE-2021-25287
* CVE-2021-28675
* CVE-2021-28678
* CVE-2021-25288
* CVE-2021-28677
2021-08-26 14:29:23 +00:00
chrisr3d 82e0628fe7
chg: [hashlookup] Using the actual attribute types for FileName & FileSize
- Following the recent changes on the obejct template
  to use `filename` as attribute type for the FileName
  object relation instead of `text`
  d2b93f5aa6
2021-08-26 15:19:36 +02:00
chrisr3d 1d7f0ee1f0
fix: [hashlookup] Fixed the errors handling
- Since the modules system is waiting for a dict,
  we return `misperrors` instead of the actual
  value of the 'error' key, and the module will
  no longer fail when there is no result to parse
2021-08-26 15:02:32 +02:00
Alexandre Dulaunoy 7645b97bf7
chg: [hashlookup] logo updated 2021-08-25 21:44:20 +02:00
Alexandre Dulaunoy 525678eab6
new: [hashlookup] documentation added 2021-08-25 21:42:30 +02:00
Alexandre Dulaunoy 1a90237a21
chg: [logo] CIRCL logo added for hashlookup service 2021-08-25 21:41:08 +02:00
Alexandre Dulaunoy 73e78463d0
new: [hashlookup] new hashlookup module added
https://www.circl.lu/services/hashlookup/
2021-08-25 18:42:16 +02:00
Alexandre Dulaunoy 7b675f7857
Merge branch 'main' of github.com:MISP/misp-modules into main 2021-08-25 18:41:31 +02:00
Alexandre Dulaunoy da6092f9e1
Revert "fix: [greynoise] typo fixed"
This reverts commit e36e3ea117.
2021-08-25 18:41:08 +02:00
Alexandre Dulaunoy f40fc7ebc4
new: [hashlookup] new hashlookup module added 2021-08-25 18:38:09 +02:00
Alexandre Dulaunoy d9a9864f32
Merge pull request #519 from Lastline-Inc/main
Update dependency files
2021-08-24 15:01:57 +02:00
Jason Zhang 05578b6a0d Update dependency files 2021-08-24 12:31:23 +01:00
Alexandre Dulaunoy dddb698a65
Merge pull request #517 from mohlcyber/main
Added McAfee MVISION Insights Expansion Module
2021-08-13 16:49:51 +02:00
Martin Ohl 431d081227
Added McAfee MVISION Insights 2021-08-13 14:57:15 +02:00
Martin Ohl 209411c6fc
Update README.md 2021-08-13 14:56:30 +02:00
Martin Ohl d2ed09d081
Create mcafee_insights_enrich.py
Module to expand IOC information with McAfee MVISION Insights
2021-08-13 14:55:08 +02:00
Alexandre Dulaunoy e36e3ea117
fix: [greynoise] typo fixed 2021-08-13 14:11:12 +02:00
Alexandre Dulaunoy 5507d65ef2
Merge pull request #516 from Lastline-Inc/main
Sanity checks
2021-08-13 07:43:48 +02:00
Jason Zhang f5fdf343b8 Sanity checks 2021-08-12 11:08:09 +01:00
Alexandre Dulaunoy b4938c77cb
Merge pull request #515 from GreyNoise-Intelligence/greynoise_update_doc_json
Update the greynoise.json file
2021-08-11 06:59:01 +02:00
Brad Chiappetta 859d7d2a82 update greynoise.json 2021-08-09 16:46:33 -04:00