Commit Graph

1622 Commits (44068ce4fc9e40ed96252f91725a865a4632c0d1)

Author SHA1 Message Date
Alexandre Dulaunoy 44068ce4fc
Merge pull request #451 from JakubOnderka/versions-update
fix: [pipenv] Missing clamd
2020-11-28 21:59:40 +01:00
Jakub Onderka 191e66b71a fix: [pipenv] Missing clamd 2020-11-27 21:12:20 +01:00
Alexandre Dulaunoy d64ecb5536
Merge pull request #450 from JakubOnderka/versions-update
chg: [pipenv] Enable email extras for PyMISP
2020-11-27 21:05:14 +01:00
Alexandre Dulaunoy df69d75d8b
Merge pull request #448 from HacknowledgeCH/export_defender_endpoint
Export defender endpoint
2020-11-27 21:04:23 +01:00
Jakub Onderka ed5a432222 chg: [pipenv] Enable email extras for PyMISP 2020-11-27 20:45:52 +01:00
milkmix 2544218899 fixed error reported by LGTM analysis 2020-11-23 16:28:23 +01:00
milkmix 6b9d30c6ce added documentation 2020-11-23 15:09:31 +01:00
milkmix 47980ef2eb added missing quotes 2020-11-21 08:52:18 +01:00
milkmix 30d9ae6032 added URL support 2020-11-20 18:56:28 +01:00
milkmix 71d2aeaacd typo in python src name 2020-11-20 16:31:48 +01:00
milkmix 451531326d initial work on Defender for Endpoint export module 2020-11-20 16:29:08 +01:00
chrisr3d 6e93622174
chg: [pipenv] Updated lock Pipfile again 2020-11-18 12:03:21 +01:00
chrisr3d 88ed6a8b19
fix: [pipenv] Removed duplicated dnsdb2 entry that I missed while merging conflict 2020-11-18 11:53:57 +01:00
chrisr3d 575bed0da8 Merge branch 'main' of github.com:MISP/misp-modules into chrisr3d_patch 2020-11-18 11:52:53 +01:00
Christian Studer 8642464a1b
Merge pull request #429 from MISP/new_module
New module using socialscan to check the availability of an email address or username on some online platforms
2020-11-18 11:47:17 +01:00
chrisr3d 6a83d171b9
chg: [pipenv] Updated lock Pipfile 2020-11-18 11:43:33 +01:00
chrisr3d 2464172e1a Merge branch 'main' of github.com:MISP/misp-modules into new_module 2020-11-18 11:34:33 +01:00
chrisr3d fc59ba2aad Merge branch 'main' of github.com:MISP/misp-modules into chrisr3d_patch 2020-11-18 10:13:14 +01:00
chrisr3d b29658dee6
chg: [documentation] Cleaner documentation directories & auto-generation
Including:
- A move of the previous `doc` and `docs` directories to `documentation`
  - `documentation` is now the default directory
  - The documentation previously under `doc` is now in `documentation/website`
  - The mkdocs previously under `docs` is now in `documentation/mkdocs`
- All single JSON documentation files have been JQed
- Some small improvements to list fields displaying
2020-11-17 19:36:19 +01:00
chrisr3d 0fcdfa6c53
fix: [tests] Less specific assertion for the rbl module test 2020-11-16 18:25:59 +01:00
chrisr3d c1e52fdb12
fix: [farsight_passivedns] Fixed pep8 backslash issue 2020-11-15 20:15:06 +01:00
chrisr3d d1ac0cffe0
fix: [farsight_passivedns] Fixed issue with variable name 2020-11-15 20:11:08 +01:00
chrisr3d 7385e3c1c2
chg: [pipenv] Updated Pipfile 2020-11-15 19:52:34 +01:00
chrisr3d 55dd49e275 Merge branch 'main' of github.com:MISP/misp-modules into chrisr3d_patch 2020-11-15 19:52:15 +01:00
Christian Studer 8e0d2dffc2
Merge pull request #445 from chrisr3d/main
Added missing cpe module documentation
2020-11-15 19:30:23 +01:00
chrisr3d eac43b0dc7 Merge branch 'main' of github.com:MISP/misp-modules into main 2020-11-15 19:27:54 +01:00
chrisr3d a36bd20f31
fix: [documentation] Added missing cpe module documentation 2020-11-15 19:27:21 +01:00
chrisr3d bedd6dcfd6
chg: [documentation] Updated the farsight-passivedns documentation 2020-11-15 19:23:47 +01:00
chrisr3d dfec0e5cf4
add: [farsight-passivedns] Optional feature to submit flex queries
- The rrset and rdata queries remain the same but
  with the parameter `flex_queries`, users can
  also get the results of the flex rrnames & flex
  rdata regex queries about their domain, hostname
  or ip address
- Results can thus include passive-dns objects
  containing the `raw_rdata` object_relation added
  with 0a3e948
2020-11-13 20:38:02 +01:00
chrisr3d 993a614a20 Merge branch 'main' of github.com:MISP/misp-modules into chrisr3d_patch 2020-11-13 16:47:07 +01:00
chrisr3d 32c0bf9ae2
fix: [cpe] Fixed typo in vulnerable-configuration object relation fields 2020-11-13 15:49:58 +01:00
chrisr3d bd3fa3ea07
chg: [cpe] Added default limit to the results
- Results returned by CVE-search are sorted by
  cvss score and limited in number to avoid
  potential massive amount of data retuned back
  to MISP.
- Users can overwrite the default limit with the
  configuration already present as optional, and
  can also set the limit to 0 to get the full list
  of results
2020-11-13 15:46:41 +01:00
chrisr3d 3f863e4437
fix: [farsight_passivedns] Fixed typo in the lookup fields 2020-11-13 15:28:10 +01:00
chrisr3d fe010782f3
chg: [farsight_passivedns] Now using the dnsdb2 python library
- Also updated the results parsing to check in
  each returned result for every field if they are
  included, to avoid key errors if any field is
  missing
2020-11-12 16:01:14 +01:00
chrisr3d f1b6b3e637 Merge branch 'main' of github.com:MISP/misp-modules into chrisr3d_patch 2020-11-12 15:44:34 +01:00
chrisr3d 2a25cda026 Merge branch 'chrisr3d_patch' of github.com:MISP/misp-modules into main 2020-11-11 10:46:44 +01:00
chrisr3d be79d715b9 Merge branch 'main' of github.com:MISP/misp-modules into main 2020-11-11 10:46:05 +01:00
chrisr3d bb7564dea9 Merge branch 'main' of github.com:MISP/misp-modules into chrisr3d_patch 2020-11-11 10:45:06 +01:00
Alexandre Dulaunoy a9900a6fe9
Merge pull request #443 from trustar/main
fixed typo causing firstSeen and lastSeen to not be pulled from enric…
2020-11-11 08:55:19 +01:00
Jesse Hedden 0650126d6a fixed typo causing firstSeen and lastSeen to not be pulled from enrichment data 2020-11-10 17:20:03 -08:00
chrisr3d b98562a75e
chg: [cpe] Support of the new CVE-Search API 2020-11-10 17:53:47 +01:00
Alexandre Dulaunoy ab23547844
Merge pull request #440 from MISP/chrisr3d_patch
Farsight passivedns module update
2020-11-10 08:33:34 +01:00
chrisr3d d9cfcf8f62
fix: [farsight_passivedns] Uncommented mandatory field that was commented for tests 2020-11-05 17:51:41 +01:00
chrisr3d 87db6f04aa
fix: [tests] Small fixes on the expansion tests 2020-11-05 15:56:01 +01:00
chrisr3d a357243d31 chg: [doc] Updated the farsight_passivedns module documentation 2020-11-05 15:55:46 +01:00
chrisr3d c0440a0d33 chg: [farsight_passivedns] More context added to the results
- References between the passive-dns objects and
  the initial attribute
- Comment on object attributes mentioning whether
  the results come from an rrset or an rdata
  lookup
2020-11-05 15:55:30 +01:00
chrisr3d 7c5465e02b fix: [dnsdb] Avoiding AttributeError with the sys library, probably depending on the python version 2020-11-05 15:55:15 +01:00
chrisr3d d9e576e605 chg: [farsight_passivedns] Rework of the module to return MISP objects
- All the results are parsed as passive-dns MISP
  objects
- More love to give to the parsing to add
  references between the passive-dns objects and
  the input attribute, depending on the type of
  the query (rrset or rdata), or the rrtype
  (to be determined)
2020-11-05 15:55:00 +01:00
Alexandre Dulaunoy 900fe56fbb
Merge pull request #437 from chrisr3d/main
New expansion module to get the vulnerabilities related to a CPE
2020-11-02 20:35:38 +01:00
chrisr3d 260bddb3cf
chg: [cpe] Changed CVE-Search API default url 2020-11-02 19:03:26 +01:00