Alexandre Dulaunoy
aa39567587
Merge pull request #356 from ostefano/lastline
...
add: Modules to query/import/submit data from/to Lastline
2019-12-03 06:47:26 +01:00
Stefano Ortolani
f749578525
add: Modules to query/import/submit data from/to Lastline
2019-12-02 19:09:40 +00:00
Raphaël Vinot
9744c1e0a5
Revert "Merge pull request #341 from StefanKelm/master"
...
This reverts commit 1df0d9152e
, reversing
changes made to 6042619c6b
.
This PR was a fixing a typo in a test case. The typo is in a 3rd party
service.
2019-11-26 17:49:01 +01:00
Raphaël Vinot
1df0d9152e
Merge pull request #341 from StefanKelm/master
...
Update test_expansions.py
2019-11-26 17:21:33 +01:00
Raphaël Vinot
6042619c6b
Merge branch 'aaronkaplan-master'
2019-11-26 13:28:24 +01:00
Raphaël Vinot
7a7b3a0ae1
chg: Bump dependencies
2019-11-26 13:27:19 +01:00
Raphaël Vinot
5d7a829583
chg: Use MISPObject in ransomcoindb
2019-11-26 13:27:02 +01:00
aaronkaplan
06025e63d0
oops , use relative import
2019-11-26 01:52:31 +01:00
aaronkaplan
d73a9b601a
use a helpful user-agent string
2019-11-26 01:08:28 +01:00
aaronkaplan
6546905537
final url fix
2019-11-25 22:25:33 +01:00
aaronkaplan
777483838b
Revert "fix url"
...
This reverts commit 44130e2bf9
.
2019-11-25 22:24:57 +01:00
aaronkaplan
b82716f888
Revert "fix url again"
...
This reverts commit c5924aee25
.
2019-11-25 22:24:14 +01:00
aaronkaplan
c5924aee25
fix url again
2019-11-25 21:14:45 +01:00
aaronkaplan
44130e2bf9
fix url
2019-11-25 20:51:20 +01:00
aaronkaplan
132249a521
mention the ransomcoindb in the README file as a new module
2019-11-25 19:03:13 +01:00
aaronkaplan
24ec4a0e23
remove pprint
2019-11-25 18:56:12 +01:00
aaronkaplan
5350003e3a
initial version of the ransomcoindb expansion module
2019-11-25 18:52:39 +01:00
Alexandre Dulaunoy
90ba6db164
Merge pull request #352 from aaronkaplan/patch-1
...
Update README.md
2019-11-22 22:13:48 +01:00
AaronK
e4830cb714
Update README.md
...
fixes #351
2019-11-22 21:44:12 +01:00
chrisr3d
ccf12a225c
fix: Making pep8 happy
2019-11-21 17:50:49 -05:00
chrisr3d
bf1ba161af
add: Added documentation for the AssemblyLine query module
2019-11-21 15:47:06 -05:00
chrisr3d
96712da5e0
add: Module to query AssemblyLine and parse the results
...
- Takes an AssemblyLine submission link to query
the API and get the full submission report
- Parses the potentially malicious files and the
IPs, domains or URLs they are connecting to
- Possible improvement of the parsing filters in
order to include more data in the MISP event
2019-11-21 13:25:50 -05:00
chrisr3d
6dcba6c8ae
fix: Fixed AssemblyLine input description
2019-11-20 17:37:37 -05:00
chrisr3d
de8737d2f3
fix: Fixed input types list since domain should not be submitted to AssemblyLine
2019-11-20 17:35:37 -05:00
chrisr3d
dc9ea98d2c
fix: Making pep8 happy
2019-11-20 10:13:51 -05:00
chrisr3d
4e98c3efd0
fix: Added missing AssemblyLine logo
2019-11-20 09:52:35 -05:00
chrisr3d
ef6542c629
add: Added documentation and description in readme for the AssemblyLine submit module
2019-11-20 09:48:27 -05:00
chrisr3d
fb129106ab
add: Updated python dependencies to include the assemblyline_client library
2019-11-19 16:05:16 -05:00
chrisr3d
58a4cb15a1
add: New expansion module to submit samples and urls to AssemblyLine
2019-11-19 15:41:35 -05:00
chrisr3d
f08fc6d9a5
chg: Reintroducing the limit to reduce the number of recursive calls to the API when querying for a domain
2019-11-17 19:11:26 -05:00
chrisr3d
4990bcebd8
fix: Avoiding KeyError exception when no result is found
2019-11-17 18:00:19 -05:00
chrisr3d
91d6f1baa0
fix: Fixed csv file parsing
2019-11-07 11:50:16 +01:00
chrisr3d
474307ac5b
chg: Using EQL module description from blaverick62
2019-11-07 09:57:18 +01:00
chrisr3d
204f59de13
add: Updated documentation with the EQL export module
2019-11-07 09:54:32 +01:00
chrisr3d
4608bcab45
Merge branch 'master' of github.com:blaverick62/misp-modules
2019-11-07 09:51:17 +01:00
chrisr3d
9068725322
add: Xforce Exchange module tests
2019-11-05 17:13:34 +01:00
chrisr3d
0fd3f92fe3
fix: Fixed Xforce Exchange authentication + rework
...
- Now able to return MISP objects
- Support of the xforce exchange authentication
with apikey & apipassword
2019-11-05 16:43:03 +01:00
chrisr3d
852018bf79
fix: Added urlscan & secuirtytrails modules in __init__ list
2019-11-04 16:52:26 +01:00
chrisr3d
2b592ce267
fix: Avoiding empty config error on passivetotal module
2019-11-01 16:59:58 +01:00
Christian Studer
8135a3ceec
Merge pull request #347 from MISP/tests
...
More advanced expansion tests
2019-10-31 18:33:20 +01:00
Braden Laverick
26ab7f69e2
Added documentation json for new modules
2019-10-31 17:28:07 +00:00
Braden Laverick
c4d333f8b9
Updated README to include EQL modules
2019-10-31 17:20:35 +00:00
chrisr3d
6b50c7718c
Merge branch 'master' of github.com:MISP/misp-modules into tests
2019-10-31 17:21:46 +01:00
chrisr3d
bfe227d555
fix: More clarity on the exception raised on the securitytrails module
2019-10-31 17:19:42 +01:00
chrisr3d
69e81b47d7
fix: Better exceptions handling on the passivetotal module
2019-10-31 17:18:23 +01:00
chrisr3d
83227ba889
fix: Fixed results parsing for various module tests
2019-10-31 17:16:27 +01:00
chrisr3d
4fb65672e3
fix: Fixed variable name
2019-10-31 17:16:08 +01:00
chrisr3d
1ff695d437
Merge branch 'master' of github.com:MISP/misp-modules into tests
2019-10-31 14:42:26 +01:00
chrisr3d
eb4e2312b2
fix: Bumped Pipfile.lock with the latest libraries versions
2019-10-31 14:30:59 +01:00
chrisr3d
86023fb67d
add: Updated documentation with the latest modules info
2019-10-31 14:16:20 +01:00