Christophe Vandeplas
8817de4765
fix: threatanalyzer_import - bugfix for TA6.1 behavior
2018-11-16 13:29:47 +01:00
chrisr3d
2d47b670f8
fix: Displaying documentation items of each module by alphabetic order
...
- Also regenerated updated documentation markdown
2018-11-13 16:50:49 +01:00
chrisr3d
37476058b3
add: Added yara_query module documentation, update yara_syntax_validator documentation & generated updated documentation markdown
2018-11-13 16:34:13 +01:00
chrisr3d
651f69126d
Merge branch 'master' of github.com:MISP/misp-modules into chrisr3d_patch
2018-11-13 16:05:24 +01:00
chrisr3d
4149a07eff
add: Added test files for yara to test yara library & potentially yara syntax
2018-11-13 16:00:55 +01:00
chrisr3d
299e97d1ce
add: Added imphash to input attribute types
2018-11-13 15:40:47 +01:00
Sascha Rommelfangen
3e25428978
debug removed
2018-11-13 15:34:33 +01:00
Sascha Rommelfangen
8285ff324f
API changes reflected
2018-11-13 15:30:06 +01:00
Alexandre Dulaunoy
f62ca53e90
Merge pull request #253 from MISP/chrisr3d_patch
...
Validation of yara rules
2018-11-12 16:59:41 +01:00
chrisr3d
58b3a069bf
fix: Updated yara import error message
...
- Better to 'pip install -I -r REQUIREMENTS' to
have the correct yara-python version working
for all the modules, than having another one
failing with yara hash & pe modules
2018-11-12 16:22:14 +01:00
chrisr3d
b9f634b506
fix: Specifying a yara-python version that works for hash & pe yara modules
2018-11-12 16:14:54 +01:00
chrisr3d
ad1ccdb9d0
Merge branch 'master' of github.com:MISP/misp-modules into chrisr3d_patch
2018-11-12 12:48:58 +01:00
Alexandre Dulaunoy
5d1583d88b
chg: [onyphe] fix #252
2018-11-11 15:49:14 +01:00
Raphaël Vinot
2ccc8fd405
Merge pull request #251 from MISP/rommelfs-patch-4
...
bug fix regarding leftovers between runs
2018-11-07 15:27:52 +01:00
Sascha Rommelfangen
463d7ae874
bug fix regarding leftovers between runs
2018-11-07 14:57:19 +01:00
Steve Clement
a947550b71
Merge pull request #250 from SteveClement/btc
...
chg: [btc] Removed simple PoC for btc expansion.
2018-11-07 22:56:20 +09:00
Steve Clement
91f922b5c4
chg: [btc] Removed simple PoC for btc expansion.
2018-11-07 22:53:21 +09:00
Steve Clement
2813e64752
Merge pull request #249 from MISP/rommelfs-patch-3
...
added btc_steroids
2018-11-07 22:48:44 +09:00
Sascha Rommelfangen
06eba154b5
added btc_steroids
2018-11-07 14:38:50 +01:00
Sascha Rommelfangen
c222a5dd76
Merge pull request #248 from rommelfs/master
...
Pull request for master
2018-11-07 14:31:35 +01:00
Sascha Rommelfangen
00b1b3214b
added btc_steroids to the list
2018-11-07 14:28:28 +01:00
Sascha Rommelfangen
b01cb28323
initial version of a Bitcoin module
2018-11-07 14:14:39 +01:00
Alexandre Dulaunoy
815f1ec0ed
chg: [doc] btc module added
2018-11-06 07:33:57 +01:00
Alexandre Dulaunoy
e8f1cd68dc
chg: [doc] generated documentation updated
2018-11-06 07:31:55 +01:00
Alexandre Dulaunoy
b4c519beda
chg: [doc] btc module added to documentation
2018-11-06 07:29:44 +01:00
Alexandre Dulaunoy
55a1cc1b38
Merge pull request #247 from SteveClement/btc
...
new: [module] Added very simple BitCoin expansion/hover module
2018-11-06 07:27:37 +01:00
Steve Clement
7bafa939b0
new: [btc] Very simple BTC expansion
...
chg: [req] yara-python is preferred
2018-11-06 00:48:36 +09:00
chrisr3d
d1308f9924
chg: Validating yara rules after their creation
2018-11-02 21:35:02 +01:00
Steve Clement
74bf2f2678
chg: [tools] Added psutil as a dependency to detect misp-modules PID
2018-11-02 10:44:46 +09:00
Steve Clement
bb5f6fffae
chg: [init] Added try/catch in case misp-modules is already running on a port, or port is in use...
2018-11-02 10:42:40 +09:00
Alexandre Dulaunoy
d4b818895c
Merge pull request #245 from chrisr3d/master
...
YARA rules from hashes expansion module
2018-10-31 11:41:58 +01:00
chrisr3d
af0870b59c
Updated list of modules in readme
2018-10-31 10:35:10 +01:00
chrisr3d
62aa268d01
Merge branch 'master' of github.com:MISP/misp-modules
2018-10-31 10:22:12 +01:00
chrisr3d
1c10fd5e50
fix: Making yara query an expansion module for single attributes atm
2018-10-31 10:21:21 +01:00
Alexandre Dulaunoy
f246a9f0c3
chg: [documentation] osquery logo added
2018-10-26 08:42:30 +02:00
Alexandre Dulaunoy
85061a0a95
add: [documentation] osquery logo
2018-10-26 08:41:56 +02:00
Alexandre Dulaunoy
53ab8a0a2f
chg: [documentation] generated
2018-10-26 08:26:58 +02:00
Alexandre Dulaunoy
2a5d49d62e
Merge pull request #241 from 0xmilkmix/doc_osqueryexport
...
Added basic documentation for OS query
2018-10-26 08:26:10 +02:00
Alexandre Dulaunoy
b549cad8c0
Merge branch 'master' into doc_osqueryexport
2018-10-26 08:10:10 +02:00
Alexandre Dulaunoy
78cf1f79d2
Merge pull request #240 from 0xmilkmix/support_osquery_win_named_obj
...
super simple support for mutexes through winbaseobj in osquery 3.3
2018-10-26 08:09:50 +02:00
Alexandre Dulaunoy
7ae9b767fc
Merge branch 'master' into support_osquery_win_named_obj
2018-10-26 07:48:26 +02:00
Steve Clement
c046d04712
Merge pull request #242 from 0xmilkmix/module_writting
...
chg: [doc] Additional documentation for export module
2018-10-26 13:39:53 +09:00
milkmix
37e3d09102
documentation for export module
2018-10-25 21:54:25 +02:00
milkmix
8c9c70926d
added basic documentation
2018-10-25 21:35:21 +02:00
milkmix
e8761c1664
super simple support for mutexes through winbaseobj in osquery 3.3
2018-10-25 21:28:46 +02:00
Steve Clement
4c48873820
Merge pull request #239 from SteveClement/master
...
chg: [docs] Added some missing dependencies and instructions for virtualenv deployment
2018-10-25 00:53:49 +09:00
Steve Clement
d08962afd2
chg: [docs] Added some missing dependencies and instructions for virtualenv deployment
2018-10-25 00:34:44 +09:00
chrisr3d
1d530a7fa6
new: First version of a yara rule creation expansion module
2018-10-18 14:44:57 +02:00
Alexandre Dulaunoy
35edeac9e3
Merge pull request #237 from 0xmilkmix/export_osquery
...
Export osquery
2018-10-03 20:04:23 +02:00
Julien Bachmann
04ba4b34e3
Merge branch 'master' into export_osquery
2018-10-03 16:59:51 +01:00