Commit Graph

1703 Commits (6dda2d08c07a9a7eeb395bd8600cd57257b86109)

Author SHA1 Message Date
chrisr3d 6dda2d08c0
fix: [tests] Fixed hibp test which requires an API key 2021-04-14 19:57:33 +02:00
chrisr3d 729feaa3f2
fix: [hibp] Fixed config handling to avoir KeyError exceptions 2021-04-14 16:52:55 +02:00
Alexandre Dulaunoy d522b25b20
chg: [test] fixing IP addresses 2021-04-14 14:55:35 +02:00
Alexandre Dulaunoy fd00fe6cb2
chg: [passivetotal] new test IP address 2021-04-14 14:51:28 +02:00
Alexandre Dulaunoy 577d0de500
chg: [farsight] make PEP happy 2021-04-14 14:45:55 +02:00
Alexandre Dulaunoy 296d2d63c9
chg: [requirements] openpyxl added 2021-04-12 14:28:30 +02:00
Alexandre Dulaunoy 07d23fbb9b
fix: [test] dns module 2021-04-12 14:26:38 +02:00
Alexandre Dulaunoy 834732c413
chg: [travis] missing dep 2021-04-12 11:12:56 +02:00
Alexandre Dulaunoy a912239757
chg: [test expansion] IPv4 address of CIRCL updated 2021-04-12 11:11:01 +02:00
Alexandre Dulaunoy ba33b2ebba
chg: [coverage] install 2021-04-12 10:13:25 +02:00
Alexandre Dulaunoy 961672412b
chg: [pipenv] removed 2021-04-12 09:09:24 +02:00
Alexandre Dulaunoy b27dd2acfc
chg: [travis] get rid of pipenv 2021-04-12 08:57:59 +02:00
Alexandre Dulaunoy f33f96c98a
Merge branch 'main' of github.com:MISP/misp-modules into main 2021-04-12 08:31:25 +02:00
Alexandre Dulaunoy 25c5648cd6
chg: [Pipfile.lock] updated 2021-04-12 08:30:49 +02:00
Alexandre Dulaunoy a381ffdce6
chg: [doc] fix index of mkdocs 2021-04-09 00:20:36 +02:00
Alexandre Dulaunoy 2bc5021ace
Merge pull request #435 from JakubOnderka/remove-duplicate-decoding
fix: [main] Remove duplicate JSON decoding
2021-04-08 20:41:46 +02:00
Alexandre Dulaunoy 0752628de5
fix: [cve_advanced] Some CVEs are not in CWE format but in NVD-CWE-Other 2021-04-08 19:14:13 +02:00
Alexandre Dulaunoy 51e6122c67
chg: [documentation] updated 2021-03-31 14:05:32 +02:00
chrisr3d a2282c4721
add: [farsight_passivedns] Adding first_seen & last_seen (when available) in passivedns objects
- The object_relation `time_first` is added as the
  `first_seen` value of the object
- Same with `time_last` -> `last_seen`
2021-03-31 13:42:07 +02:00
chrisr3d eaa455a200 Merge branch 'main' of github.com:MISP/misp-modules into new_features 2021-03-30 17:36:37 +02:00
chrisr3d 505bbbc20a
fix: [farsight_passivedns] Excluding last_seen value for now, in order to get the available results
- With last_seen set we can easily get results
  included in a certain time frame (between first
  seen and last seen), but we do not get the
  latest results. In order to get those ones, we
  skip filtering on the time_last_before value
2021-03-30 17:34:01 +02:00
chrisr3d a6a8978b20 chg: [farsight_passivedns] Making first_time and last_time results human readable
- We get the datetime format instead of the raw
  timestamp
2021-03-30 12:10:28 +02:00
chrisr3d d7b529d3fe fix: [farsight_passivedns] Fixed lookup_rdata_name results desclaration
- Getting generator as a list as it is already the
  case for all the other results, so it avoids
  issues to read the results by accidently looping
  through the generator before it is actually
  needed, which would lose the content of the
  generator
- Also removed print that was accidently introduced
  with the last commit
2021-03-30 12:09:19 +02:00
chrisr3d 0dc0d59ed9 Merge branch 'main' of github.com:MISP/misp-modules into new_features 2021-03-30 03:49:03 +02:00
chrisr3d 5077050a3e
chg: [farsight_passivedns] Making first_time and last_time results human readable
- We get the datetime format instead of the raw
  timestamp
2021-03-30 03:47:34 +02:00
chrisr3d 327a1ac893
fix: [farsight_passivedns] Fixed lookup_rdata_name results desclaration
- Getting generator as a list as it is already the
  case for all the other results, so it avoids
  issues to read the results by accidently looping
  through the generator before it is actually
  needed, which would lose the content of the
  generator
- Also removed print that was accidently introduced
  with the last commit
2021-03-30 03:42:54 +02:00
Raphaël Vinot efd2ffce3b chg: Bump deps 2021-03-30 00:13:41 +02:00
chrisr3d 8935c4adc5 Merge branch 'main' of github.com:MISP/misp-modules into new_features 2021-03-29 20:10:28 +02:00
chrisr3d 25d826076c
add: [farsight_passivedns] New lookup argument based on the first_seen & last_seen fields 2021-03-29 20:09:29 +02:00
Alexandre Dulaunoy 521cdc4435
Merge pull request #484 from GreyNoise-Intelligence/main
Update to GreyNoise expansion module
2021-03-26 23:20:24 +01:00
Alexandre Dulaunoy 5214bbded6
Merge pull request #485 from jgwilson42/patch-1
Update README.md
2021-03-26 23:19:25 +01:00
James Wilson 40537e898b
Update README.md
Ensure that the clone of misp-modules is owned by www-data
2021-03-26 17:38:50 +00:00
Brad Chiappetta 5e20ea0dc0 update community api to released ver 2021-03-26 11:19:40 -04:00
Alexandre Dulaunoy c855617aa8
Merge pull request #482 from MISP/new_features
Farsight_passivedns module updated with new input types compatible with flex queries
2021-03-24 09:37:25 +01:00
Brad Chiappetta 714eb425c6 fix ver info 2021-03-23 13:41:05 -04:00
Brad Chiappetta 2855f7ff5f updates for greynoise community api 2021-03-23 13:39:36 -04:00
chrisr3d 9f80d69e64 Merge branch 'main' of github.com:MISP/misp-modules into new_features 2021-03-18 19:34:18 +01:00
chrisr3d 458e432bb7
fix: Making pep8 happy 2021-03-18 19:22:26 +01:00
chrisr3d aea7e247a5 Merge branch 'main' of github.com:MISP/misp-modules into new_features 2021-03-18 18:45:41 +01:00
chrisr3d c8c44e75bf
fix: [farsight_passivedns] Fixed queries to the API
- Since flex queries input may be email addresses,
  we nake sure we replace '@' by '.' in the flex
  queries input.
- We also run the flex queries with the input as
  is first, before runnning them as second time
  with '.' characters escaped: '\\.'
2021-03-18 18:40:27 +01:00
Alexandre Dulaunoy bd38fabba5
Merge pull request #481 from cocaman/main
Adding ThreatFox enrichment module
2021-03-17 23:17:21 +01:00
chrisr3d f58f4aa9eb
chg: [farsight_passivedns] Added input types for more flex queries
- Standard types still supported as before
  - Name or ip lookup, with optional flex queries
- New attribute types added will only send flex
  queries to the DNSDB API
2021-03-17 20:17:07 +01:00
Corsin Camichel a13184b078
adding additional tags 2021-03-13 20:59:54 +01:00
Corsin Camichel d14d3d585f
first version of ThreatFox enrichment module 2021-03-13 20:36:49 +01:00
Alexandre Dulaunoy e687317f83
Merge pull request #480 from cocaman/patch-1
updating "hibp" for API version 3
2021-03-13 20:24:31 +01:00
Corsin Camichel d913ae4b36
updating "hibp" for API version 3 2021-03-13 17:44:27 +01:00
Alexandre Dulaunoy 35dc6c9d20
Merge pull request #477 from jloehel/fix/google-module
Fix/google module
2021-03-10 07:48:55 +01:00
Jürgen Löhel 9e8d01b6c8
fix: google.py module
The search result does not include always 3 elements. It's better to
enumerate here.
The googleapi fails sometimes. Retry it 3 times.

Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
2021-03-09 18:04:12 -06:00
Jürgen Löhel c1700cc955
fix: google.py module
Corrects import for gh.com/abenassi/Google-Search-API.

Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
2021-03-09 16:46:11 -06:00
Alexandre Dulaunoy 9e7eb93d0f
Merge pull request #476 from digihash/patch-1
Update README.md
2021-03-06 22:54:18 +01:00