Commit Graph

2307 Commits (80eae92093988dabc4b71a9910ce17e99788af0f)

Author SHA1 Message Date
Maik Würth db5e56c7b2 Added support for SHA256 and MISPObject attributes to Defender export module. 2023-03-10 16:08:49 +01:00
Maik Würth 8cc4774be5 Export object attributes with Defender export module. 2023-03-10 15:48:28 +01:00
Christian Studer f40f61fc18
add: [documentation] Added documentation for the new ipinfo.io module & updated the main readme file 2023-02-21 15:21:56 +01:00
Christian Studer 69deb8d10b
add: [ipinfo] First version of a new module to query ipinfo.io
- First version addressing the request from #600
- Straight forward parsing of the `geolocation`,
  `domain-ip` and `asn` information returned by
  the standard API endpoint (ipinfo.io/{ip_address})
2023-02-21 13:04:24 +01:00
Christian Studer 81f94d96fd Merge branch 'main' of github.com:MISP/misp-modules into new_module 2023-02-20 18:59:34 +01:00
Christian Studer 33650819e9 Merge branch 'main' of github.com:MISP/misp-modules 2023-02-20 18:39:13 +01:00
Alexandre Dulaunoy 8579cbb260
chg: [REQUIREMENTS] remove specific version of psutil as mentioned in #593 2023-02-20 10:16:34 +01:00
Alexandre Dulaunoy f09fe8d243
Merge pull request #602 from crowdsecurity/crowdsec_user_agent
Set user agent of crowdsec misp module to crowdsec-misp/v1.0.0
2023-02-20 06:44:18 +01:00
Shivam Sandbhor 2c9b953f23 Set user agent of crowdsec misp module to crowdsec-misp/v1.0.0
Signed-off-by: Shivam Sandbhor <shivam.sandbhor@gmail.com>
2023-02-20 10:11:38 +05:30
Christian Studer 2e7ab05972 Merge branch 'main' of github.com:MISP/misp-modules into new_module 2023-02-09 15:52:57 +01:00
Christian Studer 4cd5f4baf0 Merge branch 'main' of github.com:MISP/misp-modules 2022-11-21 11:46:45 +01:00
Alexandre Dulaunoy b7bd679b1c
fix: [url_import/url] added in __init__ 2022-11-08 06:23:40 +01:00
Christian Studer cb8f55425c
fix: [crowdsec] Fixed the __init__ files 2022-11-07 23:44:40 +01:00
Christian Studer b9f97567c5 Merge branch 'main' of github.com:MISP/misp-modules 2022-11-07 23:35:21 +01:00
Sami Mokaddem 9bf7e15053
new: [expansion] Added extract_url_components module to create an object from an URL attribute 2022-11-06 17:28:00 +01:00
Sami Mokaddem 359e3cc21f
Merge branch 'main' of github.com:MISP/misp-modules into main 2022-11-06 17:22:58 +01:00
Sami Mokaddem 4e25a6c126
new: [import] import_blueprint to facilitate an easy-to-use blueprint for data import 2022-11-06 17:21:50 +01:00
Sami Mokaddem 8c053d90b1
new: [import] Url_import module to convert batch of URLs into url objects 2022-11-06 17:21:24 +01:00
Alexandre Dulaunoy b8de83e9f5
Merge pull request #590 from crowdsecurity/main
Add crowdsec module
2022-10-30 22:56:22 +01:00
Shivam Sandbhor 382d8036d9 Add crowdsec module
Signed-off-by: Shivam Sandbhor <shivam.sandbhor@gmail.com>
2022-10-28 12:19:35 +05:30
Alexandre Dulaunoy eaebba2912
chg: [mkdocs] updated doc 2022-10-27 10:15:58 +02:00
Alexandre Dulaunoy ea071519b2
chg: [mkdows] footer updated 2022-10-27 10:15:25 +02:00
Alexandre Dulaunoy e8cb47a8c7
chg: [doc] updated 2022-10-27 10:14:56 +02:00
Christian Studer e18ac776bb
fix: [variodbs] Fixed indentation issue
- if `exploit_results` is empty, we should not go
  any further in the query for next values exploit
  results
2022-10-27 09:50:24 +02:00
Christian Studer 5526c2c195
add: [variotdbs] Updated the exploit object mapping to support the object attributes recently added to the `exploit` template 2022-10-26 11:35:59 +02:00
Christian Studer 8e97bf9938
chg: [cve_advanced] Updated the module to use cvepremium & a few improvements 2022-10-25 22:20:30 +02:00
Christian Studer 38a6dc810e
fix: [variodbs] Properly handling the exploit results when there is more that 10 results
- We keep querying the VARIoT db API with the link
  of the next content until there is no next result
2022-10-24 16:18:22 +02:00
Christian Studer b964b5e2a6
fix: [variodbs] Fixed the empty vulnerability results case handling, to avoid the module to stop before looking for related exploits 2022-10-24 15:43:04 +02:00
Christian Studer 3db8fa63db Merge branch 'new_module' of github.com:MISP/misp-modules 2022-10-24 15:31:17 +02:00
Christian Studer a93b382f1f
add: [readme] Added description for the variotdbs module 2022-10-24 15:25:56 +02:00
Christian Studer 27673d0516
add: [documentation] Regenerated documentation with the recently added modules description 2022-10-24 15:23:20 +02:00
Christian Studer 5376993ba9
add: [documentation] Added documentation for the variotdbs module 2022-10-24 15:20:42 +02:00
Christian Studer 153ca8d3d4
add: [variotdbs] Added the exploit information parsing
- Following a recent change on the variotdbs API
  allowing requests to get exploits information
  base on a CVE number
2022-10-24 15:01:54 +02:00
Christian Studer 98031beeae
fix: [variotdbs] Fixed some typos, missing imports, and some issues in the main parsing process 2022-10-24 14:53:00 +02:00
Christian Studer baa52f5ab9 Merge branch 'main' into new_module 2022-10-21 14:39:32 +02:00
Christian Studer 8b12b811a8 Merge branch 'main' of github.com:MISP/misp-modules into new_module 2022-10-21 14:38:13 +02:00
Christian Studer 7c74d2b600 Merge branch 'new_module' of github.com:MISP/misp-modules into new_module 2022-10-21 14:37:52 +02:00
Christian Studer f5cb8d0f57
fix: [variotdbs] Added the reference between the resulting vulnerability object and the initial vulnerability attribute 2022-10-21 14:18:47 +02:00
Christian Studer 81375e1628 add: [variotdbs] Added module to query the variotdbs API with a vulnerabliity, to get additional info about it 2022-10-19 00:06:04 +02:00
Alexandre Dulaunoy 9e07b6a0e5
Merge pull request #586 from RamboV/main
Added more endpoints to the module
2022-10-11 06:46:08 +02:00
Rambatla Venkat Rao d00fee3ba0
Update hyasinsight.py 2022-10-11 08:26:12 +05:30
Rambatla Venkat Rao 66eb82cf1a
Added few more endpoints 2022-10-11 08:24:53 +05:30
Alexandre Dulaunoy 4a0c8cdccb
Merge pull request #585 from extra2000/bump-vt-py-0_17_1
fix(REQUIREMENTS): bump `vt-py` to `0.17.1` due to `0.17.0` is no longer exists
2022-10-04 10:16:48 +02:00
Nik Mohamad Aizuddin ce3918ddba
fix(REQUIREMENTS): bump `vt-py` to `0.17.1` due to `0.17.0` is no longer exists 2022-10-04 13:03:41 +08:00
Jakub Onderka fa0c7fe630
Merge pull request #583 from JakubOnderka/update-dependencies
Update REQUIREMENTS
2022-09-28 22:06:31 +02:00
Jakub Onderka 90c64c68b3 Update REQUIREMENTS 2022-09-28 21:33:44 +02:00
Alexandre Dulaunoy b1759e1e8e
Merge pull request #579 from szopin/patch-2
Fix for ocr import
2022-09-20 16:14:07 +02:00
Alexandre Dulaunoy 0277b8f8d8
Merge pull request #581 from Wachizungu/add-input-email-attribute-types-to-apivoid-exp-module
fix: [expansion:apivoid] add missing email attribute input types
2022-09-20 16:12:04 +02:00
Jeroen Pinoy 340b9c0954
fix: [expansion:apivoid] add missing email attribute input types 2022-09-20 06:05:06 -07:00
szopin 79e067188e
Fix for ocr import
Currently works only for .pdf files, with this .png and .jpg should also work (fixes #512)
2022-09-16 10:12:46 +02:00