David J
|
a697f65382
|
Add error handling for DNS failures, reduce imports, and simplify misp_comments
|
2018-08-14 10:51:15 -05:00 |
David J
|
bdbf538893
|
Create urlscan.py
|
2018-08-10 16:00:01 -05:00 |
chrisr3d
|
3a57d11745
|
Merge branch 'chrisr3d_patch' of github.com:chrisr3d/misp-modules
|
2018-08-08 17:41:07 +02:00 |
chrisr3d
|
90baa1dd5a
|
add: Added DBL spamhaus module documentation and in expansion init file
|
2018-08-08 17:05:22 +02:00 |
chrisr3d
|
61232ad93e
|
new: Expansion hover module to check spamhaus DBL for a domain name
|
2018-08-08 17:00:10 +02:00 |
chrisr3d
|
9acf66053e
|
Merge branch 'master' of github.com:MISP/misp-modules
|
2018-08-08 16:51:42 +02:00 |
chrisr3d
|
0666a60b3d
|
fix: [cleanup] Quick clean up on exception type
|
2018-08-07 18:15:15 +02:00 |
chrisr3d
|
bb6002a3ff
|
fix: [cleanup] Quick clean up on yaml load function
|
2018-08-07 18:14:29 +02:00 |
chrisr3d
|
57af98720d
|
fix: [cleanup] Quick clean up on exception type
|
2018-08-07 18:13:25 +02:00 |
Christophe Vandeplas
|
8d4e2025f7
|
ta_import - bugfixes for TA 6.1
|
2018-08-03 13:58:53 +02:00 |
chrisr3d
|
63c3252062
|
fix: Put the report location parsing in a try/catch statement as it is an optional field
|
2018-07-30 14:22:40 +02:00 |
Christophe Vandeplas
|
2f27ff1244
|
ta_import - support for TheatAnalyzer 6.1
|
2018-07-27 14:44:06 +02:00 |
sebdraven
|
d7fac002af
|
Merge branch 'master' into dnstrails
|
2018-07-18 11:07:44 +02:00 |
Sebdraven
|
804e59ed8d
|
change type of status
|
2018-07-18 10:58:51 +02:00 |
Sebdraven
|
c8e20d9087
|
remove print
|
2018-07-18 10:51:47 +02:00 |
Sebdraven
|
f2df6dc538
|
last commit for release
|
2018-07-18 10:47:42 +02:00 |
Sebdraven
|
88859a0ba7
|
add logs
|
2018-07-17 18:43:52 +02:00 |
Sebdraven
|
8cbeda40a5
|
add searching_stats
|
2018-07-17 18:42:01 +02:00 |
Sebdraven
|
9d603344c2
|
add searching_stats
|
2018-07-17 18:32:50 +02:00 |
Sebdraven
|
c785cae89b
|
correct key
|
2018-07-17 17:22:48 +02:00 |
Sebdraven
|
2706c4a82a
|
correct key
|
2018-07-17 17:21:38 +02:00 |
Sebdraven
|
431c1511a3
|
correct param
|
2018-07-17 17:20:30 +02:00 |
Sebdraven
|
999ae1f6f0
|
add searching domains
|
2018-07-17 17:09:01 +02:00 |
Sebdraven
|
a41cf59e0c
|
add searching domains
|
2018-07-17 15:05:15 +02:00 |
Sebdraven
|
966f9603a9
|
add return
|
2018-07-12 15:02:46 +02:00 |
Sebdraven
|
7f52a15d16
|
add logs
|
2018-07-12 14:59:50 +02:00 |
Sebdraven
|
3eda712193
|
add whois expand to test
|
2018-07-12 14:58:48 +02:00 |
Sebdraven
|
5a422c2e5b
|
add whois expand to test
|
2018-07-12 14:57:37 +02:00 |
Sebdraven
|
db35c9b091
|
correct index error
|
2018-07-12 14:55:56 +02:00 |
Sebdraven
|
0341bdc398
|
error call functions
|
2018-07-12 14:52:01 +02:00 |
Sebdraven
|
2f5381d7b2
|
add logs
|
2018-07-12 14:49:51 +02:00 |
Sebdraven
|
0b0137829a
|
add logs
|
2018-07-12 14:48:15 +02:00 |
Sebdraven
|
86d236f859
|
add status_ok to true
|
2018-07-12 14:47:34 +02:00 |
Sebdraven
|
aa89a7fc4d
|
add logs
|
2018-07-12 14:44:19 +02:00 |
Sebdraven
|
86d9427816
|
add logs
|
2018-07-12 14:42:33 +02:00 |
Sebdraven
|
a0cf9de590
|
add logs
|
2018-07-12 14:38:38 +02:00 |
Sebdraven
|
9de201375b
|
add logs
|
2018-07-12 14:37:09 +02:00 |
Sebdraven
|
d56bf55038
|
add logs
|
2018-07-12 14:33:52 +02:00 |
Sebdraven
|
844b25b4cd
|
correct out of bound returns
|
2018-07-12 14:32:56 +02:00 |
Sebdraven
|
9063da88cd
|
correct key and return of functions
|
2018-07-12 14:27:59 +02:00 |
Sebdraven
|
731c06a939
|
add logs
|
2018-07-12 14:17:16 +02:00 |
Sebdraven
|
fb595c08aa
|
add logs
|
2018-07-12 14:16:19 +02:00 |
Sebdraven
|
41587bd568
|
correct typo
|
2018-07-12 14:14:43 +02:00 |
Sebdraven
|
4b0daee6f1
|
test whois history
|
2018-07-12 14:04:37 +02:00 |
Sebdraven
|
576b3c9b9b
|
history whois dns
|
2018-07-12 13:40:51 +02:00 |
chrisr3d
|
32419c398e
|
Merge branch 'master' of github.com:MISP/misp-modules
|
2018-07-12 00:05:01 +02:00 |
chrisr3d
|
a62078aad1
|
add: Experimental expansion module to display the SIEM signatures from a sigma rule
|
2018-07-11 23:43:42 +02:00 |
Sebdraven
|
51067039da
|
correct typo
|
2018-07-11 13:03:47 +02:00 |
Sebdraven
|
3a2aab6d71
|
rename misp modules
|
2018-07-11 12:41:54 +02:00 |
Sebdraven
|
a8ae6e06e9
|
add a test to check if the list is not empty
|
2018-07-11 12:09:34 +02:00 |
Sebdraven
|
f0a4c71908
|
add a test to check if the list is not empty
|
2018-07-11 12:08:01 +02:00 |
Sebdraven
|
dbeec4682e
|
add logs
|
2018-07-11 12:02:31 +02:00 |
Sebdraven
|
fb262b451f
|
debug whois
|
2018-07-11 12:00:59 +02:00 |
Sebdraven
|
80e71f582c
|
debug ipv4 or ipv6
|
2018-07-11 11:58:42 +02:00 |
Sebdraven
|
386d38c88f
|
add debug
|
2018-07-11 11:55:59 +02:00 |
Sebdraven
|
45decc728d
|
debug
|
2018-07-11 11:55:31 +02:00 |
Sebdraven
|
45c473aef5
|
change status
|
2018-07-11 11:52:10 +02:00 |
Sebdraven
|
64e7f9c8b6
|
change history dns
|
2018-07-11 11:47:10 +02:00 |
Sebdraven
|
560dacbf7e
|
add logs to debug
|
2018-07-11 11:40:22 +02:00 |
Sebdraven
|
74c611d2fb
|
correct call function
|
2018-07-11 11:37:07 +02:00 |
Sebdraven
|
f47a64b364
|
add history mx and soa
|
2018-07-11 11:24:49 +02:00 |
Sebdraven
|
43a49dafc6
|
add history dns and handler exception
|
2018-07-11 09:48:14 +02:00 |
Sebdraven
|
54d996cb00
|
add history dns
|
2018-07-11 09:39:09 +02:00 |
Sebdraven
|
dcdb6e5895
|
switch type ip
|
2018-07-11 09:02:47 +02:00 |
Sebdraven
|
42c362d2fd
|
refactoring expand_whois
|
2018-07-11 09:00:23 +02:00 |
Sebdraven
|
41635d43c7
|
correct typo
|
2018-07-11 08:49:59 +02:00 |
Sebdraven
|
3a96e189ed
|
add ipv6 and ipv4
|
2018-07-11 08:43:23 +02:00 |
Sebdraven
|
f2333a4978
|
change type
|
2018-07-10 16:55:13 +02:00 |
Sebdraven
|
9e6162a434
|
change type
|
2018-07-10 16:53:06 +02:00 |
Sebdraven
|
26950ea7de
|
change loop
|
2018-07-10 16:51:31 +02:00 |
Sebdraven
|
e9747a3379
|
add time sleep in each request
|
2018-07-10 16:41:44 +02:00 |
Sebdraven
|
602da3d1a3
|
control return of records
|
2018-07-10 16:35:01 +02:00 |
Sebdraven
|
495c720d0f
|
add history ipv4
|
2018-07-10 16:31:39 +02:00 |
Sebdraven
|
21794249d0
|
add logs
|
2018-07-10 15:17:37 +02:00 |
Sebdraven
|
b677cd5fc7
|
change categories
|
2018-07-10 15:16:02 +02:00 |
Sebdraven
|
1d100833a4
|
concat results
|
2018-07-10 15:12:27 +02:00 |
Sebdraven
|
1223d93d52
|
change name keys
|
2018-07-10 15:07:54 +02:00 |
Sebdraven
|
714c15f079
|
change return value
|
2018-07-10 15:05:10 +02:00 |
Sebdraven
|
e1a1648f14
|
add logs
|
2018-07-10 15:01:04 +02:00 |
Sebdraven
|
f710162bed
|
change errors
|
2018-07-10 14:59:39 +02:00 |
Sebdraven
|
2a8fb76e84
|
add logs
|
2018-07-10 14:56:20 +02:00 |
Steve Clement
|
562a6b1308
|
- Removed test modules from view
- Moved skeleton expansion module to it's proper place
|
2018-07-03 08:27:54 +02:00 |
chrisr3d
|
90e42c0305
|
fix: Put the stix2-pattern library import in a try statement
--> Error more easily caught
|
2018-07-02 12:14:21 +02:00 |
chrisr3d
|
08d8459e1a
|
add: STIX2 pattern syntax validator
|
2018-07-02 11:38:33 +02:00 |
Steve Clement
|
549f32547d
|
- Reverted to <3.6 compatibility
|
2018-07-01 22:09:02 +08:00 |
Steve Clement
|
9f0313a97e
|
- Fixed log output
|
2018-06-30 12:01:21 +08:00 |
Steve Clement
|
184065cf74
|
- Forgot to import sys
|
2018-06-30 11:58:44 +08:00 |
Steve Clement
|
ffce2aa5cc
|
- Added logger functionality for debug sessions
|
2018-06-30 11:52:12 +08:00 |
Steve Clement
|
2f5dd9928e
|
- content was already a wand.obj
|
2018-06-30 11:38:26 +08:00 |
Steve Clement
|
90f2fe9d19
|
Merge remote-tracking branch 'upstream/master'
|
2018-06-30 01:05:01 +08:00 |
Steve Clement
|
f97359de6a
|
Merge branch 'master' of github.com:SteveClement/misp-modules
|
2018-06-30 01:04:30 +08:00 |
Steve Clement
|
ef3837077e
|
- Some more comments
- Removed libmagic, wand can handle it better
|
2018-06-30 00:58:25 +08:00 |
Sebdraven
|
34da5cdb76
|
add expand whois
|
2018-06-29 17:57:11 +02:00 |
Sebdraven
|
f1c6095914
|
typo
|
2018-06-29 17:26:56 +02:00 |
Sebdraven
|
78d6de9b7a
|
add categories and comments
|
2018-06-29 17:25:37 +02:00 |
Sebdraven
|
0965def6bf
|
add expand subdomains
|
2018-06-29 17:22:19 +02:00 |
Sebdraven
|
64847a8a04
|
add expand subdomains
|
2018-06-29 17:19:21 +02:00 |
Sebdraven
|
2d1adf4aa9
|
change categories
|
2018-06-29 16:30:47 +02:00 |
Sebdraven
|
0275e3ecd8
|
changes keys
|
2018-06-29 16:20:35 +02:00 |
Sebdraven
|
f3962d2d05
|
add status !
|
2018-06-29 16:17:32 +02:00 |
Sebdraven
|
09c52788b8
|
add methods
|
2018-06-29 16:11:24 +02:00 |
Sebdraven
|
cfe971a271
|
add expand domains
|
2018-06-29 15:50:26 +02:00 |
Sebdraven
|
60f772b905
|
add new module dnstrails
|
2018-06-29 11:27:36 +02:00 |
Christophe Vandeplas
|
ff793bc221
|
threatanalyzer_import - order of category tuned
|
2018-06-29 11:17:03 +02:00 |
Alexandre Dulaunoy
|
d8eeb73a4a
|
Merge branch 'master' into master
|
2018-06-29 06:49:40 +02:00 |
Steve Clement
|
c7c93b53e8
|
- Set tornado timeout to 300 seconds.
|
2018-06-29 12:02:08 +08:00 |
Steve Clement
|
fbb3617f25
|
- Quick comment ToDo: Avoid using Magic in future releases
|
2018-06-29 12:01:17 +08:00 |
Steve Clement
|
60a3fbe282
|
- added wand requirement
- fixed missing return png byte-stream
- move module import to handler to catch and report errorz
|
2018-06-28 23:20:38 +08:00 |
Steve Clement
|
7885017981
|
- fixed typo move image back in scope
|
2018-06-28 16:59:03 +08:00 |
chrisr3d
|
7dd8e988c0
|
Updated the list of modules (removed stiximport)
|
2018-06-28 10:51:40 +02:00 |
chrisr3d
|
b1c90b411e
|
add: Sigma syntax validator expansion module
--> Checks sigma rules syntax
- Updated the expansion modules list as well
- Updated the requirements list
|
2018-06-28 10:41:32 +02:00 |
chrisr3d
|
7c691af807
|
Updated the list of expansion modules
|
2018-06-28 10:39:40 +02:00 |
Steve Clement
|
59b7688bdc
|
- Added initial PDF support, nothing is processed yet
- Test to replace PIL with wand
|
2018-06-28 16:00:14 +08:00 |
milkmix
|
349dd99d47
|
added support for scheduledtasks
|
2018-06-24 21:13:56 +02:00 |
milkmix
|
7c037ed090
|
added support for service-displayname, regkey|value
|
2018-06-24 21:09:42 +02:00 |
milkmix
|
0c6a205136
|
initial implementation supporting regkey. mutexes support waiting osquery table
|
2018-06-23 15:51:38 +02:00 |
Sebdraven
|
785aac3e6b
|
add return handle domains
|
2018-06-22 16:18:23 +02:00 |
Sebdraven
|
87b07b89b5
|
add search
|
2018-06-22 16:15:34 +02:00 |
Sebdraven
|
396b71ef3b
|
add domain to expand
|
2018-06-22 16:06:34 +02:00 |
Sebdraven
|
de6a81d488
|
correct bugs
|
2018-06-22 16:04:14 +02:00 |
Sebdraven
|
83999d6402
|
add domain expansion
|
2018-06-22 15:57:52 +02:00 |
Sebdraven
|
96c829470d
|
add comment
|
2018-06-22 15:14:44 +02:00 |
Sebdraven
|
8d03354399
|
correct bugs
|
2018-06-22 15:12:10 +02:00 |
Sebdraven
|
e9c18b3d5f
|
correct comments
|
2018-06-22 13:03:09 +02:00 |
Sebdraven
|
e230c88c15
|
add threat list expansion
|
2018-06-22 11:59:09 +02:00 |
Sebdraven
|
1d1fd36569
|
change method to concat methods
|
2018-06-20 18:05:28 +02:00 |
Sebdraven
|
e712a31760
|
set status after requests
|
2018-06-20 18:04:12 +02:00 |
Sebdraven
|
a9b7a10c41
|
set status after requests
|
2018-06-20 18:03:34 +02:00 |
Sebdraven
|
4166475f9e
|
add logs
|
2018-06-20 18:02:12 +02:00 |
Sebdraven
|
fe00f099f6
|
add logs
|
2018-06-20 17:59:49 +02:00 |
Sebdraven
|
153d8bd340
|
add logs
|
2018-06-20 17:56:19 +02:00 |
Sebdraven
|
9195887f98
|
pep 8
|
2018-06-20 17:51:46 +02:00 |
Sebdraven
|
2afd2b8aaf
|
correct bug
|
2018-06-20 17:50:28 +02:00 |
Sebdraven
|
04e932cce0
|
add datascan expansion
|
2018-06-20 17:47:11 +02:00 |
Sebdraven
|
b56f8cfa36
|
add reverse infos
|
2018-06-20 16:30:56 +02:00 |
Sebdraven
|
d4be9d9fda
|
add reverse infos
|
2018-06-20 16:29:04 +02:00 |
Sebdraven
|
4a8a79c560
|
add reverse infos
|
2018-06-20 16:26:09 +02:00 |
Sebdraven
|
0d120af647
|
add reverse infos
|
2018-06-20 16:24:17 +02:00 |
Sebdraven
|
a24b529868
|
add forward infos
|
2018-06-20 15:33:21 +02:00 |
Sebdraven
|
d0f42c1772
|
add comment of attributes
|
2018-06-20 15:07:55 +02:00 |
Sebdraven
|
915747073a
|
add comment of attributes
|
2018-06-20 15:05:00 +02:00 |
Sebdraven
|
7eba7c0386
|
error loops
|
2018-06-20 14:53:08 +02:00 |
Sebdraven
|
d1e72676f1
|
error method
|
2018-06-20 14:50:48 +02:00 |
Sebdraven
|
3a4294391f
|
error type
|
2018-06-20 14:48:18 +02:00 |
Sebdraven
|
9427c76603
|
error keys
|
2018-06-20 14:45:06 +02:00 |
Sebdraven
|
e1bc67afad
|
add expansion synscan
|
2018-06-20 14:41:57 +02:00 |
Sebdraven
|
5426ec5380
|
change key access domains
|
2018-06-20 12:40:52 +02:00 |
Sebdraven
|
7a3c4b1084
|
change add in results
|
2018-06-20 12:38:41 +02:00 |
Sebdraven
|
e8aefde2ee
|
add logs
|
2018-06-20 12:36:32 +02:00 |
Sebdraven
|
7195f33f5d
|
correct error keys
|
2018-06-20 12:34:07 +02:00 |