chrisr3d
d683665589
chg: [test expansion] Enhanced results parsing
2019-10-29 21:15:22 +01:00
chrisr3d
f15ab8162f
add: cve_advanced module test + functions to test attributes and objects results
2019-10-27 21:19:43 +01:00
chrisr3d
93858e302a
fix: Removed unused self param turning the associated functions into static methods
2019-10-27 21:16:31 +01:00
chrisr3d
63dba29c52
fix: Fixed module names with - to avoid errors with python paths
2019-10-18 11:09:10 +02:00
chrisr3d
6df0072e60
fix: Using absolute path to open files instead of relative path
2019-10-18 09:43:53 +02:00
chrisr3d
93bc178717
fix: Removed unused import\
2019-10-17 16:36:56 +02:00
chrisr3d
7aa78636a5
add: Tests for all the office, libreoffice, pdf & OCR enrich modules
2019-10-17 16:32:26 +02:00
chrisr3d
60ef1901e2
fix: Handling issues when the otx api is queried too often in a short time
2019-10-17 12:46:29 +02:00
chrisr3d
9f7f11107c
fix: Fixed ThreatMiner results parsing
2019-10-17 10:41:11 +02:00
chrisr3d
a7e523ab61
add: threatminer module test
2019-10-16 22:00:36 +02:00
chrisr3d
1786b23b27
add: Tests for expansion modules with different input types
2019-10-15 16:04:03 +02:00
chrisr3d
bc0c7c7d7d
fix: Catching wikidata errors properly + fixed errors parsing
2019-10-15 14:41:38 +02:00
chrisr3d
b1ae8deb6b
fix: Handling errors and exceptions for expansion modules tests that could fail due to a connection error
2019-10-08 15:50:15 +02:00
chrisr3d
e1faf64296
add: Added tests for the rest of the easily testable expansion modules
...
- More tests for more complex modules to come soon
2019-10-07 17:14:27 +02:00
chrisr3d
6a3c907222
fix: DBL spamhaus test
2019-10-05 00:15:29 +02:00
chrisr3d
1130eaf840
fix: Quick typo & dbl spamhaus test fixes
2019-10-04 23:16:28 +02:00
chrisr3d
db804b6a12
add: Tests for sigma queries and syntax validator modules
2019-10-04 17:46:25 +02:00
chrisr3d
5e53583eb1
Merge branch 'master' of github.com:MISP/misp-modules into tests
2019-10-04 17:23:38 +02:00
chrisr3d
b9b78d1606
fix: Travis tests should be happy now
2019-10-04 17:22:32 +02:00
chrisr3d
5cd42b52b6
Merge branch 'master' of github.com:MISP/misp-modules into tests
2019-10-04 17:02:19 +02:00
chrisr3d
6bcd60871c
fix: copy paste syntax error
2019-10-04 17:01:22 +02:00
chrisr3d
43f663ac99
Merge branch 'master' of github.com:MISP/misp-modules into tests
2019-10-04 16:49:49 +02:00
chrisr3d
d48d884ef0
fix: Fixed greynoise test following the latest changes on the module
2019-10-04 16:48:59 +02:00
chrisr3d
cbb7a430a7
add: More modules tested
2019-10-04 16:46:57 +02:00
chrisr3d
a591138020
add: Added tests for some expansion modules without API key required
...
- More tests to come
2019-10-04 16:07:19 +02:00
chrisr3d
8995303878
fix: [tests] Fixed tests to avoid config issues with the cve module
...
- Config currently empty in the module, but being
updated soon with a pending pull request
2019-09-17 13:50:33 +02:00
Raphaël Vinot
696bafa749
fix: have I been pwned API changed again.
2019-08-19 11:37:43 +02:00
Raphaël Vinot
fee889f71c
fix: Wrong change in last commit.
2019-07-24 09:57:52 +02:00
Raphaël Vinot
80ce0a58b5
fix: Skip tests on haveibeenpwned.com if 403. Make pep8 happy.
2019-07-24 09:49:05 +02:00
Raphaël Vinot
40c70c1a53
chg: Add print to figure out what's going on on travis.
2019-07-24 09:35:55 +02:00
Raphaël Vinot
79992f0204
chg: Bump dependencies
2019-07-24 09:24:46 +02:00
Raphaël Vinot
b89d068c04
new: Modules for greynoise, haveibeenpwned and macvendors
...
Source: https://github.com/src7/misp-modules
2019-04-02 15:30:11 +02:00
chrisr3d
4149a07eff
add: Added test files for yara to test yara library & potentially yara syntax
2018-11-13 16:00:55 +01:00
Alexandre Dulaunoy
5d1583d88b
chg: [onyphe] fix #252
2018-11-11 15:49:14 +01:00
chrisr3d
479e66cc9b
fix: Removed STIX related libraries, files, documentation, etc.
2018-06-11 17:03:23 +02:00
Alexandre Dulaunoy
2d9b0cd172
Merge branch 'master' of github.com:MISP/misp-modules
2018-05-29 21:59:25 +02:00
Alexandre Dulaunoy
0af064ac40
fix: missing cve module test
2018-05-29 21:57:38 +02:00
Alexandre Dulaunoy
9664127b85
add: new expansion module to check hashes against hashdd.com including NSLR dataset.
2018-05-29 21:54:22 +02:00
chrisr3d
a02dbd6a8d
fix: Fixed typo of the aml type for country codes
2018-02-26 18:52:28 +01:00
chrisr3d
694a63c8f3
add: Added an example file generated by GoAML export module
2018-02-22 10:29:05 +01:00
Thomas Gardner
441d41cf5d
added test files for threat_connect_export
2017-08-03 16:21:41 -06:00
seamus tuohy
40c71af637
Added support for malformed internationalized email headers
...
When an emails contains headers that use Unicode without properly crafing
them to comform to RFC-6323 the email import module would crash.
(See issue #119 & issue #93 )
To address this I have added additional layers of encoding/decoding to
any possibly internationalized email headers. This decodes properly
formed and malformed UTF-8, UTF-16, and UTF-32 headers appropriately.
When an unknown encoding is encountered it is returned as an 'encoded-word'
per RFC2047.
This commit also adds unit-tests that tests properly formed and malformed
UTF-8, UTF-16, UTF-32, and CJK encoded strings in all header fields; UTF-8,
UTF-16, and UTF-32 encoded message bodies; and emoji testing for headers
and attachment file names.
2017-07-02 18:03:14 -04:00
seamus tuohy
3eecf9afe5
Merge branch 'master' into utf_hate
2017-07-01 18:23:01 -04:00
Raphaël Vinot
c508e60f65
Add OpenIOC import module
2017-02-27 13:32:31 +01:00
seamus tuohy
0566049c63
Added unit tests for UTF emails
2017-01-11 17:53:54 -05:00
seamus tuohy
83a9d695ea
Email import no longer unzips major compressed text document formats.
...
Let this commit serve as a warning about the perils of duck typing.
Word documents (docx,odt,etc) were being uncompressed when they were
attached to emails. The email importer now checks a list of well known
extensions and will not attempt to unzip them.
It is stuck using a list of extensions instead of using file magic because
many of these formats produce an application/zip mimetype when scanned.
2017-01-10 09:55:33 -05:00
Raphaël Vinot
9f84db3659
Fix tests, cleanup
2017-01-07 18:36:08 -05:00
seamus tuohy
1a7973bc06
Add additional email parsing and tests
...
Added additional attribute parsing and corresponding unit-tests.
E-mail attachment and url extraction added in this commit. This includes
unpacking zipfiles and simple password cracking of encrypted zipfiles.
2017-01-04 10:21:36 -08:00
seamus tuohy
0ff270a3be
Fixed basic errors
2016-12-26 14:33:10 -08:00
seamus tuohy
08261366b7
Merged with current master
2016-12-26 14:17:20 -08:00