MISP
/
misp-modules
mirror of https://github.com/MISP/misp-modules
2
0
Fork 0
Code Issues Releases Wiki Activity
misp-modules/documentation/website/expansion/cytomic_orion.json

14 lines
698 B
JSON
Raw Blame History

{
"description": "An expansion module to enrich attributes in MISP by quering the Cytomic Orion API",
"logo": "cytomic_orion.png",
"requirements": [
"Access (license) to Cytomic Orion"
],
"input": "MD5, hash of the sample / malware to search for.",
"output": "MISP objects with sightings of the hash in Cytomic Orion. Includes files and machines.",
"references": [
"https://www.vanimpe.eu/2020/03/10/integrating-misp-and-cytomic-orion/",
"https://www.cytomicmodel.com/solutions/"
],
"features": "This module takes an MD5 hash and searches for occurrences of this hash in the Cytomic Orion database. Returns observed files and machines."
}
Reference in New Issue View Git Blame Copy Permalink