misp-modules/misp_modules/modules/expansion
Koen Van Impe c42723d42d Module to push malware samples to a MWDB instance
- Upload of attachment or malware sample to MWDB
- Tags of events and/or attributes are added to MWDB.
- Comment of the MISP attribute is added to MWDB.
- A link back to the MISP event is added to MWDB via the MWDB attribute.
- A link to the MWDB attribute is added as an enriched attribute to the MISP event.
2021-12-26 23:34:00 +01:00
..
_dnsdb_query fix: [dnsdb] Avoiding AttributeError with the sys library, probably depending on the python version 2020-11-05 15:55:15 +01:00
_ransomcoindb fix: Making pep8 happy 2020-02-26 11:59:14 +01:00
__init__.py Module to push malware samples to a MWDB instance 2021-12-26 23:34:00 +01:00
apiosintds.py fix: Making pep8 happy by having spaces around '+' operators 2019-12-17 16:31:53 +01:00
apivoid.py add: Specific error message for misp_standard format expansion modules 2020-07-28 11:47:53 +02:00
assemblyline_query.py Update assemblyline_query.py 2021-02-02 22:55:09 +10:30
assemblyline_submit.py Update assemblyline_submit.py 2021-02-02 22:56:02 +10:30
backscatter_io.py chg: [backscatter.io] blind fix regarding undefined value 2019-02-10 16:56:01 +01:00
bgpranking.py chg: Updated the bgpranking expansion module to return MISP objects 2020-09-08 16:08:57 +02:00
btc_scam_check.py chg: [btc_scam_check] fix spacing for making flake 8 happy 2019-02-11 14:23:18 +01:00
btc_steroids.py fix: Remove unused import 2019-03-15 11:06:11 +01:00
censys_enrich.py add: Specific error message for misp_standard format expansion modules 2020-07-28 11:47:53 +02:00
circl_passivedns.py add: Specific error message for misp_standard format expansion modules 2020-07-28 11:47:53 +02:00
circl_passivessl.py add: Specific error message for misp_standard format expansion modules 2020-07-28 11:47:53 +02:00
clamav.py chg: [clamav] Add reference to original attribute 2020-10-20 19:26:04 +02:00
countrycode.py fix: Catching exceptions and results properly depending on the cases 2019-10-08 15:45:06 +02:00
cpe.py fix: [cpe] Fixed typo in vulnerable-configuration object relation fields 2020-11-13 15:49:58 +01:00
crowdstrike_falcon.py added CrowdStrike Falcon Intel Indicators expansion module 2018-01-19 14:42:25 +01:00
cuckoo_submit.py Use double quotes and provide headers correctly 2019-04-19 16:24:30 +02:00
cve.py fix: Travis tests should be happy now 2019-10-04 17:22:32 +02:00
cve_advanced.py fix: [cve_advanced] Some CVEs are not in CWE format but in NVD-CWE-Other 2021-04-08 19:14:13 +02:00
cytomic_orion.py fix: Fixed pep8 + some copy paste issues introduced with the latest commits 2020-07-28 15:06:25 +02:00
dbl_spamhaus.py fix: Catching results exceptions properly 2019-10-08 15:48:26 +02:00
dns.py fix: Make pep8 happy 2018-12-11 15:29:09 +01:00
docx_enrich.py fix: Fixed module names with - to avoid errors with python paths 2019-10-18 11:09:10 +02:00
domaintools.py fix: added note about the Domaintools module being deprecated 2021-09-09 13:57:29 +02:00
eql.py Removed extraneous comments and unused imports 2019-10-30 15:44:47 +00:00
eupi.py Fix typo 2016-09-15 15:32:13 +02:00
farsight_passivedns.py Updated Distribution Constant 2021-05-12 21:42:25 +05:30
geoip_asn.py Update geoip_asn.py 2020-02-12 23:48:38 -06:00
geoip_city.py Update geoip_city.py 2020-02-12 23:48:20 -06:00
geoip_country.py fix: Making the module config available so the module works 2020-02-13 11:40:22 +01:00
google_search.py fix: Making pep8 happy 2021-03-18 19:22:26 +01:00
greynoise.py add cve support and enhance ip lookups 2021-08-09 15:37:37 -04:00
hashdd.py fix: Grouped two if conditions to avoid issues with variable unassigned if the second condition is not true 2019-10-13 20:23:02 +02:00
hashlookup.py fix: [hashlookup] typo fixed 2021-12-18 17:11:06 +01:00
hibp.py fix: [hibp] Fixed config handling to avoir KeyError exceptions 2021-04-14 16:52:55 +02:00
html_to_markdown.py new: [expansion] Added html_to_markdown module 2020-10-23 22:17:47 +02:00
intel471.py new: Intel471 module 2018-12-11 13:30:52 +01:00
intelmq_eventdb.py.experimental Make sure misp-modules can be launched from anywhere 2016-06-23 19:51:13 +09:00
ipasn.py add: Specific error message for misp_standard format expansion modules 2020-07-28 11:47:53 +02:00
iprep.py fix: Make pep8 happy 2018-12-11 15:29:09 +01:00
joesandbox_query.py add: Specific error message for misp_standard format expansion modules 2020-07-28 11:47:53 +02:00
joesandbox_submit.py add expansion for joe sandbox 2019-05-21 21:14:21 +02:00
lastline_query.py add vmware_nsx module 2021-07-29 12:13:31 +01:00
lastline_submit.py add vmware_nsx module 2021-07-29 12:13:31 +01:00
macaddress_io.py fix: [expansion] Better config field handling for various modules 2019-10-30 09:09:55 +01:00
macvendors.py chg: Taking into consideration if a user agent is specified in the module configuration 2019-10-15 11:25:30 +02:00
malwarebazaar.py add: Specific error message for misp_standard format expansion modules 2020-07-28 11:47:53 +02:00
mcafee_insights_enrich.py Create mcafee_insights_enrich.py 2021-08-13 14:55:08 +02:00
module.py.skeleton - Removed test modules from view 2018-07-03 08:27:54 +02:00
mwdb.py Module to push malware samples to a MWDB instance 2021-12-26 23:34:00 +01:00
ocr_enrich.py fix: [ocr_enrich] Making Pep8 happy 2021-04-15 16:41:15 +02:00
ods_enrich.py fix: [ods_enrich] Try to fix reading bytesio 2021-12-24 16:48:24 +01:00
odt_enrich.py fix: Fixed module names with - to avoid errors with python paths 2019-10-18 11:09:10 +02:00
onyphe.py fix bug on loop 2021-05-07 14:38:42 +02:00
onyphe_full.py fix: [expansion] Better config field handling for various modules 2019-10-30 09:09:55 +01:00
otx.py fix: Make pep8 happy 2018-12-11 15:29:09 +01:00
passive-ssh.py add: [passive-ssh] initial commit 2021-10-26 15:11:20 +02:00
passivetotal.py fix: Better exceptions handling on the passivetotal module 2019-10-31 17:18:23 +01:00
pdf_enrich.py fix: Fixed module names with - to avoid errors with python paths 2019-10-18 11:09:10 +02:00
pptx_enrich.py fix: Fixed module names with - to avoid errors with python paths 2019-10-18 11:09:10 +02:00
qintel_qsentry.py feature: add qintel qsentry expansion module 2021-11-22 15:46:46 -05:00
qrcode.py brackets are difficult... 2019-04-23 15:40:22 +02:00
ransomcoindb.py fix: Fixed pep8 + some copy paste issues introduced with the latest commits 2020-07-28 15:06:25 +02:00
rbl.py chg: [rbl] Added a timeout parameter to change the resolver timeout & lifetime if needed 2021-04-16 22:00:27 +02:00
recordedfuture.py Update Recorded future expansion module with the new data 2021-10-25 18:01:05 +03:00
reversedns.py fix: Make pep8 happy 2018-12-11 15:29:09 +01:00
securitytrails.py fix: More clarity on the exception raised on the securitytrails module 2019-10-31 17:19:42 +01:00
shodan.py fix: Making pep8 happy 2020-08-28 17:30:23 +02:00
sigma_queries.py fix: Fixed list of sigma backends 2020-07-03 10:10:24 +02:00
sigma_syntax_validator.py fix: Change in the imports 2019-01-21 14:06:38 +01:00
socialscan.py add: Added documentation for the socialscan new module 2020-10-02 17:01:02 +02:00
sophoslabs_intelix.py fix: Fixed pep8 2020-07-28 15:23:24 +02:00
sourcecache.py Make sure misp-modules can be launched from anywhere 2016-06-23 19:51:13 +09:00
stix2_pattern_syntax_validator.py fix: Fixed pattern parsing + made the module hover only 2019-10-07 16:46:32 +02:00
threatcrowd.py fix: Make pep8 happy 2018-12-11 15:29:09 +01:00
threatfox.py fix: Making pep8 happy 2021-03-18 19:22:26 +01:00
threatminer.py fix: Making pep8 happy 2019-10-17 10:45:51 +02:00
trustar_enrich.py added more explicit error messages for indicators that return no enrichment data 2020-12-04 11:59:57 -08:00
urlhaus.py add: Specific error message for misp_standard format expansion modules 2020-07-28 11:47:53 +02:00
urlscan.py fix: Making urlscan module available in MISP for ip attributes 2019-10-30 16:39:07 +01:00
virustotal.py chg: [virustotal] make flake8 happy 2021-06-11 14:51:30 +02:00
virustotal_public.py chg :[virustotal_public] make flake8 happy 2021-06-11 14:54:07 +02:00
vmray_submit.py Corrected VMray rest API import 2021-01-04 15:27:47 -06:00
vmware_nsx.py Sanity checks 2021-08-12 11:08:09 +01:00
vulndb.py fix: Make pep8 happy 2018-12-11 15:29:09 +01:00
vulners.py fix: Fixed config parsing + results parsing 2019-10-31 11:48:59 +01:00
whois.py fix: Fixed config parsing and the associated error message 2019-10-31 11:52:34 +01:00
wiki.py fix: Handling cases where there is no result from the query 2019-10-08 13:28:23 +02:00
xforceexchange.py add: Specific error message for misp_standard format expansion modules 2020-07-28 11:47:53 +02:00
xlsx_enrich.py fix: Fixed module names with - to avoid errors with python paths 2019-10-18 11:09:10 +02:00
yara_query.py fix: [yara_query] Fixed module input parsing 2021-10-15 17:18:29 +02:00
yara_syntax_validator.py fix: Make pep8 happy 2018-12-11 15:29:09 +01:00
yeti.py fix typo 2021-04-21 18:15:16 +02:00