Skip to main content

A Python library for parsing and generating CybOX content.

Project description

A Python library for parsing, manipulating, and generating Cyber Observable eXpression (CybOX™) v2.1.0 content.

Source:

https://github.com/CybOXProject/python-cybox

Documentation:

https://cybox.readthedocs.io/

Information:

https://cyboxproject.github.io/

Download:

https://pypi.python.org/pypi/cybox/

Build Status Code Health Version

Overview

A primary goal of the python-cybox library is to remain faithful to both the CybOX standard and to customary Python practices. There are places where these will conflict, and the goal is to make the library intuitive both to those familiar with the XML schemas (but less familiar with Python) and also to experienced Python developers who want to add CybOX support to their programs.

There are currently two levels of APIs for dealing with CybOX content:

  • A low-level API is provided by auto-generated XML Schema - Python class bindings. These bindings were generated using generate_ds. With these, any CybOX content can be parsed from or written to XML, but requires a bit more knowledge of the actual CybOX schemas. These “binding classes” are all located in the cybox.bindings package.

  • A higher-level API consisting of manually designed Python classes. These “native classes” are intended to behave more like Python programmers would expect. As they are designed manually, they currently do not support the entire CybOX standard, but rather those object types we expect are used most frequently. These “native classes” also support exporting their content as Python dictionaries and lists, which can easily be converted to JSON. Importing from JSON is also supported.

Versioning

Releases of the python-cybox library will be given version numbers of the form major.minor.update.revision, where major, minor, and update correspond to the CybOX version being supported. The revision number is used to indicate new versions of the python-cybox library itself.

Installation

The cybox package depends on the following Python libraries:

  • lxml

  • python-dateutil

  • setuptools (only if installing using setup.py)

For Windows installers of the above libraries, we recommend looking here: http://www.lfd.uci.edu/~gohlke/pythonlibs/.

To build lxml on Ubuntu, you will need the following packages from the Ubuntu package repository:

  • python-dev

  • libxml2-dev

  • libxslt1-dev

  • zlib1g-dev

For more information about installing lxml, see http://lxml.de/installation.html.

Layout

The structure of the python-cybox repository is as follows:

  • cybox/ : the root package

  • examples/ : example scripts that leverage the python-cybox library

  • cybox/utils/ : utility modules that are leveraged internally by the python-cybox library

  • cybox/test/ : unit tests

  • cybox/bindings/ : generateDS created xml-to-python bindings (leveraged in parsing and output of CybOX XML content)

  • cybox/core/ : APIs for core CybOX constructs (e.g., Observables)

  • cybox/common/ : APIs for common CybOX constructs (e.g., Measure Source)

  • cybox/object/ : APIs for CybOX objects (e.g., File Object, Address Object)

Please refer to the example scripts for examples of how to use the python-cybox library.

Feedback

Bug reports and feature requests are welcome and encouraged. Pull requests are especially appreciated. Feel free to use the issue tracker on GitHub or send an email directly to cybox@mitre.org.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

cybox-2.1.0.21.tar.gz (510.3 kB view details)

Uploaded Source

Built Distribution

cybox-2.1.0.21-py2.py3-none-any.whl (780.9 kB view details)

Uploaded Python 2 Python 3

File details

Details for the file cybox-2.1.0.21.tar.gz.

File metadata

  • Download URL: cybox-2.1.0.21.tar.gz
  • Upload date:
  • Size: 510.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/1.12.1 pkginfo/1.4.2 requests/2.20.1 setuptools/44.0.0 requests-toolbelt/0.8.0 tqdm/4.28.1 CPython/2.7.17

File hashes

Hashes for cybox-2.1.0.21.tar.gz
Algorithm Hash digest
SHA256 8b12110180aceed0f85f8d6c1860a32a679c261f097d909384a81b3b73ff9716
MD5 8de0c6b5b610e92ecfb20454dd69afe9
BLAKE2b-256 166719479c7e065a50795a957f7f6a29eaf4c94fb3910241c9760869a63f8090

See more details on using hashes here.

File details

Details for the file cybox-2.1.0.21-py2.py3-none-any.whl.

File metadata

  • Download URL: cybox-2.1.0.21-py2.py3-none-any.whl
  • Upload date:
  • Size: 780.9 kB
  • Tags: Python 2, Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/1.12.1 pkginfo/1.4.2 requests/2.20.1 setuptools/44.0.0 requests-toolbelt/0.8.0 tqdm/4.28.1 CPython/2.7.17

File hashes

Hashes for cybox-2.1.0.21-py2.py3-none-any.whl
Algorithm Hash digest
SHA256 19a588bcdce8f3a088f7d5edd3e8862c11b701bb3d64257b18f3092deb9c3b7a
MD5 6ee509a55f06bd5403fffd5dd98b139d
BLAKE2b-256 c93e6e3fa450345836dadcbd07793e6429e06c11b5f93dfef28c7a1933d515a0

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page