cyjax-cti provides a Python library to use Cyjax platform API.
Project description
Introduction
cyjax-cti
is a Python library to use Cyjax platform API. You can access different resources (incident reports,
threat actors, indicators of compromise, etc.) from a Python script.
The library is available on Python Package Index.
Install
You can install the cyjax-cti
library with pip:
pip install cyjax-cti
Supported resources
Resource class | Methods |
---|---|
Dashboard | list, list_widgets, get_table_widget, get_mitre_widget, get_metric_widget, get_map_widget, get_counter_widget |
DataBreach | one, list |
IncidentReport | one, list |
IndicatorOfCompromise | list, enrichment |
LeakedEmail | one, list, search |
MaliciousDomain | list |
Paste | one, list |
SocialMedia | one, list |
Supplier | create, delete, one, list, update |
TailoredReport | one, list |
ThreatActor | list |
Tier | list |
TorExitNode | one, list |
Tweet | list |
Examples
Set the API key
import cyjax
# set a global API key
cyjax.api_key = "346568ecf85f0b5ca98f389908e8b803"
# set a resource API key
cyjax.IndicatorOfCompromise(api_key="346568ecf85f0b5ca98f389908e8b803")
Get indicators of compromise in the last 5 minutes
import cyjax
from datetime import timedelta
cyjax.api_key = "346568ecf85f0b5ca98f389908e8b803"
indicators = cyjax.IndicatorOfCompromise().list(since=timedelta(minutes=5))
for indicator in indicators:
print(indicator)
Get APT activity in last 6 months
import cyjax
from datetime import timedelta
cyjax.api_key = "346568ecf85f0b5ca98f389908e8b803"
reports = cyjax.IncidentReport().list(query="APT", since=timedelta(days=30*6))
for report in reports:
print("Title: {}" % report['title'])
print("Severity: {}" % report['severity'])
print("Timestamp: {}" % report['last_update'])
Get leaked emails in the last 30 days
import cyjax
from datetime import timedelta
cyjax.api_key = "346568ecf85f0b5ca98f389908e8b803"
for leaked_email in cyjax.LeakedEmail().list(since=timedelta(days=30)):
print("Email: {}" % leaked_email['email'])
print("Source: {}" % leaked_email['source'])
print("Timestamp: {}" % leaked_email['discovered_at'])
Get incident report by ID
import cyjax
cyjax.api_key = "346568ecf85f0b5ca98f389908e8b803"
incident_report = cyjax.IncidentReport().one(10)
print("Report title: {}" % incident_report.get('title'))
print("Report severity: {}" % incident_report.get('severity'))
print("Report content: {}" % incident_report.get('content'))
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
cyjax-cti-2.0.1.tar.gz
(46.3 kB
view hashes)
Built Distribution
cyjax_cti-2.0.1-py3-none-any.whl
(86.7 kB
view hashes)
Close
Hashes for cyjax_cti-2.0.1-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 45c87962ff26606f5539625b686af54d66262b0ff8067e8c1bd1b7f7a43db8bb |
|
MD5 | 14c5006212d0e1e85a337d1011cd312b |
|
BLAKE2b-256 | 994a40b3992b6fb0e9468844e9b16f63192eabca896a11cbb24b9ce956efcea5 |