Karton service that uploads analyzed artifacts and metadata to MWDB Core
Project description
Reporter karton service
Uploads samples and static configs to malwaredb
Author: CERT.pl
Maintainers: psrok1, nazywam
Consumes:
{
"type": "sample",
"stage": "recognized" || "analyzed" || "unrecognized"
},
{
"type": "config"
},
{
"type": "blob"
}
Produces:
(nothing)
Usage
First of all, make sure you have setup the core system: https://github.com/CERT-Polska/karton
Modify your karton.ini config to include information about your mwdb-core instance and reporter credentials:
[mwdb]
api_url = http://mwdb.my-awesome-org/api/
api_key = eyJhYWF....
Instead of providing api_key you can also use username/password but password-authenticated sessions are short-lived and service will need to re-auth from time to time.
Then install karton-mwdb-reporter from PyPi:
$ pip install karton-mwdb-reporter
$ karton-mwdb-reporter
Configuration
Using the --report-unrecognized flag you specify whether the reporter should upload files unrecognized by the classifier. You can also configure this using the built-in configuration backend by either adjusting it in the karton.ini
[mwdb-reporter]
report_unrecognized=true
or setting the environmental variable like so KARTON_MWDB-REPORTER_REPORT_UNRECOGNIZED=true.
To learn more about configuring your karton services, take a look at karton configuration docs
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distributions
Built Distribution
Hashes for karton_mwdb_reporter-1.3.0-py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 3666d6c9a0c15584136f4dd64d50071045bff81e1037f6db559c2e7ec3824a1e |
|
| MD5 | 4f958d6ad08c68f172fa6a600b6c5103 |
|
| BLAKE2b-256 | 5b2e56a55905592407706db248685ddcffd02403dce202cc89c9131b3b0ca050 |
