Set of utilities to parse and use MISP galaxy clusters

These details have not been verified by PyPI

Project links

Development Status
- 3 - Alpha
Intended Audience
- Developers
License
- OSI Approved :: BSD License
Operating System
- OS Independent
Programming Language
- Python :: 3
Topic
- Security
- Software Development :: Libraries :: Python Modules

Project description

MISP Galaxy Parser

Utilities to parse galaxy clusters and resolve labels (including synonyms).

There is some string normalization (whitespace removal and compound words handling) that can be improved, but anything domain-specific is computed using MITRE galaxies.

./bin/query_galaxy.py -q sednit -g mitre-intrusion-set 
> Mapping 'sednit' to:  ['misp-galaxy:mitre-intrusion-set="APT28 - G0007"']

./bin/query_galaxy.py -q apt28 -g mitre-intrusion-set 
> Mapping 'apt28' to:  ['misp-galaxy:mitre-intrusion-set="APT28 - G0007"']

./bin/query_galaxy.py -q feodo -g malpedia
> Mapping 'feodo' to:  ['misp-galaxy:malpedia="Emotet"']

./bin/query_galaxy.py -q emotet -g malpedia
> Mapping 'emotet' to:  ['misp-galaxy:malpedia="Emotet"']

Project details

These details have not been verified by PyPI

Project links

Development Status
- 3 - Alpha
Intended Audience
- Developers
License
- OSI Approved :: BSD License
Operating System
- OS Independent
Programming Language
- Python :: 3
Topic
- Security
- Software Development :: Libraries :: Python Modules

Release history Release notifications | RSS feed

0.1.5

Mar 27, 2023

0.1.4

Jan 20, 2023

0.1.3

Dec 26, 2022

0.1.2

Dec 26, 2022

0.1.1

Dec 25, 2022

0.1.0

Dec 25, 2022

This version

0.0.6

Dec 18, 2022

0.0.5

Dec 16, 2022

0.0.4

Nov 30, 2022

0.0.3

Nov 16, 2022

0.0.2

Nov 15, 2022

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

misp-galaxy-parser-0.0.6.tar.gz (9.7 kB view details)

Uploaded Dec 18, 2022 Source

Built Distribution

misp_galaxy_parser-0.0.6-py3-none-any.whl (11.7 kB view details)

Uploaded Dec 18, 2022 Python 3

File details

Details for the file misp-galaxy-parser-0.0.6.tar.gz.

File metadata

Download URL: misp-galaxy-parser-0.0.6.tar.gz
Upload date: Dec 18, 2022
Size: 9.7 kB
Tags: Source
Uploaded using Trusted Publishing? No
Uploaded via: twine/4.0.2 CPython/3.9.16

File hashes

Hashes for misp-galaxy-parser-0.0.6.tar.gz
Algorithm	Hash digest
SHA256	`d1aec8edb2efdc10f9846ac205ce27673f8f49aa555d6112681510e4f42727ac`
MD5	`241e1bbb1807e39fbafe5c2e6a21fac3`
BLAKE2b-256	`48d39ad5adb2cacc65c84dba1257019b82324aa6f633f170fc0b58b5c78a732e`

See more details on using hashes here.

File details

Details for the file misp_galaxy_parser-0.0.6-py3-none-any.whl.

File metadata

Download URL: misp_galaxy_parser-0.0.6-py3-none-any.whl
Upload date: Dec 18, 2022
Size: 11.7 kB
Tags: Python 3
Uploaded using Trusted Publishing? No
Uploaded via: twine/4.0.2 CPython/3.9.16

File hashes

Hashes for misp_galaxy_parser-0.0.6-py3-none-any.whl
Algorithm	Hash digest
SHA256	`d2c9bacff5143cab126f50d1e5db7b5b37675181a757e4e357e0497650717b3b`
MD5	`6e98f4fce0b739f47d5f4558caca154c`
BLAKE2b-256	`6b99680e3027ca37c533a55555135d3fb1cf700ab7a720d66f5d75cd24da8278`