Set of utilities to parse and use MISP galaxy clusters

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for ostefano from gravatar.com ostefano

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: BSD License
  • Author: Stefano Ortolani
  • Requires: Python >=3.9
Classifiers

Project description

Galaxy Parser for MISP

Utilities to parse galaxy clusters and resolve labels (including synonyms).

There is some string normalization (whitespace removal and compound words handling) that can be improved, but anything domain-specific is computed using MISP galaxies.

./bin/query_galaxy.py sednit -g mitre-intrusion-set 
> Mapping 'sednit' to:  ['misp-galaxy:mitre-intrusion-set="APT28 - G0007"']

./bin/query_galaxy.py apt28 -g mitre-intrusion-set 
> Mapping 'apt28' to:  ['misp-galaxy:mitre-intrusion-set="APT28 - G0007"']

./bin/query_galaxy.py feodo -g malpedia
> Mapping 'feodo' to:  ['misp-galaxy:malpedia="Emotet"']

./bin/query_galaxy.py emotet -g malpedia
> Mapping 'emotet' to:  ['misp-galaxy:malpedia="Emotet"']

Install

This package is available on PyPI and it can be installed with pip:

pip install misp-galaxy-manager

Contributing

The galaxy-parser-for-misp project team welcomes contributions from the community. Before you start working with galaxy-parser-for-misp, please read our Developer Certificate of Origin. All contributions to this repository must be signed as described on that page. Your signature certifies that you wrote the patch or have the right to pass it on as an open-source patch. For more detailed information, refer to CONTRIBUTING.md.

License

BSD 2-Clause

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for ostefano from gravatar.com ostefano

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: BSD License
  • Author: Stefano Ortolani
  • Requires: Python >=3.9
Classifiers

Release history Release notifications | RSS feed

0.1.5

0.1.4

0.1.3

0.1.2

This version

0.1.1

0.1.0

0.0.6

0.0.5

0.0.4

0.0.3

0.0.2

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

misp-galaxy-parser-0.1.1.tar.gz (12.8 kB view details)

Uploaded Source

Built Distribution

misp_galaxy_parser-0.1.1-py3-none-any.whl (14.1 kB view details)

Uploaded Python 3

File details

Details for the file misp-galaxy-parser-0.1.1.tar.gz.

File metadata

  • Download URL: misp-galaxy-parser-0.1.1.tar.gz
  • Upload date:
  • Size: 12.8 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/4.0.2 CPython/3.9.16

File hashes

Hashes for misp-galaxy-parser-0.1.1.tar.gz
Algorithm Hash digest
SHA256 4a4c0d28c93c80f83304bea44e33b7274c9fa660585409104481f2f469733d42
MD5 07d04f8b46a87554a337f26211532c5e
BLAKE2b-256 0d3fd14ac24228cac82b6148c4d68f7aa72ea8ab967175dfe3508ddaa33d92df

See more details on using hashes here.

File details

Details for the file misp_galaxy_parser-0.1.1-py3-none-any.whl.

File metadata

File hashes

Hashes for misp_galaxy_parser-0.1.1-py3-none-any.whl
Algorithm Hash digest
SHA256 5ce09fb954097441a3398b96b29a0965404a72e198b7fa85ad8df5572b589b6e
MD5 ba5ebf9bbde2cfd215ae5c305156ff4c
BLAKE2b-256 d775e5069f7143287a8dfac5f2ce480e0df148a2945825fd965cfb331adb4e69

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page