A plugin to enable indicators to be submitted to CIFv3 in real-time
Project description
Threat Bus CIFv3 Plugin
A Threat Bus plugin that enables communication to Collective Intelligence Framework v3.
Installation
pip install threatbus-cif3
Configuration
The plugin uses the cifsdk python client to submit indicators received on the threatbus into a CIF instance.
...
plugins:
cif3:
api:
host: http://cif.host.tld:5000
ssl: false
token: CIF_TOKEN
group: everyone
confidence: 7.5
tlp: amber
tags:
- test
- malicious
...
Development Setup
The following guides describe how to set up local, dockerized instances of MISP.
Dockerized CIFv3
Use dockerized CIFv3 to set up a local CIFv3 environment:
Setup a CIFv3 docker container
git clone https://github.com/sfinlon/cif-docker.git
cd cif-docker
docker-compose build
Edit the docker-compose.yml
vim docker-compose.yml
Find the section cif
in the configuration and edit the following as appropriate:
cif:
...
ports:
- "5000:5000"
...
Start the container
docker-compose up -d
# get an interactive shell
docker-compose exec cif /bin/bash
# become the cif user
su cif
# check to see if access tokens were successfully created
cif-tokens
# ping the router to ensure connectivity
cif --ping
License
Threat Bus comes with a 3-clause BSD license.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Close
Hashes for threatbus-cif3-2020.12.16.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | 9fe67c31a316c996888313ef38d397cdac23ba72ac46c6c0d9a494daf3941b0b |
|
MD5 | fd48493d9ca897eb6f77d946a7adf053 |
|
BLAKE2b-256 | 5e1e5711c2f3b56d9043b68b6a21b2b1375cd35133263279a9ff5bc056f031c6 |
Close
Hashes for threatbus_cif3-2020.12.16-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 52a4ba4bc79df03e0a467c6bcc54f446507e4a17971707475b40b4ccfcd32081 |
|
MD5 | abf42aa069eeaff596e79c70e27cdcb6 |
|
BLAKE2b-256 | 8d8a1a2adba83cca45c3ede03975eb7470f5a00852b1c5bbba92e34fa7cc36b7 |