Cortex4py is a Python API client for Cortex, a powerful observable analysis engine where observables such as IP and email addresses, URLs, domain names, files or hashes can be analyzed one by one using a Web interface.
Cortex4py allows analysts to automate these operations and submit observables in bulk mode through the Cortex REST API from alternative SIRP platforms, custom scripts or MISP.
Cortex4py 2 is compatible with Cortex 2 and does not work with Cortex 1. It can:
- Manage organizations
- Manage users
- Configure analyzers within an organization
- List and launch analyzers
For more details, please refer to the full documentation.
Note: Cortex4py 2 requires Python 3. It does not support Python 2.
On macOS and Linux, type:
sudo -H pip3 install cortex4py
or, if you already have it, update it:
sudo -H pip3 install -U cortex4py
If you are using Python on a Windows operating system, please forgo the sudo
command.
Cortex4py is an open source and free software released under the AGPL (Affero General Public License). We, TheHive Project, are committed to ensure that Cortex4py will remain a free and open source project on the long-run.
Information, news and updates are regularly posted on TheHive Project Twitter account and on the blog.
We welcome your contributions. Please feel free to fork the code, play with it, make some patches and send us pull requests using issues.
We do have a Code of conduct. Make sure to check it out before contributing.
Please open an issue on GitHub if you'd like to report a bug or request a feature. We are also available on Discord to help you out.
If you need to contact the project team, send an email to support@thehive-project.org.
We have set up a Google forum at https://groups.google.com/a/thehive-project.org/d/forum/users. To request access, you need a Google account. You may create one using a Gmail address or without one.