Skip to content

Release 0.9.4

Compare
Choose a tag to compare
@cedricbonhomme cedricbonhomme released this 30 Oct 07:51
· 30 commits to master since this release
v0.9.4
bf3485b

Changes

  • [MISP lookup] The SHA1 values are now submitted in a single query;
  • [MISP lookup] A new argument lets the user specify if the final output must be returned as a list of PyMISP Objects instead of the plain json output;
  • [MISP lookup] Added possibility to specify the return format (json, stix2, csv, etc.);
  • [core] Errors are always displayed, even in non-verbose mode.

Example

$ pyhids misp --help
usage: pyhids misp [-h] [--pythonify] [--return-format {openioc,json,xml,suricata,snort,text,rpz,csv,cache,stix-xml,stix,stix2,yara,yara-json,attack,attack-sightings,context,context-markdown}]

options:
  -h, --help            show this help message and exit
  --pythonify           Returns a list of PyMISP Objects instead of the plain json output.
  --return-format {openioc,json,xml,suricata,snort,text,rpz,csv,cache,stix-xml,stix,stix2,yara,yara-json,attack,attack-sightings,context,context-markdown}
                        Set the return format of the search.

$ pyhids misp --pythonify
[<MISPAttribute(type=filename|sha1, value=df3f35df7d529b38e524275bee0672cb|da39a3ee5e6b4b0d3255bfef95601890afd80709), <MISPAttribute(type=filename|sha1, value=sT2kYW.exe|da39a3ee5e6b4b0d3255bfef95601890afd80709),]