Parse data using simple YAML and throw it just about anywhere.
$ [sudo] pip install csirtg-smrt
$ curl https://raw.githubusercontent.com/csirtgadgets/csirtg-smrt-py/master/examples/csirtg.yml > csirtg.yml
$ csirtg-smrt -r csirtg.yml -f port-scanners --format table|csv|bro
017-04-12 12:22:26,244 - INFO - csirtg_smrt.smrt[416] - loglevel is: INFO
2017-04-12 12:22:26,244 - INFO - csirtg_smrt.smrt[116] - processing csirtg.yml
2017-04-12 12:22:26,251 - INFO - csirtg_smrt.smrt[315] - processing: csirtg.yml - csirtg.io:port-scanners
+-------+----------+----------------------------+-----------------+-------+------------+---------+----------------------------------+-------+-----------+
| tlp | group | lasttime | indicator | count | confidence | tags | description | rdata | provider |
+-------+----------+----------------------------+-----------------+-------+------------+---------+----------------------------------+-------+-----------+
| white | everyone | 2017-04-12T16:22:06.00000Z | 59.27.82.202 | 1 | 9.0 | scanner | sourced from firewall logs (in.. | | csirtg.io |
| white | everyone | 2017-04-12T16:21:43.00000Z | 31.162.111.152 | 1 | 9.0 | scanner | sourced from firewall logs (in.. | | csirtg.io |
| white | everyone | 2017-04-12T16:20:29.00000Z | 5.238.33.0 | 1 | 9.0 | scanner | sourced from firewall logs (in.. | | csirtg.io |
...
There are many ways to get involved with the project. If you have a new and exciting feature, or even a simple bugfix, simply fork the repo, create some simple test cases, generate a pull-request and give yourself credit!
If you've never worked on a GitHub project, this is a good piece for getting started.
- the Wiki
- Known Issues
- How To Contribute
- Mailing List
- Need Advanced Help? Partner with us!
Copyright (C) 2018 CSIRT Gadgets Foundation
Free use of this software is granted under the terms of the Mozilla Public License (MPL2). For details see the file LICENSE included with the distribution.