Skip to content
This repository has been archived by the owner on Jun 17, 2023. It is now read-only.

csirtgadgets/csirtg-indicator-py-v2

Repository files navigation

Getting Started

A quick and easy way to generate threat indicator objects!

$ [sudo] pip install csirtg-indicator
$ csirtg-indicator --group everyone --indicator http://example.com/1.htm --tlp green --tags phishing
{
    "count": 1,
    "indicator": "http://example.com/1.htm",
    "itype": "url",
    "tags": [
        "phishing"
    ],
    "probability": "84",
    "confidence": 4,
    "tlp": "green",
    "uuid": "24423bab-c81f-4819-b9be-c3d9d975a835"
}

Goals

  • Reduce complexity of the previous framework
  • Improve documentation
  • Incorporate operations around indicators including feeds, indicator and meta-data detection
  • Introduce probability components into the basic format

Getting Involved

There are many ways to get involved with the project. If you have a new and exciting feature, or even a simple bugfix, simply fork the repo, create some simple test cases, generate a pull-request and give yourself credit!

If you've never worked on a GitHub project, this is a good piece for getting started.

COPYRIGHT AND LICENCE

Copyright (C) 2018 CSIRT Gadgets

Free use of this software is granted under the terms of the Mozilla Public License (MPL2). For details see the file LICENSE included with the distribution.