-
Notifications
You must be signed in to change notification settings - Fork 45
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support for abuseIPDB #70
Conversation
@zbalkan thanks for the PR. Pretty cool! Looking forward to your changes. I'm a bit swamped this week but will review as soon as I can. Can you also share a preview screenshot of what the abuseIPDB section will look like? Thanks! |
Btw, to run the tests locally you will need the
You can also run each test separately: Lint:
Typechecking:
Actual tests:
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@zbalkan just finished my initial review. Apologies for the multiple syntax/formatting changes. I didn't think anyone would actually contribute code here so I never got around to autoformatting and style guides yet 😅. But thanks for taking the time and putting up with my messy code!
I did the changes requested. Yet, I need to fix the tests. I may need some guidance there. |
Since there are no "Discussions" section, I'd like to ask here. I see that there are two types of data collected, the metadata on IP or domain -aka whois- and reputation.
Wouldn't it be nice to categorize them based on those? Though PT reputation endpoint may put it in both categories just like VT. Currently, the term "enrichment" is used yet it does not add much semantically. |
@zbalkan sorry for the late reply, weekdays are usually busy. I will try to review tomorrow and help with the tests. Thank you for the changes! |
Good call out. Technically, these are all enrichments anyway. I like the categorization, but I wonder if there's a better term to describe the non-reputation data other than "whois" (though, I'm not opposed to the term). |
Well, I agree with "whois" not being a good term. I just wanted to put things in a frame. You can call it any term you want. I thought of "basics" and "metadata" but didn't like it. So I kept it that way. I agree that they are all enrichments, the ownership is a matter of registration and static while reputation is a collective measure from multiple reports and security products and dynamic. The nature of the data is different. I wanted to point out the nuance. |
@zbalkan I will go ahead and merge this. Appreciate all the work here, thank you! This will be included in the next release - just give me another week or so to write additional tests and include some tweaks not related to this. |
Thanks for the comment. I'm glad I did some contribution to the tool I almost used daily. I found out that the documentation must be improved a little bit more. I have added the enrichment section, but the main screenshot and the animated GIF are the same. I hesitated to touch that. Also, the |
@zbalkan sorry again for the late response. Yes, would appreciate the update to the README! I haven't gotten around to writing the additional tests yet, unfortunately. If you do have extra time, do you want to give it a shot? I can give you some instructions on what to add. Thanks! |
Just tell me what I can do. I'll try to find some time. |
Currently failing some tests unrelated to abuseIPDB -it seems. When everything is fixed, I will update the documentation too.