assemblyline-v4-service 4.7.0.dev25__py3-none-any.whl → 4.7.0.dev38__py3-none-any.whl

assemblyline_v4_service/VERSION

@@ -1 +1 @@
-4.7.0.dev25
+4.7.0.dev38

assemblyline_v4_service/common/result.py

@@ -567,6 +567,9 @@ class SandboxProcessItem:
         # The timestamp when the process started (ISO 8601 format).
         start_time: str,
 
+        # Name of the sources who identified this information
+        sources: Optional[List[str]] = [],
+
         # The parent process ID (PPID).
         ppid: Optional[int] = None,
 
@@ -599,6 +602,7 @@ class SandboxProcessItem:
     ):
         self.image = image or "<unknown_image>"
         self.start_time = start_time
+        self.sources = sources or []
         self.ppid = ppid
         self.pid = pid
         self.command_line = command_line
@@ -614,6 +618,7 @@ class SandboxProcessItem:
         return {
             "image": self.image,
             "start_time": self.start_time,
+            "sources": self.sources,
             "ppid": self.ppid,
             "pid": self.pid,
             "command_line": self.command_line,
@@ -762,6 +767,9 @@ class SandboxNetflowItem:
         # The process ID that initiated or owned the network connection.
         process: Optional[int] = None,
 
+        # Name of the sources who identified this information
+        sources: Optional[List[str]] = [],
+
         # The source IP address of the connection.
         source_ip: Optional[str] = None,
 
@@ -788,6 +796,7 @@ class SandboxNetflowItem:
         self.transport_layer_protocol = transport_layer_protocol
         self.direction = direction
         self.process = process
+        self.sources = sources or []
         self.source_ip = source_ip
         self.source_port = source_port
         self.time_observed = time_observed
@@ -803,6 +812,7 @@ class SandboxNetflowItem:
             "transport_layer_protocol": self.transport_layer_protocol,
             "direction": self.direction,
             "process": self.process,
+            "sources": self.sources,
             "source_ip": self.source_ip,
             "source_port": self.source_port,
             "time_observed": self.time_observed,
@@ -853,12 +863,15 @@ class SandboxSignatureItem:
         # The name of the detection signature.
         name: str,
 
-        # The source type of the signature (e.g., "CUCKOO", "YARA", "SIGMA", "SURICATA").
-        type: Literal["CUCKOO", "YARA", "SIGMA", "SURICATA"],
+        # The source type of the signature (e.g., "CAPE", "CUCKOO").
+        type: Literal["CAPE", "CUCKOO"],
 
         # The classification of the signature (e.g., "malicious", "benign").
         classification: str,
 
+        # Name of the sources who identified this information
+        sources: Optional[List[str]] = [],
+
         # The list of ATT&CK patterns or related attack metadata linked to this signature.
         attacks: Optional[List[SandboxAttackItem]] = None,
 
@@ -880,6 +893,7 @@ class SandboxSignatureItem:
         self.name = name
         self.type = type
         self.classification = classification
+        self.sources = sources or []
         self.attacks = attacks or []
         self.actors = actors or []
         self.malware_families = malware_families or []
@@ -891,6 +905,7 @@ class SandboxSignatureItem:
         return {
             "name": self.name,
             "type": self.type,
+            "sources": self.sources,
             "classification": self.classification,
             "attacks": [a.as_primitives() for a in self.attacks] if self.attacks else [],
             "actors": self.actors,

{assemblyline_v4_service-4.7.0.dev25.dist-info → assemblyline_v4_service-4.7.0.dev38.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: assemblyline-v4-service
-Version: 4.7.0.dev25
+Version: 4.7.0.dev38
 Summary: Assemblyline 4 - Service base
 Home-page: https://github.com/CybercentreCanada/assemblyline-v4-service/
 Author: CCCS Assemblyline development team

{assemblyline_v4_service-4.7.0.dev25.dist-info → assemblyline_v4_service-4.7.0.dev38.dist-info}/RECORD

@@ -1,4 +1,4 @@
-assemblyline_v4_service/VERSION,sha256=86rnx2n5DlVlISBAT0O8ZIOeE-g_gwhj06QGH74PUGQ,12
+assemblyline_v4_service/VERSION,sha256=3jBiKsASK7yW9H9DH7D1qAFy9bOG0dQEVX7-UPdB2OI,12
 assemblyline_v4_service/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 assemblyline_v4_service/healthz.py,sha256=2Xu9NAQwrb_0mIMgNmpppDvYYq3HYz-ofLIv4tGP8Ns,1406
 assemblyline_v4_service/py.typed,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -10,7 +10,7 @@ assemblyline_v4_service/common/helper.py,sha256=xs9quuf-M1JOdKieBqOmWaOece0CtzXF
 assemblyline_v4_service/common/ocr.py,sha256=NgkFqAq2lRzIveYUulKJmiiWYqwf4siYbL59n1Ow02o,8350
 assemblyline_v4_service/common/ontology_helper.py,sha256=XxZ488-B7fCP4cMSMfeflzTG_cSQ3GwfH0nM_7enCiY,8496
 assemblyline_v4_service/common/request.py,sha256=Okj7X7MlNPTGitiQpuMMACsDsrgOd33ajWbIiFNXEjk,11729
-assemblyline_v4_service/common/result.py,sha256=rnjJJCZnXU2lmZwWoLIQwWGKa4l-Zx5NkT5lXyJfMa4,54924
+assemblyline_v4_service/common/result.py,sha256=UoEP4SETYGjdzmEKpsIc1UWniYOlzsMPihIglmYPQ9w,55422
 assemblyline_v4_service/common/task.py,sha256=yTNdQ3C07g3zzK3fxDdOeeZknn_SUBNPAbRLwFZsrzc,14168
 assemblyline_v4_service/common/utils.py,sha256=FDFsFcI6wt-pWyeQYnDWivsPbtme5RqVyofmNiggh6Y,3922
 assemblyline_v4_service/dev/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -23,7 +23,7 @@ assemblyline_v4_service/updater/client.py,sha256=tLY84gaGdFBVIDaMgRHIEa7x2S8jBl7
 assemblyline_v4_service/updater/gunicorn_config.py,sha256=p3j2KPBeD5jvMw9O5i7vAtlRgPSVVxIG9AO0DfN82J8,1247
 assemblyline_v4_service/updater/helper.py,sha256=OTV6WA77wBDOSVWaxijNg-HpwvEwnZozH03S3Q4oUns,10764
 assemblyline_v4_service/updater/updater.py,sha256=XiqabDp89-t_J6C3U33R-RvA5lMIahFW_MsAVUGyXok,31876
-assemblyline_v4_service-4.7.0.dev25.dist-info/licenses/LICENCE.md,sha256=NSkYo9EH8h5oOkzg4VhjAHF4339MqPP2cQ8msTPgl-c,1396
+assemblyline_v4_service-4.7.0.dev38.dist-info/licenses/LICENCE.md,sha256=NSkYo9EH8h5oOkzg4VhjAHF4339MqPP2cQ8msTPgl-c,1396
 test/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 test/conftest.py,sha256=W3SieQpZsZpGEmtLqY4aIlxREDSsHceyCrFcFsWUM0U,1851
 test/test_healthz.py,sha256=DkeLUlrb7rGx3nZ04aADU9HXXu5mZTf_DBwT0xhzIv4,7
@@ -39,7 +39,7 @@ test/test_common/test_request.py,sha256=HiDU1n4Rjso_U0qDME4ohA_9j7rpfqLSD1-e2Rfq
 test/test_common/test_result.py,sha256=ZtLUddBDA_BTIjG3Jasbq78_AdEjCRe4cb85XLBwH5o,43585
 test/test_common/test_task.py,sha256=P44mNcSe-3tJgDk9ppN3KbM7oN4LBVIuhONG-Gveh74,19007
 test/test_common/test_utils.py,sha256=TbnBxqpS_ZC5ptXR9XJX3xtbItD0mTbtiBxxdyP8J5k,5904
-assemblyline_v4_service-4.7.0.dev25.dist-info/METADATA,sha256=WiWDzeRFZ7tNT7MunyO5y73UTKHxbnqJHpp6l0Re2dk,5624
-assemblyline_v4_service-4.7.0.dev25.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
-assemblyline_v4_service-4.7.0.dev25.dist-info/top_level.txt,sha256=LpTOEaVCatkrvbVq3EZseMSIa2PQZU-2rhuO_FTpZgY,29
-assemblyline_v4_service-4.7.0.dev25.dist-info/RECORD,,
+assemblyline_v4_service-4.7.0.dev38.dist-info/METADATA,sha256=pGjEX76nSl61ebIDf4aCnt9zWaNfU-orHxt2wGKjY3k,5624
+assemblyline_v4_service-4.7.0.dev38.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
+assemblyline_v4_service-4.7.0.dev38.dist-info/top_level.txt,sha256=LpTOEaVCatkrvbVq3EZseMSIa2PQZU-2rhuO_FTpZgY,29
+assemblyline_v4_service-4.7.0.dev38.dist-info/RECORD,,