assemblyline 4.7.4.dev9__tar.gz → 4.7.4.1__tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (178) hide show
  1. {assemblyline-4.7.4.dev9/assemblyline.egg-info → assemblyline-4.7.4.1}/PKG-INFO +1 -1
  2. assemblyline-4.7.4.1/assemblyline/VERSION +1 -0
  3. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/constants.py +6 -0
  4. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/custom.magic +4 -0
  5. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/config.py +64 -10
  6. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/service.py +1 -2
  7. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/service_delta.py +2 -6
  8. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1/assemblyline.egg-info}/PKG-INFO +1 -1
  9. assemblyline-4.7.4.dev9/assemblyline/VERSION +0 -1
  10. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/LICENCE.md +0 -0
  11. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/MANIFEST.in +0 -0
  12. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/README.md +0 -0
  13. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/__init__.py +0 -0
  14. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/cachestore/__init__.py +0 -0
  15. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/__init__.py +0 -0
  16. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/archiving.py +0 -0
  17. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/attack_map.py +0 -0
  18. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/backupmanager.py +0 -0
  19. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/banner.py +0 -0
  20. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/bundling.py +0 -0
  21. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/caching.py +0 -0
  22. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/chunk.py +0 -0
  23. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/classification.py +0 -0
  24. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/classification.yml +0 -0
  25. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/cleanup_filestore.py +0 -0
  26. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/codec.py +0 -0
  27. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/comms.py +0 -0
  28. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/custom.yara +0 -0
  29. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/dict_utils.py +0 -0
  30. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/digests.py +0 -0
  31. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/dispatcher.py +0 -0
  32. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/entropy.py +0 -0
  33. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/exceptions.py +0 -0
  34. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/file.py +0 -0
  35. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/forge.py +0 -0
  36. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/heuristics.py +0 -0
  37. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/hexdump.py +0 -0
  38. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/identify.py +0 -0
  39. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/identify_defaults.py +0 -0
  40. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/importing.py +0 -0
  41. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/iprange.py +0 -0
  42. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/isotime.py +0 -0
  43. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/log.py +0 -0
  44. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/logformat.py +0 -0
  45. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/lucene.lark +0 -0
  46. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/memory_zip.py +0 -0
  47. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/metrics.py +0 -0
  48. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/net.py +0 -0
  49. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/net_static.py +0 -0
  50. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/null.py +0 -0
  51. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/path.py +0 -0
  52. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/postprocess.py +0 -0
  53. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/random_user.py +0 -0
  54. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/security.py +0 -0
  55. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/signaturing.py +0 -0
  56. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/str_utils.py +0 -0
  57. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/tag_safelist.yml +0 -0
  58. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/tagging.py +0 -0
  59. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/threading.py +0 -0
  60. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/uid.py +0 -0
  61. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/version.py +0 -0
  62. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/datasource/__init__.py +0 -0
  63. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/datasource/al.py +0 -0
  64. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/datasource/alert.py +0 -0
  65. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/datasource/common.py +0 -0
  66. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/datastore/__init__.py +0 -0
  67. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/datastore/bulk.py +0 -0
  68. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/datastore/collection.py +0 -0
  69. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/datastore/exceptions.py +0 -0
  70. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/datastore/helper.py +0 -0
  71. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/datastore/store.py +0 -0
  72. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/datastore/support/__init__.py +0 -0
  73. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/datastore/support/build.py +0 -0
  74. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/datastore/support/schemas.py +0 -0
  75. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/filestore/__init__.py +0 -0
  76. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/filestore/transport/__init__.py +0 -0
  77. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/filestore/transport/azure.py +0 -0
  78. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/filestore/transport/base.py +0 -0
  79. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/filestore/transport/ftp.py +0 -0
  80. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/filestore/transport/http.py +0 -0
  81. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/filestore/transport/local.py +0 -0
  82. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/filestore/transport/s3.py +0 -0
  83. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/filestore/transport/sftp.py +0 -0
  84. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/__init__.py +0 -0
  85. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/base.py +0 -0
  86. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/common.py +0 -0
  87. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/__init__.py +0 -0
  88. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/alert.py +0 -0
  89. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/alerter_heartbeat.py +0 -0
  90. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/archive_heartbeat.py +0 -0
  91. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/changes.py +0 -0
  92. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/dispatcher_heartbeat.py +0 -0
  93. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/dispatching.py +0 -0
  94. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/elastic_heartbeat.py +0 -0
  95. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/expiry_heartbeat.py +0 -0
  96. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/ingest_heartbeat.py +0 -0
  97. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/metrics.py +0 -0
  98. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/retrohunt_heartbeat.py +0 -0
  99. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/scaler_heartbeat.py +0 -0
  100. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/scaler_status_heartbeat.py +0 -0
  101. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/service_heartbeat.py +0 -0
  102. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/service_timing_heartbeat.py +0 -0
  103. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/submission.py +0 -0
  104. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/task.py +0 -0
  105. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/messages/vacuum_heartbeat.py +0 -0
  106. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/__init__.py +0 -0
  107. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/actions.py +0 -0
  108. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/alert.py +0 -0
  109. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/apikey.py +0 -0
  110. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/badlist.py +0 -0
  111. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/cached_file.py +0 -0
  112. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/emptyresult.py +0 -0
  113. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/error.py +0 -0
  114. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/file.py +0 -0
  115. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/filescore.py +0 -0
  116. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/heuristic.py +0 -0
  117. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/ontology/__init__.py +0 -0
  118. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/ontology/file.py +0 -0
  119. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/ontology/filetypes/__init__.py +0 -0
  120. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/ontology/filetypes/pe.py +0 -0
  121. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/ontology/ontology.py +0 -0
  122. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/ontology/results/__init__.py +0 -0
  123. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/ontology/results/antivirus.py +0 -0
  124. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/ontology/results/http.py +0 -0
  125. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/ontology/results/malware_config.py +0 -0
  126. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/ontology/results/network.py +0 -0
  127. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/ontology/results/process.py +0 -0
  128. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/ontology/results/sandbox.py +0 -0
  129. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/ontology/results/signature.py +0 -0
  130. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/replay.py +0 -0
  131. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/result.py +0 -0
  132. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/retrohunt.py +0 -0
  133. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/safelist.py +0 -0
  134. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/signature.py +0 -0
  135. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/statistics.py +0 -0
  136. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/submission.py +0 -0
  137. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/submission_summary.py +0 -0
  138. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/submission_tree.py +0 -0
  139. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/tagging.py +0 -0
  140. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/user.py +0 -0
  141. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/user_favorites.py +0 -0
  142. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/user_settings.py +0 -0
  143. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/workflow.py +0 -0
  144. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/random_data/__init__.py +0 -0
  145. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/random_data/create_test_data.py +0 -0
  146. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/random_data/sample_rules.yar +0 -0
  147. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/random_data/sample_suricata.rules +0 -0
  148. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/randomizer.py +0 -0
  149. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/py.typed +0 -0
  150. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/__init__.py +0 -0
  151. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/__init__.py +0 -0
  152. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/cache.py +0 -0
  153. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/counters.py +0 -0
  154. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/daily_quota_tracker.py +0 -0
  155. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/events.py +0 -0
  156. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/exporting_counter.py +0 -0
  157. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/hash.py +0 -0
  158. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/lock.py +0 -0
  159. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/queues/__init__.py +0 -0
  160. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/queues/comms.py +0 -0
  161. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/queues/multi.py +0 -0
  162. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/queues/named.py +0 -0
  163. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/queues/priority.py +0 -0
  164. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/set.py +0 -0
  165. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/remote/datatypes/user_quota_tracker.py +0 -0
  166. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/run/__init__.py +0 -0
  167. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/run/cli.py +0 -0
  168. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/run/pubsub_reader.py +0 -0
  169. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/run/suricata_importer.py +0 -0
  170. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/run/yara_importer.py +0 -0
  171. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline.egg-info/SOURCES.txt +0 -0
  172. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline.egg-info/dependency_links.txt +0 -0
  173. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline.egg-info/entry_points.txt +0 -0
  174. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline.egg-info/requires.txt +0 -0
  175. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline.egg-info/top_level.txt +0 -0
  176. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/pyproject.toml +0 -0
  177. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/setup.cfg +0 -0
  178. {assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/setup.py +0 -0
{assemblyline-4.7.4.dev9/assemblyline.egg-info → assemblyline-4.7.4.1}/PKG-INFO RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.4
2
2
  Name: assemblyline
3
- Version: 4.7.4.dev9
3
+ Version: 4.7.4.1
4
4
  Summary: Assemblyline 4 - Automated malware analysis framework
5
5
  Home-page: https://github.com/CybercentreCanada/assemblyline-base
6
6
  Author: CCCS Assemblyline development team
assemblyline-4.7.4.1/assemblyline/VERSION ADDED
@@ -0,0 +1 @@
1
+ 4.7.4.1
{assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/constants.py RENAMED
@@ -10,6 +10,12 @@ SCALER_TIMEOUT_QUEUE = 'scaler-timeout-queue'
10
10
  CONFIG_HASH = 'al-config'
11
11
  POST_PROCESS_CONFIG_KEY = 'post-process-actions'
12
12
  SERVICE_API_KEY_HASH = "dynamic-service-keys"
13
+ NOTIFICATION_QUEUE_PREFIX = 'nq-'
14
+
15
+
16
+ def notification_queue_name(user: str, name: str) -> str:
17
+ """Create a non-colliding queue name for a user's named notification queue."""
18
+ return NOTIFICATION_QUEUE_PREFIX + user.encode().hex().upper() + '-' + name
13
19
 
14
20
 
15
21
  # Some pure functions for getting queue lengths (effectively for appending/prepending constants to strings)
{assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/common/custom.magic RENAMED
@@ -24,6 +24,10 @@
24
24
  # Open XML files with Microsoft Word
25
25
  0 string
26
26
  >0 search/0x100 =<?mso-application\ progid="Word.Document"?> custom: document/office/word
27
+ # MSBuild Project Files
28
+ 0 string
29
+ >0 search/0x40 \<Project
30
+ >>&0 search/0x40 http://schemas.microsoft.com/developer/msbuild custom: code/xml/msbuild
27
31
  # VBE files
28
32
  0 string #@~^
29
33
  >&0 regex/9 \^[^=]{6}== custom: code/vbe
{assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/config.py RENAMED
@@ -3,10 +3,7 @@ from typing import Any, Dict, List
3
3
  from assemblyline import odm
4
4
  from assemblyline.common.constants import PRIORITIES
5
5
  from assemblyline.common.forge import get_classification
6
- from assemblyline.odm.models.service import (
7
- SUPPORTED_REGISTRY_TYPES,
8
- EnvironmentVariable,
9
- )
6
+ from assemblyline.odm.models.service import EnvironmentVariable
10
7
  from assemblyline.odm.models.service_delta import DockerConfigDelta
11
8
  from assemblyline.odm.models.submission import DEFAULT_SRV_SEL, ServiceSelection
12
9
 
@@ -116,6 +113,7 @@ class LDAP(odm.Model):
116
113
  enabled: bool = odm.Boolean(description="Should LDAP be enabled or not?")
117
114
  ip_filter: List[str] = odm.Optional(odm.List(odm.ValidatedKeyword(CIDR_REGEX)),
118
115
  description="List of CIDRs allowed to access internal authentication")
116
+ admin_dn: str = odm.Optional(odm.Keyword(), description="DN of the group or the user who will get admin privileges")
119
117
  bind_user: str = odm.Optional(odm.Keyword(), description="User use to query the LDAP server")
120
118
  bind_pass: str = odm.Optional(odm.Keyword(), description="Password used to query the LDAP server")
121
119
  auto_create: bool = odm.Boolean(description="Auto-create users if they are missing")
@@ -922,12 +920,20 @@ class RegistryConfiguration(odm.Model):
922
920
  description="Token server name to facilitate anonymous pull access")
923
921
 
924
922
 
923
+ @odm.model(index=False, store=False)
924
+ class InstallRequest(odm.Model):
925
+ name = odm.keyword()
926
+ image = odm.keyword()
927
+
928
+
925
929
  @odm.model(index=False, store=False)
926
930
  class Updater(odm.Model):
927
- job_dockerconfig: DockerConfigDelta = odm.Compound(
931
+ job_dockerconfig: DockerConfigDelta = odm.compound(
928
932
  DockerConfigDelta, description="Container configuration used for service registration/updates")
929
- registry_configs: List = odm.List(odm.Compound(RegistryConfiguration),
930
- description="Configurations to be used with container registries")
933
+ registry_configs = odm.sequence(odm.compound(RegistryConfiguration),
934
+ description="Configurations to be used with container registries")
935
+ auto_install = odm.sequence(odm.compound(InstallRequest),
936
+ description="Services to install automatically when the Updater starts.")
931
937
 
932
938
 
933
939
  DEFAULT_UPDATER = {
@@ -939,7 +945,54 @@ DEFAULT_UPDATER = {
939
945
  'registry_configs': [{
940
946
  'name': 'registry.hub.docker.com',
941
947
  'proxies': {}
942
- }]
948
+ }],
949
+ 'auto_install': [
950
+ {"name": "APIVector", "image": "${REGISTRY}cccs/assemblyline-service-apivector"},
951
+ {"name": "APKaye", "image": "${REGISTRY}cccs/assemblyline-service-apkaye"},
952
+ {"name": "AntiVirus", "image": "${REGISTRY}cccs/assemblyline-service-antivirus"},
953
+ {"name": "Ancestry", "image": "${REGISTRY}cccs/assemblyline-service-ancestry"},
954
+ {"name": "AVClass", "image": "${REGISTRY}cccs/assemblyline-service-avclass"},
955
+ {"name": "Badlist", "image": "${REGISTRY}cccs/assemblyline-service-badlist"},
956
+ {"name": "Batchdeobfuscator", "image": "${REGISTRY}cccs/assemblyline-service-batchdeobfuscator"},
957
+ {"name": "CAPA", "image": "${REGISTRY}cccs/assemblyline-service-capa"},
958
+ {"name": "CAPE", "image": "${REGISTRY}cccs/assemblyline-service-cape"},
959
+ {"name": "Characterize", "image": "${REGISTRY}cccs/assemblyline-service-characterize"},
960
+ {"name": "ConfigExtractor", "image": "${REGISTRY}cccs/assemblyline-service-configextractor"},
961
+ {"name": "deobfuscripter", "image": "${REGISTRY}cccs/assemblyline-service-deobfuscripter"},
962
+ {"name": "DocumentPreview", "image": "${REGISTRY}cccs/assemblyline-service-document-preview"},
963
+ {"name": "ELF", "image": "${REGISTRY}cccs/assemblyline-service-elf"},
964
+ {"name": "ELFPARSER", "image": "${REGISTRY}cccs/assemblyline-service-elfparser"},
965
+ {"name": "EmlParser", "image": "${REGISTRY}cccs/assemblyline-service-emlparser"},
966
+ {"name": "Espresso", "image": "${REGISTRY}cccs/assemblyline-service-espresso"},
967
+ {"name": "Extract", "image": "${REGISTRY}cccs/assemblyline-service-extract"},
968
+ {"name": "Floss", "image": "${REGISTRY}cccs/assemblyline-service-floss"},
969
+ {"name": "Frankenstrings", "image": "${REGISTRY}cccs/assemblyline-service-frankenstrings"},
970
+ {"name": "Intezer", "image": "${REGISTRY}cccs/assemblyline-service-intezer"},
971
+ {"name": "IPArse", "image": "${REGISTRY}cccs/assemblyline-service-iparse"},
972
+ {"name": "JsJaws", "image": "${REGISTRY}cccs/assemblyline-service-jsjaws"},
973
+ {"name": "MetaPeek", "image": "${REGISTRY}cccs/assemblyline-service-metapeek"},
974
+ {"name": "Oletools", "image": "${REGISTRY}cccs/assemblyline-service-oletools"},
975
+ {"name": "Overpower", "image": "${REGISTRY}cccs/assemblyline-service-overpower"},
976
+ {"name": "PDFId", "image": "${REGISTRY}cccs/assemblyline-service-pdfid"},
977
+ {"name": "PE", "image": "${REGISTRY}cccs/assemblyline-service-pe"},
978
+ {"name": "PeePDF", "image": "${REGISTRY}cccs/assemblyline-service-peepdf"},
979
+ {"name": "Pixaxe", "image": "${REGISTRY}cccs/assemblyline-service-pixaxe"},
980
+ {"name": "Safelist", "image": "${REGISTRY}cccs/assemblyline-service-safelist"},
981
+ {"name": "Sigma", "image": "${REGISTRY}cccs/assemblyline-service-sigma"},
982
+ {"name": "Suricata", "image": "${REGISTRY}cccs/assemblyline-service-suricata"},
983
+ {"name": "Swiffer", "image": "${REGISTRY}cccs/assemblyline-service-swiffer"},
984
+ {"name": "TagCheck", "image": "${REGISTRY}cccs/assemblyline-service-tagcheck"},
985
+ {"name": "TorrentSlicer", "image": "${REGISTRY}cccs/assemblyline-service-torrentslicer"},
986
+ {"name": "Unpacker", "image": "${REGISTRY}cccs/assemblyline-service-unpacker"},
987
+ {"name": "UNPACKME", "image": "${REGISTRY}cccs/assemblyline-service-unpacme"},
988
+ {"name": "URLCreator", "image": "${REGISTRY}cccs/assemblyline-service-urlcreator"},
989
+ {"name": "URLDownloader", "image": "${REGISTRY}cccs/assemblyline-service-urldownloader"},
990
+ {"name": "ViperMonkey", "image": "${REGISTRY}cccs/assemblyline-service-vipermonkey"},
991
+ {"name": "VirusTotal", "image": "${REGISTRY}cccs/assemblyline-service-virustotal"},
992
+ {"name": "XLMMacroDeobfuscator", "image": "${REGISTRY}cccs/assemblyline-service-xlmmacrodeobfuscator"},
993
+ {"name": "Yara", "image": "${REGISTRY}cccs/assemblyline-service-yara"},
994
+ {"name": "Zeek", "image": "${REGISTRY}cccs/assemblyline-service-zeek"},
995
+ ]
943
996
  }
944
997
 
945
998
 
@@ -1132,6 +1185,7 @@ SERVICE_STAGES = [
1132
1185
  ]
1133
1186
 
1134
1187
  SAFELIST_HASH_TYPES = ['sha1', 'sha256', 'md5']
1188
+ REGISTRY_TYPES = ['docker', 'harbor']
1135
1189
 
1136
1190
 
1137
1191
  @odm.model(index=False, store=False, description="Service's Safelisting Configuration")
@@ -1148,7 +1202,7 @@ class ServiceSafelist(odm.Model):
1148
1202
  @odm.model(index=False, store=False, description="Pre-Configured Registry Details for Services")
1149
1203
  class ServiceRegistry(odm.Model):
1150
1204
  name: str = odm.Keyword(description="Name of container registry")
1151
- type: str = odm.Enum(values=SUPPORTED_REGISTRY_TYPES, default='docker', description="Type of container registry")
1205
+ type: str = odm.Enum(values=REGISTRY_TYPES, default='docker', description="Type of container registry")
1152
1206
  username: str = odm.Optional(odm.Keyword(description="Username for container registry"))
1153
1207
  password: str = odm.Optional(odm.Keyword(description="Password for container registry"))
1154
1208
  use_fic: bool = odm.Boolean(
@@ -1172,7 +1226,7 @@ class Services(odm.Model):
1172
1226
  allow_insecure_registry: bool = odm.Boolean(description="Allow fetching container images from insecure registries")
1173
1227
 
1174
1228
  preferred_registry_type: str = odm.Enum(
1175
- values=SUPPORTED_REGISTRY_TYPES,
1229
+ values=REGISTRY_TYPES,
1176
1230
  default='docker',
1177
1231
  description="Global registry type to be used for fetching updates for a service (overridable by a service)")
1178
1232
  prefer_service_privileged: bool = odm.Boolean(
{assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/service.py RENAMED
@@ -12,7 +12,6 @@ from assemblyline.common.constants import (
12
12
  Classification = forge.get_classification()
13
13
 
14
14
  FETCH_METHODS = ["GET", "POST", "GIT"]
15
- SUPPORTED_REGISTRY_TYPES = ["docker", "harbor", "jfrog"]
16
15
 
17
16
  SIGNATURE_DELIMITERS = {
18
17
  'new_line': '\n',
@@ -45,7 +44,7 @@ class DockerConfig(odm.Model):
45
44
  description="The username to use when pulling the image")
46
45
  registry_password: Opt[str] = odm.Optional(odm.Keyword(default=""),
47
46
  description="The password or token to use when pulling the image")
48
- registry_type: str = odm.Enum(values=SUPPORTED_REGISTRY_TYPES, default='docker',
47
+ registry_type: str = odm.Enum(values=["docker", "harbor"], default='docker',
49
48
  description="The type of container registry")
50
49
  ports: list[str] = odm.List(odm.Keyword(), default=[], description="What ports of container to expose?")
51
50
  ram_mb: int = odm.Integer(default=512, description="Container RAM limit")
{assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1}/assemblyline/odm/models/service_delta.py RENAMED
@@ -1,11 +1,7 @@
1
1
  from __future__ import annotations
2
2
 
3
3
  from assemblyline import odm
4
- from assemblyline.odm.models.service import (
5
- FETCH_METHODS,
6
- SIGNATURE_DELIMITERS,
7
- SUPPORTED_REGISTRY_TYPES,
8
- )
4
+ from assemblyline.odm.models.service import FETCH_METHODS, SIGNATURE_DELIMITERS
9
5
 
10
6
  REF_DEPENDENCY_CONFIG = "Refer to:<br>[Service - DependencyConfig](../service/#dependencyconfig)"
11
7
  REF_DOCKER_CONFIG = "Refer to:<br>[Service - DockerConfig](../service/#dockerconfig)"
@@ -32,7 +28,7 @@ class DockerConfigDelta(odm.Model):
32
28
  image = odm.Optional(odm.Keyword(), description=REF_DOCKER_CONFIG)
33
29
  registry_username = odm.Optional(odm.Keyword(default=""), description=REF_DOCKER_CONFIG)
34
30
  registry_password = odm.Optional(odm.Keyword(default=""), description=REF_DOCKER_CONFIG)
35
- registry_type = odm.Optional(odm.Enum(values=SUPPORTED_REGISTRY_TYPES), description=REF_DOCKER_CONFIG)
31
+ registry_type = odm.Optional(odm.Enum(values=["docker", "harbor"]), description=REF_DOCKER_CONFIG)
36
32
  ports = odm.Optional(odm.List(odm.Keyword()), description=REF_DOCKER_CONFIG)
37
33
  ram_mb = odm.Optional(odm.Integer(), description=REF_DOCKER_CONFIG)
38
34
  ram_mb_min = odm.Optional(odm.Integer(), description=REF_DOCKER_CONFIG)
{assemblyline-4.7.4.dev9 → assemblyline-4.7.4.1/assemblyline.egg-info}/PKG-INFO RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.4
2
2
  Name: assemblyline
3
- Version: 4.7.4.dev9
3
+ Version: 4.7.4.1
4
4
  Summary: Assemblyline 4 - Automated malware analysis framework
5
5
  Home-page: https://github.com/CybercentreCanada/assemblyline-base
6
6
  Author: CCCS Assemblyline development team
assemblyline-4.7.4.dev9/assemblyline/VERSION DELETED
@@ -1 +0,0 @@
1
- 4.7.4.dev9