pymisp 2.5.9__py3-none-any.whl → 2.5.12__py3-none-any.whl

pymisp/data/misp-objects/objects/github-action/definition.json

@@ -0,0 +1,59 @@
+{
+  "attributes": {
+    "description": {
+      "description": "Action description",
+      "misp-attribute": "text",
+      "ui-priority": 1
+    },
+    "filters": {
+      "description": "Restrictions on the trigger",
+      "misp-attribute": "text",
+      "multiple": true,
+      "ui-priority": 1
+    },
+    "inputs": {
+      "description": "Inputs of the workflow",
+      "misp-attribute": "text",
+      "multiple": true,
+      "ui-priority": 1
+    },
+    "jobs": {
+      "description": "Jobs defined in the workflow",
+      "misp-attribute": "text",
+      "multiple": true,
+      "ui-priority": 1
+    },
+    "name": {
+      "description": "Name of the action.",
+      "misp-attribute": "text",
+      "ui-priority": 1
+    },
+    "notes": {
+      "description": "Any other informations",
+      "misp-attribute": "text",
+      "multiple": true,
+      "ui-priority": 1
+    },
+    "outputs": {
+      "description": "Outputs generated in the workflow",
+      "misp-attribute": "text",
+      "multiple": true,
+      "ui-priority": 1
+    },
+    "trigger": {
+      "description": "How is the action trigerred.",
+      "misp-attribute": "text",
+      "multiple": true,
+      "ui-priority": 1
+    }
+  },
+  "description": "GitHub Actions",
+  "meta-category": "misc",
+  "name": "github-action",
+  "requiredOneOf": [
+    "name",
+    "description"
+  ],
+  "uuid": "3331aaf4-1007-454e-ba7b-6f39ad67decb",
+  "version": 1
+}

pymisp/data/misp-objects/objects/google-account/definition.json

@@ -0,0 +1,116 @@
+{
+  "attributes": {
+    "account-id": {
+      "description": "Google Account ID.",
+      "misp-attribute": "text",
+      "ui-priority": 1
+    },
+    "alternate-e-mails": {
+      "description": "Alternate e-mails associated with the main e-mail.",
+      "misp-attribute": "email-src",
+      "multiple": true,
+      "ui-priority": 1
+    },
+    "contact-e-mail": {
+      "description": "Account recovery contact e-mail.",
+      "misp-attribute": "email-src",
+      "ui-priority": 1
+    },
+    "created-on": {
+      "description": "The date and time the account was created.",
+      "disable_correlation": true,
+      "misp-attribute": "datetime",
+      "ui-priority": 1
+    },
+    "creation-ip": {
+      "description": "The IP address used to create the account.",
+      "disable_correlation": false,
+      "misp-attribute": "ip-src",
+      "ui-priority": 1
+    },
+    "deletion-date": {
+      "description": "The date and time the account was deleted.",
+      "disable_correlation": true,
+      "misp-attribute": "datetime",
+      "ui-priority": 1
+    },
+    "e-mail": {
+      "description": "The main e-mail associated with the Google ID.",
+      "misp-attribute": "email-src",
+      "ui-priority": 1
+    },
+    "end-of-service-date": {
+      "description": "The date and time the service was terminated.",
+      "disable_correlation": true,
+      "misp-attribute": "datetime",
+      "ui-priority": 1
+    },
+    "last-logins-date": {
+      "description": "The dates and times of the user's most recent logins.",
+      "disable_correlation": true,
+      "misp-attribute": "datetime",
+      "multiple": true,
+      "ui-priority": 1
+    },
+    "last-updated-date": {
+      "description": "The date and time the account was last updated.",
+      "disable_correlation": true,
+      "misp-attribute": "datetime",
+      "ui-priority": 1
+    },
+    "login-ip": {
+      "description": "The IP addresses used to login into the account.",
+      "disable_correlation": false,
+      "misp-attribute": "ip-src",
+      "multiple": true,
+      "ui-priority": 1
+    },
+    "name": {
+      "description": "The full name of the person associated with the Google ID.",
+      "misp-attribute": "full-name",
+      "ui-priority": 1
+    },
+    "recovery-e-mail": {
+      "description": "Account recovery e-mail.",
+      "misp-attribute": "email-src",
+      "ui-priority": 1
+    },
+    "recovery-sms": {
+      "description": "Account recovery phone number.",
+      "misp-attribute": "phone-number",
+      "ui-priority": 1
+    },
+    "related-links": {
+      "description": "Any link to a page containing information about this Google user.",
+      "misp-attribute": "link",
+      "multiple": true,
+      "ui-priority": 1
+    },
+    "services": {
+      "description": "Services associated with the Google Account ID.",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "ui-priority": 1
+    },
+    "user-avatar": {
+      "description": "A user profile picture or avatar.",
+      "misp-attribute": "attachment",
+      "multiple": true,
+      "ui-priority": 1
+    },
+    "user-description": {
+      "description": "A description of the user.",
+      "misp-attribute": "text",
+      "ui-priority": 1
+    }
+  },
+  "description": "An object containing subscriber information received from Google.",
+  "meta-category": "misc",
+  "name": "google-account",
+  "requiredOneOf": [
+    "account-id",
+    "e-mail"
+  ],
+  "uuid": "1d795bfa-29ae-433c-b23a-bb5a1c77e944",
+  "version": 1
+}

pymisp/data/misp-objects/objects/network-connection/definition.json

@@ -96,6 +96,7 @@
       "description": "Layer 7 protocol of the network connection.",
       "disable_correlation": true,
       "misp-attribute": "text",
+      "multiple": true,
       "sane_default": [
         "HTTP",
         "HTTPS",

pymisp/data/misp-objects/objects/summariser-output/definition.json

@@ -0,0 +1,90 @@
+{
+  "attributes": {
+    "description": {
+      "description": "Description of the text summarised.",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "ui-priority": 1
+    },
+    "original-text": {
+      "description": "Original text before any processing.",
+      "disable_correlation": true,
+      "misp-attribute": "attachment",
+      "ui-priority": 0
+    },
+    "original-text-timestamp": {
+      "description": "Publication date of the original text (not related to the processing).",
+      "disable_correlation": true,
+      "misp-attribute": "datetime",
+      "ui-priority": 1
+    },
+    "original-url": {
+      "description": "URL of the original text.",
+      "disable_correlation": true,
+      "misp-attribute": "link",
+      "ui-priority": 1
+    },
+    "summariser-model": {
+      "description": "Model used for the summariser",
+      "misp-attribute": "text",
+      "multiple": true,
+      "sane_default": [
+        "gpt-3.5-turbo",
+        "gpt-3.5-turbo-16k",
+        "gpt-3.5-turbo-0125 (16k)",
+        "gpt-4",
+        "gpt-4-turbo",
+        "gpt-4-o",
+        "gpt-4o-mini",
+        "o3-mini"
+      ],
+      "ui-priority": 0
+    },
+    "summariser-timestamp": {
+      "description": "Date when the summary was produced.",
+      "disable_correlation": true,
+      "misp-attribute": "datetime",
+      "ui-priority": 0
+    },
+    "summariser-version": {
+      "description": "Version of the code used for the summariser.",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "ui-priority": 0
+    },
+    "summary": {
+      "description": "Summary of the original text by the AI-based or NLP-based summariser.",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "ui-priority": 0
+    },
+    "tcode": {
+      "description": "MITRE ATT&CK Technique ID extracted by the AI-based or NLP-based summariser.",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "multiple": true,
+      "ui-priority": 0
+    },
+    "title": {
+      "description": "Title of the text summarised.",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "ui-priority": 0
+    },
+    "ttp": {
+      "description": "TTP of the original text extracted by the AI-based or NLP-based summariser.",
+      "disable_correlation": true,
+      "misp-attribute": "text",
+      "multiple": true,
+      "ui-priority": 0
+    }
+  },
+  "description": "Summariser output from an AI-based or NLP summariser.",
+  "meta-category": "misc",
+  "name": "summariser-output",
+  "required": [
+    "summary"
+  ],
+  "uuid": "38633d19-123a-4b0f-bc4a-ccb381e58e49",
+  "version": 1
+}

pymisp/mispevent.py

@@ -1121,7 +1121,7 @@ class MISPObject(AnalystDataBehaviorMixin):
         It is the same as calling multiple times add_attribute with the same object_relation.
         '''
         if not attributes:
-            logger.warning(f"No attributes provided for object relation '{object_relation}'; skipping attribute addition.")
+            logger.info(f"No attributes provided for object relation '{object_relation}'; skipping attribute addition.")
             return []
 
         to_return = []
@@ -1732,14 +1732,14 @@ class MISPEvent(AnalystDataBehaviorMixin):
                     event_report.pop('distribution', None)
                     event_report.pop('SharingGroup', None)
                     event_report.pop('sharing_group_id', None)
-                to_return['EventReport'].append(event_report.to_dict())
+                to_return['EventReport'].append(event_report._to_feed())
 
         if with_cryptographic_keys and self.cryptographic_keys:
             to_return['CryptographicKey'] = []
             for cryptographic_key in self.cryptographic_keys:
                 cryptographic_key.pop('parent_id', None)
                 cryptographic_key.pop('id', None)
-                to_return['CryptographicKey'].append(cryptographic_key.to_dict())
+                to_return['CryptographicKey'].append(cryptographic_key._to_feed())
 
         return {'Event': to_return}
 

{pymisp-2.5.9.dist-info → pymisp-2.5.12.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.3
 Name: pymisp
-Version: 2.5.9
+Version: 2.5.12
 Summary: Python API for MISP.
 License: BSD-2-Clause
 Author: Raphaël Vinot
@@ -28,24 +28,24 @@ Provides-Extra: openioc
 Provides-Extra: pdfexport
 Provides-Extra: url
 Provides-Extra: virustotal
-Requires-Dist: RTFDE (>=0.1.2) ; (python_version <= "3.9") and (extra == "email")
-Requires-Dist: beautifulsoup4 (>=4.13.3) ; extra == "openioc"
+Requires-Dist: RTFDE (>=0.1.2.1) ; (python_version <= "3.9") and (extra == "email")
+Requires-Dist: beautifulsoup4 (>=4.13.4) ; extra == "openioc"
 Requires-Dist: deprecated (>=1.2.18)
 Requires-Dist: docutils (>=0.21.2) ; (python_version >= "3.11") and (extra == "docs")
-Requires-Dist: extract_msg (>=0.54.0) ; extra == "email"
-Requires-Dist: lief (>=0.16.4) ; extra == "fileobjects"
+Requires-Dist: extract_msg (>=0.54.1) ; extra == "email"
+Requires-Dist: lief (>=0.16.5) ; extra == "fileobjects"
 Requires-Dist: myst-parser (>=4.0.1) ; (python_version >= "3.11") and (extra == "docs")
 Requires-Dist: oletools (>=0.60.2) ; extra == "email"
 Requires-Dist: pydeep2 (>=0.5.1) ; extra == "fileobjects"
 Requires-Dist: pyfaup (>=1.2) ; extra == "url"
 Requires-Dist: python-dateutil (>=2.9.0.post0)
 Requires-Dist: python-magic (>=0.4.27) ; extra == "fileobjects"
-Requires-Dist: reportlab (>=4.3.1) ; extra == "pdfexport"
+Requires-Dist: reportlab (>=4.4.0) ; extra == "pdfexport"
 Requires-Dist: requests (>=2.32.3)
 Requires-Dist: sphinx (>=8.2.3) ; (python_version >= "3.11") and (extra == "docs")
-Requires-Dist: sphinx-autodoc-typehints (>=3.1.0) ; (python_version >= "3.11") and (extra == "docs")
-Requires-Dist: urllib3 (>=2.3.0) ; extra == "brotli"
-Requires-Dist: validators (>=0.34.0) ; extra == "virustotal"
+Requires-Dist: sphinx-autodoc-typehints (>=3.2.0) ; (python_version >= "3.11") and (extra == "docs")
+Requires-Dist: urllib3 (>=2.4.0) ; extra == "brotli"
+Requires-Dist: validators (>=0.35.0) ; extra == "virustotal"
 Project-URL: Documentation, https://pymisp.readthedocs.io
 Project-URL: Repository, https://github.com/MISP/PyMISP
 Project-URL: issues, https://github.com/MISP/PyMISP/issues

{pymisp-2.5.9.dist-info → pymisp-2.5.12.dist-info}/RECORD

@@ -152,9 +152,11 @@ pymisp/data/misp-objects/objects/game-cheat/definition.json,sha256=4xqSM9PzOzuWZ
 pymisp/data/misp-objects/objects/generalizing-persuasion-framework/definition.json,sha256=6EFw1OW2Qzbp1tip2PgwYhjvqh2koo5Rl75h1TzNE-s,5590
 pymisp/data/misp-objects/objects/geolocation/definition.json,sha256=mvbU1_yi-9m69SJQWn7fh5k1MLUFIagPU2Mfp4GpjP8,3308
 pymisp/data/misp-objects/objects/git-vuln-finder/definition.json,sha256=_b_Ux9biIpYXK0gmCzGxmp0AHi1dGEaW3H_MiftHx3s,3644
+pymisp/data/misp-objects/objects/github-action/definition.json,sha256=UQ7dgVaOKZ_CkVRQ3mt2uPOg8JRZOZ4JxFNKSkAdTRg,1403
 pymisp/data/misp-objects/objects/github-repo/definition.json,sha256=zmGO6g5fRlvp419DKXo3HYQc3-i6_VqCGyIxnb4i4II,3483
 pymisp/data/misp-objects/objects/github-user/definition.json,sha256=CdHNDa0oLpPB25h5S-7ybEb9MSx92KbqAT7DmNckeNM,3463
 pymisp/data/misp-objects/objects/gitlab-user/definition.json,sha256=xCqY6NAG1DhtyHDCGVik6yXCGhPie4AfnXAvCk9z6qg,1188
+pymisp/data/misp-objects/objects/google-account/definition.json,sha256=fsyjqkMU12X0F4NpI1Mx4i09MQHNb1n-1HwJSIVrO0Q,3467
 pymisp/data/misp-objects/objects/google-safe-browsing/definition.json,sha256=Bxo1eu_EbY8Q1mMv0y0lDv9Rn0xDwmPtesuZ8jtk4Xc,739
 pymisp/data/misp-objects/objects/google-threat-intelligence-report/definition.json,sha256=EZgeF_PbgrxLVGaszm_BJPoWbEB8D7O52anB68vkA8s,1879
 pymisp/data/misp-objects/objects/greynoise-ip/definition.json,sha256=pPp13wr0ATb1GYrrjJRLJxzkXJmkbajCifo4IfOeNYc,1850
@@ -206,7 +208,7 @@ pymisp/data/misp-objects/objects/monetary-impact/definition.json,sha256=s44CoduM
 pymisp/data/misp-objects/objects/mutex/definition.json,sha256=zqun14zDa2seXkX5BGtlL_0dkT7LqTTEDagh-1lXKVs,744
 pymisp/data/misp-objects/objects/narrative/definition.json,sha256=VXEm_lcQgR7uFtMalrdbI73-ivv6HJHQVx6lPU0FYzA,2200
 pymisp/data/misp-objects/objects/netflow/definition.json,sha256=pQ_meRpiPEchaTBNTBUyUT5zPmL7QNIQgLGKdd_KTqE,4103
-pymisp/data/misp-objects/objects/network-connection/definition.json,sha256=seFEI1Npj5EHXt3RPP2TrZ_oq3YKDQDe0YGsZQO37LE,4224
+pymisp/data/misp-objects/objects/network-connection/definition.json,sha256=6rGG8ZhW3YxgGAV_l91GFpZXk4QpyJ7iuedH5FU38HE,4248
 pymisp/data/misp-objects/objects/network-profile/definition.json,sha256=urPC6ysgZ5kaiB2L2ilL19iGmR2GNUzjO4pcUngQl5E,6175
 pymisp/data/misp-objects/objects/network-socket/definition.json,sha256=qEE1yvRnrpylHut3jFDJnPWWfsz61ZJO0-Lp40WOSjM,6571
 pymisp/data/misp-objects/objects/network-traffic/definition.json,sha256=jZSGhItwP-1Vxm7fv_IqbijXqnAvPFFKhjxolaDXudE,3144
@@ -309,6 +311,7 @@ pymisp/data/misp-objects/objects/stairwell/definition.json,sha256=vXK_23lt156F_w
 pymisp/data/misp-objects/objects/stix2-pattern/definition.json,sha256=oCVvk1vU__nFQxFChclCgwclzX7wEm0MYWY0HjvuJ94,891
 pymisp/data/misp-objects/objects/stock/definition.json,sha256=ZCV8X9VXRQPXt6_qpNL0kUrJpyc6_COAAUY2desjMcU,5507
 pymisp/data/misp-objects/objects/submarine/definition.json,sha256=1i33QhqVNkQeMbT0Glk7LyOSZkjnfBUrX23jflIX7FE,4223
+pymisp/data/misp-objects/objects/summariser-output/definition.json,sha256=WDdiEKUxVM-dTy4AZO8R_4AxsT_WgRLfdXoMvG0SaHI,2639
 pymisp/data/misp-objects/objects/suricata/definition.json,sha256=FQ5Is0dnVSr7ttDpBWnzI5Th9Sjx5nSh5WGYU9RZ9O0,952
 pymisp/data/misp-objects/objects/target-system/definition.json,sha256=PaM41BdcjXCYzs1oY0N-ALabDJgzQVxHqnjj70zZ_S8,1000
 pymisp/data/misp-objects/objects/task/definition.json,sha256=ugSxQkRnyMd8Jb6kMj5yJCveNyc-mJ-tCh3jiQKXXmA,3029
@@ -367,7 +370,7 @@ pymisp/data/misp-objects/schema_relationships.json,sha256=MCusp9GAyuHTo3lLyBrsvl
 pymisp/data/schema-lax.json,sha256=2QICdCbtfXRJkTVjwb7xjF3ypys2wOtrUyE1ZDz_qes,8561
 pymisp/data/schema.json,sha256=79N2hObemthb_syUHksDqM4djFttsWZQDg1sTYZYxys,9178
 pymisp/exceptions.py,sha256=IgGGadv5lnLAvO7Q6AjF0vEbjoWwwDWLYwMn-8pkU_k,1965
-pymisp/mispevent.py,sha256=G6TLW-laRQRAJPb47EwZEb7ehYBn0rH4VF9oRUfDPMo,121528
+pymisp/mispevent.py,sha256=rDlW0amvLSizJFjEid5Bw0wVLdF0pOsWqvdb0JMyISc,121527
 pymisp/py.typed,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 pymisp/tools/__init__.py,sha256=_KCihYo82e8G5cHV321ak2sgbao2GyFjf4sSTMiN_IM,2233
 pymisp/tools/_psl_faup.py,sha256=JyK8RQm8DPWvNuoF4rQpiE0rBm-Az-sr38Kl46dmWcs,7034
@@ -398,7 +401,7 @@ pymisp/tools/update_objects.py,sha256=sp_XshzgtRjAU0Mqg8FgRTaokjVKLImyQ02xIcPSrH
 pymisp/tools/urlobject.py,sha256=PIucy1356zaljUm1NbeKmEpHpAUK9yiK2lAugcMp2t8,2489
 pymisp/tools/vehicleobject.py,sha256=bs7f4d47IBi2-VumssSM3HlqkH0viyHTLmIHQxe8Iz8,3687
 pymisp/tools/vtreportobject.py,sha256=NsdYzgqm47dywYeW8UnWmEDeIsf07xZreD2iJzFm2wg,3217
-pymisp-2.5.9.dist-info/LICENSE,sha256=1oPSVvs96qLjbJVi3mPn0yvWs-6aoIF6BNXi6pVlFmY,1615
-pymisp-2.5.9.dist-info/METADATA,sha256=YNrgux5KH0_ShGiW-FinobWdFpRqPeCEqonvdY2U2oQ,8881
-pymisp-2.5.9.dist-info/WHEEL,sha256=XbeZDeTWKc1w7CSIyre5aMDU_-PohRwTQceYnisIYYY,88
-pymisp-2.5.9.dist-info/RECORD,,
+pymisp-2.5.12.dist-info/LICENSE,sha256=1oPSVvs96qLjbJVi3mPn0yvWs-6aoIF6BNXi6pVlFmY,1615
+pymisp-2.5.12.dist-info/METADATA,sha256=zKo_Bqx7xWbM3RvDTsXuMzEqbncOjUp0KAMHwP5yCnk,8884
+pymisp-2.5.12.dist-info/WHEEL,sha256=b4K_helf-jlQoXBBETfwnf4B04YC67LOev0jo4fX5m8,88
+pymisp-2.5.12.dist-info/RECORD,,

{pymisp-2.5.9.dist-info → pymisp-2.5.12.dist-info}/WHEEL

@@ -1,4 +1,4 @@
 Wheel-Version: 1.0
-Generator: poetry-core 2.1.1
+Generator: poetry-core 2.1.3
 Root-Is-Purelib: true
 Tag: py3-none-any