Commit Graph

55 Commits

Author SHA1 Message Date
Eugeny Ablesov
f5eee854f8
Update scheme.sql
pymisp warning fix
2023-05-30 15:02:52 +03:00
Eugeny Ablesov
f0dc4dfbad
Update requirements.txt
Fix:
pymisp - use older version to keep code compatibility
sqlalchemy - use 1.4 latest build (api 2.0 incompatible with codebase)

M2Crypto - removed (not used)
pyOpenSSL - removed (not used)
2023-05-30 15:01:30 +03:00
besendorf
5b607d47d7
add all ipv6 multicast adresses
I noticed some ff02:... addresses in my reports. Those should be whitelisted
ff00::/8 are all ipv6 multicast addresses. See rfc5156 2.13
2022-07-07 21:23:29 +02:00
PlazzmiK
ca980a74a3
Added six - Fixes issue #93
FIX for issue #93 :
ImportError: cannot import name 'collections_abc' from 'six.moves' (unkown location)
2022-02-16 20:14:51 +01:00
Félix Aimé
e582f5a3c2
Update iocs.json 2021-08-05 09:26:21 +02:00
Félix Aime
8e09d4e1c8 More code modification regarding MISP integration 2021-06-10 18:37:40 +02:00
Félix Aime
73ee7a280b Some modifications, still need tests and debug 2021-06-08 20:11:51 +02:00
Félix Aimé
c1b8f4a447
Merge pull request #70 from JulAkx/misp
New Feature : Import IoCs from an added MISP instance.
2021-06-06 11:08:35 +02:00
Félix Aimé
cb7aeb2721
Update iocs.json
Adding IOCs from the ESET report. Thanks guys.
Report: https://www.welivesecurity.com/wp-content/uploads/2021/05/eset_android_stalkerware.pdf
2021-05-31 20:21:53 +02:00
Julien DEPAILLAT
24be446598 New Feature : It is now possible to import IoCs from an added MISP instance. 2021-05-10 16:08:58 +02:00
Félix Aimé
033d751e31
Update iocs.json 2021-05-04 10:21:29 +02:00
Félix Aimé
d41ad28c25
Update iocs.json 2021-04-30 16:51:24 +02:00
Félix Aimé
bf8edb0283
Update iocs.json 2021-04-29 20:24:09 +02:00
Félix Aimé
6bca89630e
Update iocs.json 2021-04-24 22:40:43 +02:00
Félix Aimé
c69f2a3d6e
Update iocs.json 2021-04-24 11:28:05 +02:00
Félix Aimé
d5ff62590a
Update iocs.json 2021-04-23 15:06:19 +02:00
Félix Aimé
1923348538
Update iocs.json 2021-04-23 14:00:40 +02:00
Félix Aimé
022f23be1c
Update iocs.json 2021-04-23 11:53:57 +02:00
Félix Aimé
8f006e4ecc
Update iocs.json 2021-04-23 10:05:46 +02:00
Félix Aimé
24e35d9ef5
Update iocs.json 2021-04-21 15:35:20 +02:00
Félix Aimé
53271bbb33
Update iocs.json 2021-04-20 19:04:29 +02:00
Félix Aimé
e2f5801a99
Update iocs.json 2021-04-14 15:11:41 +02:00
Félix Aimé
8ac1beba9d
Update whitelist.json 2021-04-09 18:21:39 +02:00
Félix Aimé
16a4a3675a
Update iocs.json 2021-04-09 18:19:57 +02:00
Félix Aimé
32e04398fe
Update iocs.json 2021-03-25 13:48:54 +01:00
Félix Aimé
a98679a923
Update whitelist.json 2021-03-11 20:40:05 +01:00
Félix Aimé
6d5389370c
Update iocs.json 2021-03-01 16:59:38 +01:00
Félix Aimé
6b29daad59
Update iocs.json 2021-03-01 16:52:31 +01:00
Félix Aimé
85228e77f7
Adding new IOCs 2021-02-16 19:52:36 +01:00
Félix Aime
0a7e962e99 Adding python-whois 2021-02-16 17:10:23 +01:00
Félix Aimé
f68ed73c1b
Update iocs.json 2021-02-16 16:45:15 +01:00
Félix Aimé
397bba1e79
Update iocs.json 2021-02-16 16:40:46 +01:00
Félix Aimé
950db64729
Update whitelist.json 2021-02-16 15:56:21 +01:00
Félix Aimé
1e44d252af
Update iocs.json 2021-02-11 14:06:59 +01:00
Félix Aimé
397b8dfc69
Update with new domains. 2021-02-09 10:19:40 +01:00
Félix Aimé
d2ee1caa8b
Update iocs.json 2021-01-28 19:54:30 +01:00
Félix Aimé
b00736d7fa
Update iocs.json 2021-01-25 15:10:02 +01:00
Félix Aimé
7377210f07
Update on FP snort rule. 2021-01-25 15:04:32 +01:00
Félix Aimé
d3457a18a9
Update with DomesticKitten domains
Related to https://twitter.com/bl4ckh0l3z/status/1353049745392979968
2021-01-25 09:31:31 +01:00
Félix Aimé
e235421323
Deleting a snort rule which does some FP on Android/Galaxy. 2021-01-21 20:45:57 +01:00
Félix Aime
0cedade4b8 Adding lencr.org domain 2021-01-20 20:24:07 +01:00
Félix Aimé
fd862c2688
Update whitelist.json 2021-01-14 11:21:53 +01:00
Félix Aimé
313f718052
Update whitelist.json 2021-01-14 11:10:37 +01:00
Félix Aimé
7a67ddac24
Update whitelist.json 2021-01-14 11:05:03 +01:00
Félix Aimé
69aede5bbe
Update iocs.json 2021-01-13 21:34:44 +01:00
Félix Aimé
9b0761e5cf
Update with MDNS snort rule + new fancy TLDs 2021-01-13 21:19:09 +01:00
Félix Aime
da2d3c049b Adding IOCs from https://research.checkpoint.com/2021/going-rogue-a-mastermind-behind-android-malware-returns-with-a-new-rat/ 2021-01-13 09:25:56 +01:00
Félix Aimé
2d02f98471
Update whitelist.json 2021-01-06 21:58:29 +01:00
Félix Aime
68bcf39451 Merge branch 'main' of https://github.com/KasperskyLab/TinyCheck into main 2021-01-06 21:19:32 +01:00
Félix Aime
8f56909e4f Adding the export of PDF report 2021-01-06 21:19:03 +01:00