Cortex-Analyzers icon indicating copy to clipboard operation
Cortex-Analyzers copied to clipboard

Published 20 hours ago verified publisher icon TheHive-Project

Hybrid Analysis Analyzer not working anymore

Open X0x1RG9f opened this issue 2 years ago • 4 comments

When trying to use Hybrid Analysis Cortex Analyser, analysis fail. I suppose this is because the old v1 API is not supported any more due to v2 migration.

Also tried in addition with VxAPI (which is working with HA API V2), but I'm not succeeding to interface it with Cortex.

Is there another way to make Cortex work with HA API v2 ?

Thanks ! Ludo

X0x1RG9f avatar May 03 '22 13:05 X0x1RG9f

Someone motivated would have to edit the HybridAnalysis/HybridAnalysis_analyzer.py file to work with the new API and then submit a pull request with the changes. The v2 API is documented at https://www.hybrid-analysis.com/docs/api/v2.

It's not too difficult if you have some skill with Python.

joeslazaro-cdw avatar Jun 02 '22 03:06 joeslazaro-cdw

@joeslazaro-cdw implementation done here : https://github.com/TheHive-Project/Cortex-Analyzers/pull/1117

Waiting for PR to be reviewed but now has it working on my side.

X0x1RG9f avatar Aug 02 '22 14:08 X0x1RG9f

Bumping the issue has its really useful ! Thank you @X0x1RG9f

louismaxx avatar Nov 10 '23 11:11 louismaxx

@X0x1RG9f The implementation as described in ticket #1117 is done. However the docker image (https://download.thehive-project.org/analyzers.json) doesn't seem to be updated yet. afbeelding

How can I use the updated files manually instead of the docker image? (I have ran Cortex and The Hive via docker containers)

RVO25 avatar Dec 21 '23 10:12 RVO25