osxcollector_output_filters
osxcollector_output_filters copied to clipboard
Yelp
Filters that process and transform the output of osxcollector
This is related to https://github.com/Yelp/osxcollector_output_filters/issues/61.
errors
Hi all, I acknowledge I'm newbie to this tool ... greatly appreciate, if someone can help w/ these errors I'm seeing (venv_osxcollector) MAC:osxcollector_output_filters root# python -m osxcollector.output_filters.analyze -i osxcollect.json Exception...
I've been trying without success to run the AnalyzeAll filter against a JSON formatted output file generated with osxcollector.py despite being able to run make test and getting "congratulations for...
If we could utilize Alexa's free API for querying domain rankings as an output filter, we can better identify domains worth of further investigation due to being globally rare. This...
After running the filter for checking hashes against VT, I am getting the following error: WARNING:urllib3.connectionpool:Connection pool is full, discarding connection: www.virustotal.com WARNING:root:Expected response in JSON format from https://www.virustotal.com/vtapi/v2/file/report?apikey=5c3a90ef42aa6............. Thanks.
Migrated from https://github.com/Yelp/osxcollector/issues/54
Migrated from https://github.com/Yelp/osxcollector/issues/118 Currently there is a black list for file hashes and domains and a whitelist for domains, but not for file hashes. The whitelist for the file hashes...
Migrated from https://github.com/Yelp/osxcollector/issues/85 Currently find_domains filter tries to extract domain names from any value. _adblock_custom_ contains a lot of domains (not to mention that they are stored in just one...
Migrated from https://github.com/Yelp/osxcollector/issues/84 Looking up all of the URLs in the OSXCollector output might cause some sensitive data to be send to VirusTotal. Let's follow what we are doing with...
Migrated from https://github.com/Yelp/osxcollector/issues/83 As the _resource_ parameter in {{url/report}} VirusTotal method is send over HTTP GET it encodes the parameters in a URL query. This could cause for some of...