intelmq
intelmq copied to clipboard
certtools
IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
The pipx https://github.com/pypa/pipx is a tool to install applications using Python packages and virtual envs. It is now the part of Debian 12. This would be much easier to maintain...
Some bots have incompatible dependency requirements. It should be possible to write a CI check that tries to resolve all required dependency together and fail if it's not possible.
After some discussion and testing, the following steps are necessary to turn IntelMQ package into a [namespace package](https://packaging.python.org/en/latest/guides/packaging-namespace-packages/). This is supported since Python 3.3. This is for allowing other third...
It would be nice to automatically build and publish in PyPI beta releases of IntelMQ. It may help with testing by more people. Beta releases should have postfix of `beta`...
- need a "severity" field. Shadowserver is going to add that soon. - Should have documentation on what this means for the end-user / recipient (for example: severity:critical => RCE)...
As a continuation of #2377, we have a regression on parsing invalid URLs. Previously, the `urllib` was mach more liberal in processing URLs, now it rejects much more cases. We...
The library to connect with RT system has some breaking changes since version 3: [changelog](https://github.com/python-rt/python-rt/blob/master/CHANGELOG.md) * The class for REST v1.0 was moved, * Some exceptions may have new name....
for soars such as - [ ] eclectic - [ ] XSOAR - [ ] ... etc. Also: - [ ] guidance on Splunk and ELK
The `gethostbyname` expert resolves a domain name (`*.fqdn`) to the IP address (`*.ip`), but - only one IP address, not all of the A-records - only for IPv4, not for...
## 1. File Output bot: parameter `file` default is hardcoded to `/opt/intelmq/var/lib/bots/file-output/events.txt` (doesnt respect INTELMQ_PATHS_NO_OPT) should be something like: `VAR_STATE_PATH / {BOT-ID} / events.txt` ## 2. Files Output bot: ```python...