Christophe Vandeplas
Christophe Vandeplas
Hello, Can you incorporate those minor changes?
Feed data based on twint scraping / searching. More about twint: https://github.com/twintproject/twint
It'd be nice to have an integration with the VT hunting API as source feed. The integration would download the matched binaries/files and then ingest them as input like anything...
The Hashtag object has as type name `twitter.hashtag` something different than the default from Maltego `maltego.hashtag` 
Plume is, by default, dropping privileges to the user `nobody`. This only happens after the whole code was run once as root, privileges are only dropped afterwards when running transforms....
Following the documentation I understand we can use inheritance to re-use code when different entities use the same logic. The `input_type` field defines which entity is allowed to use this...
It's exciting to see the capabilities of watcher. I notice the implementation has a custom pastebin scraping tool. It might be with to consider using the very modular [pystemon](https://github.com/cvandeplas/pystemon) as...
How should we approach the situation where 2 entries in the threat-actors.json file should be merged to one single entry? Both already have a uuid. Example: - Callisto - Malware...
For example: - a relation that is `uses` should be also made `used-by` automagically. A thing that is missing in the [relationship definitions](https://github.com/MISP/misp-objects/blob/master/relationships/definition.json) is such a reverse-mapping that could be...
See https://github.com/mitre/cti/pull/65#issuecomment-546356114 > Prior to the July 2019 ATT&CK update (also known as ATT&CK-v5.0) mitigation objects in the Enterprise domain had 1:1 relationships with techniques, and were kept on the...