David André

Additional dependencies

1

I had to install additional dependencies on top of the ones listed: beaker bottle-cork cherrypy pycrypto

Proposed changes in Rule Creation Guide Wiki Page

2

Aka [this page](https://github.com/SigmaHQ/sigma/wiki/Rule-Creation-Guide#title) Sorry to do it this way, github does not seem to support PRs to the wiki git repo. 1. Remove the adjective optional about the ID field....

https://kc.mcafee.com/corporate/index?page=content&id=KB79333#Operations >

``` C:\Users\Administrator\projects\2086.MISP_maltego>canari create-profile MISP_maltego Loading Canari configuration file 'C:\\Users\\Administrator\\AppData\\Local\\canari\\canari.conf' Looking for transforms in MISP_maltego... Package loaded. Creating profile C:\Users\Administrator\projects\2086.MISP_maltego\MISP_maltego.mtz... Installing transform MISP_maltego.SearchInMISP from MISP_maltego.transforms.attributetoevent.SearchInMISP... Traceback (most recent call last): File...

Support multiple MISP Servers

3

A potentially easier way would be when generating the mtz file, to also have a parameter in the configuration file to have the name of the MISP instance (ex.: _superSecretServer_),...

Support NetBlock

1

Support NetBlock entities for lookups (they are in the format 1.1.1.1-1.1.1.255) for lookups in MISP.

Add to roadmap - Detect EDNS

4

http://en.wikipedia.org/wiki/Extension_mechanisms_for_DNS

Add to log - vlan

2

Add the vlan field to the logs

Add to roadmap - AXFR & IXFR

6

Add AXFR & IXFR RR types