nor3th
nor3th
That's currently not possible, but this feature will be part of https://github.com/OpenCTI-Platform/client-python/issues/206 Regards
Hey @PandaLyfe A PR is a shortcut for a "pull request" https://docs.github.com/en/github/collaborating-with-pull-requests/proposing-changes-to-your-work-with-pull-requests/about-pull-requests We appreciate any kind of community help, since as you can see, there are more connector requests than...
Hey I am still not sure of how MISP does the information ingestion into LogRythm. I only found this StackExchange thread (https://security.stackexchange.com/questions/230431/how-can-i-add-a-misp-stix-feed-to-logrhythm) , where the solution seems to be a...
If I understand you correctly, then you are for now mostly interested in pulling only the Indicators from OpenCTI? Most connectors so far pull information from somewhere else into OpenCTI....
hey @SamuelHassine That is done by simply removing this line: https://github.com/OpenCTI-Platform/connectors/blob/master/internal-import-file/import-document/src/reportimporter/config/entity_config.ini#L62 The idea behind also using the alias, is that some countries use different names which might then not be...
Hey @labtest06 Thank you for raising this issue. It seems to me that the malware bazaar API responds with something else than a ZIP file here https://github.com/OpenCTI-Platform/connectors/blob/568d9263132a32cef1ebe77c968d9fcca61a8b56/external-import/malwarebazaar-recent-additions/src/malwarebazaar-recent-additions.py#L126 I did a...
Is there a point for developing this connector? Extracting a STIX bundle from a PDF file is a pain in the ass. Wouldn't a feasible alternative be to simply ask...
Ideally either the OpenCTI country dataset [1] could be used or the stix location set [2] [1] https://github.com/OpenCTI-Platform/datasets/blob/master/data/geography.json [2] https://github.com/oasis-open/cti-stix-common-objects/tree/main/objects/location
Hey @securitiz As already mentioned, here's the explanation for why this relationship is this way around. (https://github.com/OpenCTI-Platform/opencti/issues/1805#issuecomment-1013946606) But I get your point and I'll have a look to make out...
Hey @Ken-Abruzzi Based on your other github issue, it seems that this issue is connector independent. Try either doing a `docker restart` or to entirely remove the docker container `docker...