Fork the current repository, then clone your fork
$ git clone https://github.com/YOUR-USERNAME/msticpy.git
$ cd msticpy
$ git remote add upstream https://github.com/microsoft/msticpy.git
# Create a branch for your feature/fix
$ git switch -c [branch-name]
$ python3.11 -m venv .venv --prompt "msticpy"
$ source .venv/bin/activate
$ pip install --upgrade pip wheel setuptools
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
:NetworkSignatureAnalysis a :NetworkTrafficAnalysis, | |
owl:Class, | |
owl:NamedIndividual ; | |
rdfs:label "Network Signature Analysis" ; | |
rdfs:subClassOf :NetworkTrafficAnalysis, | |
[ a owl:Restriction ; | |
owl:onProperty :analyzes ; | |
owl:someValuesFrom :NetworkTraffic ] ; | |
:d3fend-id "D3-NSA" ; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# | |
# Automatically generated make config: don't edit | |
# Linux/arm 3.0.35 Kernel Configuration | |
# | |
CONFIG_ARM=y | |
CONFIG_HAVE_PWM=y | |
CONFIG_SYS_SUPPORTS_APM_EMULATION=y | |
CONFIG_HAVE_SCHED_CLOCK=y | |
CONFIG_GENERIC_GPIO=y | |
# CONFIG_ARCH_USES_GETTIMEOFFSET is not set |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# doc https://www.vagrantup.com/docs/other/wsl & https://www.vagrantup.com/downloads | |
# https://github.com/splunk/attack_range_local/wiki/Ubuntu-18.04-Installation | |
$ lsb_release -a | |
No LSB modules are available. | |
Distributor ID: Ubuntu | |
Description: Ubuntu 20.04.4 LTS | |
Release: 20.04 | |
Codename: focal |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
{ | |
"id": "extension-definition--d83fce45-ef58-4c6c-a3f4-1fbc32e98c6e", | |
"type": "extension-definition", | |
"spec_version": "2.1", | |
"name": "Extension Foo 1", | |
"description": "This schema adds two properties to a STIX object", | |
"created": "2014-02-20T09:16:08.989000Z", | |
"modified": "2014-02-20T09:16:08.989000Z", | |
"created_by_ref": "identity--11b76a96-5d2b-45e0-8a5a-f6994f370731", |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# coding: utf-8 | |
from __future__ import annotations | |
import json | |
from typing import Any, Dict, List, Optional, TYPE_CHECKING | |
if TYPE_CHECKING: | |
from pycti import OpenCTIApiClient |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
DOC https://gist.github.com/Chaser324/ce0505fbed06b947d962 | |
git clone git@github.com:2xyo/client-python.git client-python-wheel | |
cd client-python-wheel | |
git remote add upstream https://github.com/OpenCTI-Platform/client-python.git | |
git remote -v | |
# Fetch from upstream remote | |
git fetch upstream |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# http://sublimerobots.com/2015/12/snort-2-9-8-x-on-ubuntu-part-2/ | |
# https://s3.amazonaws.com/snort-org-site/production/document_files/files/000/000/069/original/Snort-IPS-Tutorial.pdf | |
apt update | |
apt install sudo vim | |
export EDITOR=vim | |
visudo | |
# yoyo ALL=(ALL) NOPASSWD:ALL | |
exit |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
clear | |
declare -i rxnow txnow txlast rxlast | |
while true | |
do | |
chain=`ifconfig $1|grep bytes` | |
rxnow=`echo $chain | cut -d ":" -f2 | cut -d " " -f1` | |
txnow=`echo $chain | cut -d ":" -f3 | cut -d " " -f1` |
NewerOlder