Brandon Dixon 9b

## mitre_extract.py
"""Extract MITRE ATT&CK techniques into a file."""
import bs4 as bs
import requests

root_url = "https://attack.mitre.org"
file_name = "mitre.txt"


def get_urls():
    """Get MITRE ATT&CK URLs for processing."""

## blockadeioskills.yaml
Descriptor:
  Name: BlockadeIoService
  DisplayName: Blockade.io
  Description: Skills for blocking suspicious and malicious indicators using blockade.io

SkillGroups:
  - Format: API
    Settings:
      OpenApiSpecUrl: https://gist.githubusercontent.com/9b/f3f3e4d831bddcf0ab3f8a32b471893b/raw/b40421aa882e556794d4305dea50bd7f9acc1188/blockadeio.yaml

## blockadeio.yaml
openapi: 3.0.1

info:
    title: Blockade.io
    description: Block suspicious and malicious indicators in participating browsers
    version: "v1"

servers:
    - url: https://api.blockade.io/

## README
Modify the script to include your username and API key.

Create a virtualenv to keep your space clean:

    $ virtualenv -p python3 venv3

Activate it:

    $ source venv3/bin/activate


## log-review.txt
{
  'statistics': {
    'noise': 264,
    'ips_processed': 283,
    'duplicate_entries': 4609,
    'money_saved': '$179.17',
    'duplicate_ratio': 94.0,
    'noise_ratio': 93.0,
    'time_saved': '8:48:00',
    'interest': 19,

## keybase.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                9b
                / keybase.md
            
            
              Created
              November 6, 2018 17:06
            
          
    Keybase proof

I hereby claim:

I am 9b on github.
I am 9bplus (https://keybase.io/9bplus) on keybase.
I have a public key ASDXArDVDZslzdQphHwNk0YbXgJapLZ9yFgrrWCGcK-7Ago

To claim this, I am signing this object:

  
## apt32.js
!function(e) {
    function t(i) {
        if (n[i])
            return n[i].exports;
        var o = n[i] = {
            "i": i,
            "l": !1,
            "exports": {}
        };
        return e[i].call(o.exports, o, o.exports, t),

## false.json
{
	"condition": "AND",
	"rules": [
		{
			"id": "monitor_category",
			"field": "monitor_category",
			"type": "string",
			"input": "select",
			"operator": "equal",
			"value": "Competition",

## parse-scores.py
"""Use image analysis to extract scores from coffee charts."""

from PIL import Image, ImageFilter, ImageEnhance
from pytesseract import image_to_string
import cv2
import os
import sys
import numpy as np


## what_runs.py
import ast
import datetime
import json
import sys
import requests
import urllib
from tabulate import tabulate

url = "https://www.whatruns.com/api/v1/get_site_apps"
data = {"data": {"hostname": sys.argv[1], "url": sys.argv[1],
	"""Extract MITRE ATT&CK techniques into a file."""
	import bs4 as bs
	import requests

	root_url = "https://attack.mitre.org"
	file_name = "mitre.txt"


	def get_urls():
	"""Get MITRE ATT&CK URLs for processing."""
	Descriptor:
	Name: BlockadeIoService
	DisplayName: Blockade.io
	Description: Skills for blocking suspicious and malicious indicators using blockade.io

	SkillGroups:
	- Format: API
	Settings:
	OpenApiSpecUrl: https://gist.githubusercontent.com/9b/f3f3e4d831bddcf0ab3f8a32b471893b/raw/b40421aa882e556794d4305dea50bd7f9acc1188/blockadeio.yaml
	openapi: 3.0.1

	info:
	title: Blockade.io
	description: Block suspicious and malicious indicators in participating browsers
	version: "v1"

	servers:
	- url: https://api.blockade.io/
	Modify the script to include your username and API key.

	Create a virtualenv to keep your space clean:

	$ virtualenv -p python3 venv3

	Activate it:

	$ source venv3/bin/activate
	{
	'statistics': {
	'noise': 264,
	'ips_processed': 283,
	'duplicate_entries': 4609,
	'money_saved': '$179.17',
	'duplicate_ratio': 94.0,
	'noise_ratio': 93.0,
	'time_saved': '8:48:00',
	'interest': 19,
	!function(e) {
	function t(i) {
	if (n[i])
	return n[i].exports;
	var o = n[i] = {
	"i": i,
	"l": !1,
	"exports": {}
	};
	return e[i].call(o.exports, o, o.exports, t),
	{
	"condition": "AND",
	"rules": [
	{
	"id": "monitor_category",
	"field": "monitor_category",
	"type": "string",
	"input": "select",
	"operator": "equal",
	"value": "Competition",
	"""Use image analysis to extract scores from coffee charts."""

	from PIL import Image, ImageFilter, ImageEnhance
	from pytesseract import image_to_string
	import cv2
	import os
	import sys
	import numpy as np
	import ast
	import datetime
	import json
	import sys
	import requests
	import urllib
	from tabulate import tabulate

	url = "https://www.whatruns.com/api/v1/get_site_apps"
	data = {"data": {"hostname": sys.argv[1], "url": sys.argv[1],