I hereby claim:
- I am panzertime on github.
- I am ptime (https://keybase.io/ptime) on keybase.
- I have a public key ASANDvG3nBAdWocpNbgfbK8Xm0PVZAZNxEtZRWRzMpFeSwo
To claim this, I am signing this object:
I hereby claim:
To claim this, I am signing this object:
I'm having issues inserting new indicators into CIF.
When I use the python SDK as described in https://github.com/csirtgadgets/bearded-avenger-sdk-py/wiki (changing cli.submit()
to cli.indicators_create()
), using the literal string '{"indicator":"example-site-malware.com","tlp":"amber","confidence":"8","tags":"test","provider":"example.com","group":"everyone"}'
as my data argument, I get a 404 response after quite a long time and CIF stops responding to queries until I restart the cif-router service. The log message that appears to be associated with this is as follows:
Aug 20 18:29:36 cif cif-router[1205]: Process Process-6:
Aug 20 18:29:36 cif cif-router[1205]: Traceback (most recent call last):
Aug 20 18:29:36 cif cif-router[1205]: File "/usr/lib/python2.7/multiprocessing/process.py", line 258, in _bootstrap
Aug 20 18:29:36 cif cif-router[1205]: self.run()
Aug 20 18:29:36 cif cif-router[1205]: File "/usr/lib/python2.7/multiprocessing/process.py", line 114, in run
Aug 20 18:29:36 cif cif
import sys, base64, hexdump, textwrap | |
from itertools import permutations | |
# pip3 install textwrap hexdump | |
# Create file full of base64 fragments, each one on a new line | |
# Usage: | |
# python3 debaser.py <file> | |
def getLines(): | |
with open(sys.argv[1],"r") as f: |
#!/usr/bin/env python | |
"""Simple HTTP Server With Upload. | |
This module builds on BaseHTTPServer by implementing the standard GET | |
and HEAD requests in a fairly straightforward manner. | |
""" |
Add the attached plist to your ~/Library/LaunchAgents
and then do launchctl load me.p-ti.apple-key-remap.plist