Nex
ff41efba72
Bumped version
2022-04-05 21:46:38 +02:00
Nex
bc5d386be7
Bumped version
2022-03-15 11:19:22 +01:00
Nex
0b3f529cfa
Bumped version
2022-03-14 10:22:29 +01:00
Nex
09a6f291c0
Bumped version
2022-02-04 13:39:37 +01:00
Nex
b50be69dd4
Bumped version
2022-02-04 13:38:04 +01:00
Nex
ab63a02c9f
Code clean-ups
2022-02-02 19:18:47 +01:00
Nex
153f6cce02
Returning stix2 file name with iocs as well
2022-02-02 14:57:32 +01:00
Nex
47f9a0104c
Added a break for speed
2022-02-02 14:54:40 +01:00
Nex
bdad23feee
Refactored indicators to support multiple malware/collections per stix2 file
2022-02-02 14:53:26 +01:00
Nex
e2936c3d33
Added new check-bugreport command and modules
2022-02-02 00:09:53 +01:00
Nex
7b107edf1f
Bumped version
2022-02-01 17:54:01 +01:00
Nex
2d00dca5bd
Bumped version
2022-02-01 12:46:31 +01:00
Nex
eb5f07a75d
Updated copyright notice
2022-01-30 20:15:01 +01:00
Nex
c8185fdbd8
Small code clean-ups
2022-01-29 15:13:35 +01:00
Yallxe
43b1612dfe
Set utf-8 as an encoding for open()
...
Not every system uses 'utf-8' as a default encoding for opening files in Python.
Before you say that there must be a way to set default encoding in one line, no, there is not. At least, I didn't found a way to do this.
2022-01-29 12:18:18 +01:00
Nex
1c912f68fe
Bumped version
2022-01-28 22:25:41 +01:00
Nex
c3acc95e9e
Bumped version
2022-01-28 20:08:14 +01:00
Nex
25c6c03075
Added Getprop module and cleaned Files and Packages Android modules
2022-01-27 12:50:37 +01:00
Nex
cce9159eda
Adding indicator to matched results
2022-01-23 15:01:49 +01:00
Nex
e1211991aa
Bumped version
2022-01-23 14:17:43 +01:00
Nex
b35cd4bc73
Added support for context-aware indicators.
...
This way when a detection is logged, the user can know which STIX2
file was matched by the module
2022-01-21 16:26:58 +01:00
tek
e4e1716729
Bumped version
2022-01-20 15:28:42 +01:00
tek
083bc12351
Merge branch 'feature/check-file-path'
2022-01-20 15:19:37 +01:00
Nex
a6fd5fe1f3
Bumped version
2022-01-18 16:06:14 +01:00
Donncha Ó Cearbhaill
6fcd40f6b6
Fix use of global list instance as self.results variable
2022-01-18 15:53:05 +01:00
tek
38bb583a9e
Improves management of file path indicators
2022-01-18 15:50:31 +01:00
Donncha Ó Cearbhaill
48ec2d8fa8
Merge branch 'main' into tests
2022-01-18 15:30:40 +01:00
Nex
24be9e9570
Use default list of indicators files now that some default ones are automatically loaded
2022-01-14 16:26:14 +01:00
Nex
adbd95c559
Dots
2022-01-14 02:01:59 +01:00
Nex
8a707c288a
Bumped version
2022-01-14 01:53:10 +01:00
Nex
737007afdb
Bumped version
2022-01-12 16:18:13 +01:00
Nex
33efeda90a
Added TODO note
2022-01-12 16:10:15 +01:00
Nex
146f2ae57d
Renaming check function for consistency
2022-01-12 16:02:13 +01:00
Nex
11bc916854
Sorted imports
2022-01-11 16:02:44 +01:00
Donncha Ó Cearbhaill
54963b0b59
Update test PR to work with latest code, fix flake8
2022-01-07 17:03:53 +01:00
tek
28d57e7178
Add command to download latest public indicators
...
Squashed commit of the following:
commit c0d9e8d5d188c13e7e5ec0612e99bfb7e25f47d4
Author: Donncha Ó Cearbhaill <donncha.ocearbhaill@amnesty.org>
Date: Fri Jan 7 16:05:12 2022 +0100
Update name of indicators JSON file
commit f719e49c5f942cef64931ecf422b6a6e7b8c9f17
Author: Donncha Ó Cearbhaill <donncha.ocearbhaill@amnesty.org>
Date: Fri Jan 7 15:38:03 2022 +0100
Do not set indicators option on module if no indicators were loaded
commit a289eb8de936f7d74c6c787cbb8daf5c5bec015c
Author: Donncha Ó Cearbhaill <donncha.ocearbhaill@amnesty.org>
Date: Fri Jan 7 14:43:00 2022 +0100
Simplify code for loading IoCs
commit 0804563415ee80d76c13d3b38ffe639fa14caa14
Author: Donncha Ó Cearbhaill <donncha.ocearbhaill@amnesty.org>
Date: Fri Jan 7 13:43:47 2022 +0100
Add metadata to IoC entries
commit 97d0e893c1a0736c4931363ff40f09a030b90cf6
Author: tek <tek@randhome.io>
Date: Fri Dec 17 16:43:09 2021 +0100
Implements automated loading of indicators
commit c381e14df92ae4d7d846a1c97bcf6639cc526082
Author: tek <tek@randhome.io>
Date: Fri Dec 17 12:41:15 2021 +0100
Improves download-indicators
commit b938e02ddfd0b916fd883f510b467491a4a84e5f
Author: tek <tek@randhome.io>
Date: Fri Dec 17 01:44:26 2021 +0100
Adds download-indicators for mvt-ios and mvt-android
2022-01-07 16:38:04 +01:00
tek
681bae2f66
Bump version to v1.4.1
2021-12-27 16:19:25 +01:00
Donncha Ó Cearbhaill
8f88f872df
Bump to 1.4.0 to skip previously used PyPi versions
2021-12-17 12:52:06 +01:00
Donncha Ó Cearbhaill
2d16218489
Bump version to v1.3.2
2021-12-17 12:24:41 +01:00
Donncha Ó Cearbhaill
e80c02451c
Bump version to 1.3.1. Skipping 1.3 as a tag already exists
2021-12-16 19:27:58 +01:00
Donncha Ó Cearbhaill
45b31bb718
Add support for indentifying known malicious file paths over ADB
2021-12-16 19:16:24 +01:00
Donncha Ó Cearbhaill
3f3261511a
Add module to search for known malicious or suspicious configuration profiles
2021-12-16 17:57:26 +01:00
tek
a653cb3cfc
Implements loading STIX files from env variable MVT_STIX2
2021-12-10 16:11:59 +01:00
Nex
512f40dcb4
Standardized code with flake8
2021-11-19 15:27:51 +01:00
Nex
b3a464ba58
Removed unused imports
2021-11-19 14:54:53 +01:00
Nex
02bf903411
Bumped version
2021-10-30 13:40:25 +02:00
Nex
6d8de5b461
Bumped version
2021-10-23 13:51:44 +02:00
Nex
3165801e2b
Bumped version
2021-10-18 13:40:30 +02:00
Nex
9be393e3f6
Bumped version
2021-10-14 19:59:09 +02:00
Nex
169f5fbc26
Pyment to reST
2021-10-12 18:06:58 +02:00
Nex
660e208473
Bumped version
2021-09-28 15:40:26 +02:00
Nex
1f08572a6a
Bumped version
2021-09-22 17:32:22 +02:00
tek
ef2bb93dc4
Adds indicator check for android package name and file hash
2021-09-21 19:43:02 +02:00
Nex
8ad1bc7a2b
Bumped version
2021-09-16 10:45:26 +02:00
Nex
f1d039346d
Bumped version
2021-09-14 14:33:17 +02:00
Nex
3f9809f36c
Formatting docstrings
2021-09-11 02:39:33 +02:00
Nex
6da6595108
More docstrings
2021-09-10 20:09:37 +02:00
Nex
35dfeaccee
Re-ordered list of shortener domains
2021-09-10 15:21:02 +02:00
Nex
e5f2aa3c3d
Standardizing reST docstrings
2021-09-10 15:18:13 +02:00
Nex
0dea25d86e
Reverted version number to minor
2021-09-02 15:33:36 +02:00
Nex
505d3c7e60
Bumped version
2021-09-02 15:31:25 +02:00
Nex
a774577940
Handling some exceptions more gracefully
2021-09-01 13:41:21 +02:00
Nex
856a6fb895
Cleaning up some classes
2021-08-28 12:33:27 +02:00
Nex
e70054d0c2
Bumped version
2021-08-26 12:48:09 +02:00
Nex
c859b43220
Adding logo to iOS cli
2021-08-26 12:40:45 +02:00
Nex
75ee2db02e
Upgrading version
2021-08-26 12:36:37 +02:00
Nex
0005ad2abd
Removed unused imports
2021-08-21 15:50:12 +02:00
Nex
a16b0c12d2
Added shared help messages
2021-08-21 15:48:52 +02:00
Nex
27847bf16c
Added counter for loaded indicators
2021-08-18 13:18:34 +02:00
Nex
6a63256b5c
Added ability to import multiple STIX2 indicators files
2021-08-18 13:08:32 +02:00
Nex
96e4a9a4a4
Overhaul of mvt-ios modules
2021-08-16 10:50:35 +02:00
Nex
fdaf2fc760
Fixed WebkitSessionResourceLog module, still needs testing
2021-08-15 20:00:29 +02:00
Nex
5e6e4fa8d0
Added modules to extract details on configuration profiles from backup
2021-08-15 18:53:02 +02:00
Nex
cf630f7c2b
Fixed unused imports
2021-08-14 18:56:33 +02:00
Nex
076930c2c9
Added newline
2021-08-14 18:06:30 +02:00
Nex
8a91e64bb9
Catching gracefully if indicators file parse fails
2021-08-12 20:17:37 +02:00
Nex
4eb7a64614
Removed serial in declaration
2021-08-12 18:33:58 +02:00
Nex
f78c671885
Merge branch 'main' of https://github.com/j0k2r/mvt into j0k2r-main
2021-08-12 18:07:50 +02:00
Nex
8d93ab66c9
Improved logging around detection results
2021-08-12 12:56:12 +02:00
DL6ER
290776a286
Log if there was no detection made by the module
...
Signed-off-by: DL6ER <dl6er@dl6er.de>
2021-08-10 12:13:23 +02:00
Hamza Z
15c0d71933
Fix merge conflicts
2021-08-08 20:05:50 +02:00
Nex
e5f7727c80
Fixed typo ( closes : #157 )
2021-08-06 18:40:09 +02:00
Nex
76e6138d77
Catching check if root exception more grafully ( closes : #5 )
2021-08-05 08:49:34 +02:00
Nex
f011fd19e8
More explicit copyright and licensing notes
2021-08-01 21:11:08 +02:00
Nex
c966eea7e6
Sorted imports
2021-07-30 11:40:09 +02:00
Nex
60a2dbb860
Added module to parse WebKit ResourceLoadStatistics observations.db (ref: #133 )
2021-07-29 13:46:58 +02:00
tek
9e33ece3e9
Fixes issue with Manifest format
2021-07-27 01:23:22 +02:00
Nex
13ce55f4ac
Added some context to error message
2021-07-25 15:51:24 +02:00
emilien
3d9574682c
Fix WhatsApp thumb image
2021-07-25 14:13:10 +02:00
Nex
7fffef77ce
Automatically recover malformed sqlite3 databases ( closes : #25 #37 )
2021-07-25 11:47:05 +02:00
Nex
9d9b77e02e
Changing error message to info, to avoid confusion
2021-07-25 10:46:10 +02:00
tek
e69449a2f0
Fixes typos
2021-07-22 23:21:31 +02:00
Hamza Z
ccf0f3f18e
Add Android device serial specification
2021-07-21 13:17:58 +02:00
Nex
8d68e7a166
Better handling of special characters when saving a timeline
2021-07-21 11:53:41 +02:00
Nex
065a62cee1
First commit
2021-07-16 08:05:01 +02:00