Skip to content

misp-stix v2.4.196 - Summer realease including changes on the command-line feature and a few fixes

Latest
Latest
Compare
Choose a tag to compare
@chrisr3d chrisr3d released this 21 Aug 14:54
· 6 commits to main since this release
v2.4.196
7220ab8
This commit was signed with the committer’s verified signature.
chrisr3d Christian Studer
GPG key ID: 6BBED1B63A6D639F
Learn about vigilant mode.

v2.4.196 - 2024-08-21

Included in the release

  • A few arguments to the STIX 2 to MISP parsers have been added to give the option to set directly some of the MISP Event fields or add more contextualisation to the data that is converted to MISP
  • Overall improvement of the command-line feature, supporting more arguments - some are directly related to the above mentioned new arguments
  • Updated documentation explaining the newest features

Add

  • [misp_stix_converter] Global version argument added
  • [tests] Tests for STIX 2.x Bundle import with specific producer or title set by user
  • [misp_stix_converter] Added title argument to prefix Event info field with some title
  • [readme] Added instructions on the producer argument
  • [misp_stix_converter, stix2 import] Added producer argument to add in the Events converted from STIX 2.x the name of the producer
  • [readme] Added more instructions and examples on the command-line feature usage
  • [readme] Additional instructions on the installation process
  • [misp_stix_converter] Extended the command line feature to allow to push Events on MISP from the conversion of STIX 2.x Bundles

Chg

  • [package] Updated version
  • [stix2 import] Excluding the producer from the event info title
  • [poetry] Bumped latest versions in lock file
  • [stix2 import] Better handling of the STIX2 Parser class arguments
  • [stix2 import] Added separation in the generic Event info field, between the title and information on the producer
  • [stix2 import] Adding producer - when provided - to the generic info field
  • [poetry] Bumped lock file with the latest versions
  • [poetry] Bumped lock file with the latest dependencies versions
  • [readme] Updated command-line import feature arguments instructions
  • [misp_stix_converter] Getting the current user organisation uuid to use it for the Custom Clusters creation
  • [readme] Updated instruction for the command line feature

Fix

  • [poetry] Tentative to fix lock file
  • [misp_stix_converter] Fixed some argparse help values
  • [tests] Fixed tests for STIX 2.x Bundles imported as MISP Events where producer and info values are set by user
  • [stix2 import] Fixed generic info field to use the title set by users
  • [stix2 export] Avoiding issues with EventReport referencing attributes or objects exported as Custom STIX 2 Object
  • [stix2 import] Avoiding issue with getattr which isn't able to check whether a __ prefixed variable exists or not
  • [misp_stix_converter] Handling cases where url or authentication key is not provided to connect to MISP
  • [stix2 import] Added missing producer argument
  • [misp_stix_converter] Updated command-line import arguments
  • [stix2 import] Added bundle id to the generic Event info field used when there is no Report or Grouping to parse
  • [misp_stix_converter] Quick fixes on the command-line feature
  • [misp_stix_converter] Providing default value to the version and distribution arguments with the command line feature
  • [stix2 import] Avoiding issues with the Event tags variable
Assets 2
Loading