def add_information_source_items(reference_item, source_id_item, schema_version_item, incident): insrc = InformationSource() if reference_item: for item in reference_item.split(';'): insrc.add_reference(item.strip()) if source_id_item or schema_version_item: insrc.tools = ToolInformationList() if source_id_item: insrc.identity = Identity() insrc.identity.name = source_id_item tool = ToolInformation() tool.name = "veris2stix" tool.vendor = "MITRE" tool.version = __version__ insrc.tools.append(tool) if schema_version_item: tool = ToolInformation() tool.name = "VERIS schema" tool.vendor = "Verizon" tool.version = schema_version_item insrc.tools.append(tool) incident.information_source = insrc
def create_discovery_method_tool(self,name=None,type=None,description=None,vendor=None,version=None,service_pack=None,hashes=None): tool = ToolInformation() tool.name=name if type is not None: for typename in type : tool.type_.append(String(value=typename)) if description is not None: tool.description = StructuredText() tool.description.value=description tool.vendor =vendor tool.version =version tool.service_pack =service_pack if hashes is not None: for hashob in hashes: tool.tool_hashes._set_hash(hashob[0],hashob[1]) return tool