コード例 #1
0
    def __init__(self,id=None,namespace=None,method=None,type=None,source=None,ordinal_position=None,
                 start_datetime=None,complete_datetime=None,lastupdate_datetime=None,analysts=None,summary=None,comments=None,tools=None,
                 dynamic_analysis_metadata=None,report=None,analysis_environment=None):
        super(MaecAnalysis,self).__init__(id=id,method=method,type=type)
        set_id_method(IDGenerator.METHOD_UUID)
        if id is None:
            if namespace is not None:
                set_id_namespace(namespace)
            self.id_ = create_id(prefix='analysis')

        self.ordinal_position=ordinal_position
        self.start_datetime=start_datetime
        self.complete_datetime =complete_datetime
        self.lastupdate_datetime =lastupdate_datetime
        self.source=source
        if analysts is not None:
            self.analysts = Personnel()
            for contr in analysts():
                if isinstance(contr,Contributor):
                    self.analysts.append(contr)
        self.summary =summary
        if comments is not None:
            self.comments = CommentList()
            for comment in comments:
                self.comments.append(comment)
        if tools is not None:
            for tool in tools:
                if isinstance(tool,ToolInformation):
                    self.add_tool(tool)
        if dynamic_analysis_metadata is not None and isinstance(dynamic_analysis_metadata,DynamicAnalysisMetadata):
            self.dynamic_analysis_metadata =dynamic_analysis_metadata
        self.report =report
        if isinstance(analysis_environment,AnalysisEnvironment):
            self.analysis_environment=analysis_environment
コード例 #2
0
    def __init__(self,id=None,namespace=None,malware_instance_object_attributes=None,relationships=None,minor_variants=None,labels=None,findings_bundles=None,
                 development_environment=None,configuration_details=None,compatible_platform=None,analyses=None):
        super(MaecMalwareSubject, self).__init__(id=id,malware_instance_object_attributes=malware_instance_object_attributes)
        if id is None and namespace is not None:
            set_id_method(IDGenerator.METHOD_UUID)
            set_id_namespace(namespace)
            self.id_ = create_id(prefix="malware_subject")

        self.relationships =MalwareSubjectRelationshipList()
        if relationships is not None:
            for relationship in relationships:
                if isinstance(relationship,MalwareSubjectRelationship):
                    self.relationships.append(relationship)
        self.minor_variants = MinorVariants()
        if minor_variants is not None:
            for minor_variant in minor_variants:
                self.minor_variants.append(minor_variant)
        self.label=[]
        if labels is not None:
            for label in labels:
                self.label.append(VocabString(label))
        self.findings_bundles = FindingsBundleList()
        if findings_bundles is not None and isinstance(findings_bundles,FindingsBundleList):
            self.findings_bundles = findings_bundles
        self.development_environment = development_environment
        self.configuration_details =configuration_details
        self.compatible_platform =compatible_platform
        self.analyses = analyses
コード例 #3
0
 def __init__(self,id =None,namespace=None,defined_subject=None,schema_version="4.1",content_type=None,timestamp=None,malware_instance_object=None):
     if namespace is not None:
         set_id_method(IDGenerator.METHOD_UUID)
         set_id_namespace(namespace)
     super(MaecBundle,self).__init__(id =id,defined_subject=defined_subject,schema_version=schema_version,content_type=content_type,malware_instance_object=malware_instance_object)
     self.timestamp = timestamp
     self.collections = Collections()
     self.collections.action_collections = ActionCollectionList()
     self.collections.behavior_collections = BehaviorCollectionList()
     self.collections.object_collections = ObjectCollectionList()
     self.collections.candidate_indicator_collections = CandidateIndicatorCollectionList()
コード例 #4
0
    def __init__(self,id=None,timestamp=None,schema_version="2.1",malware_subjects=None,grouping_relationships=None,namespace=None):

        if namespace is not None:
            set_id_method(IDGenerator.METHOD_UUID)
            set_id_namespace(namespace)
        super(MaecPackage,self).__init__(id=id,schema_version=schema_version,timestamp=timestamp)
        if malware_subjects is not None:
            for malware_subject in malware_subjects:
                if isinstance(malware_subject,MaecMalwareSubject):
                    self.add_malware_subject(malware_subject=malware_subject)
        if grouping_relationships is not None:
            for grouping_relationship in grouping_relationships:
                if isinstance(grouping_relationship,GroupingRelationship):
                    self.add_grouping_relationship(grouping_relationship=grouping_relationship)
コード例 #5
0
 def __init__(self, id=None, idref=None, namespace=None,type=None,observation_method=None,frequency=None,event=None,description=None):
     super(CyboxEvent,self).__init__()
     set_id_method(IDGenerator.METHOD_UUID)
     if id is None and idref is None:
         if namespace is not None:
             set_id_namespace(namespace)
         self.id_ = create_id(prefix='event')
     self.actions = Actions()
     self.type_= type
     self.observation_method = observation_method
     self.idref =idref
     self.frequency = frequency
     self.event =[]
     if isinstance(event,CyboxEvent):
         self.event.append(event)
     self.description =description
     self._namespace =namespace
コード例 #6
0
 def __init__(self, id=None, idref=None, namespace=None,name=None,action_status=None,context=None,description=None,discovery_method=None,frequency=None,action_aliases=None,
              action_arguments=None,ordinal_position=None,timestamp=None,type=None,associated_objects=None,relationships=None
              ):
     super(CyboxAction, self).__init__()
     set_id_method(IDGenerator.METHOD_UUID)
     if id is None and idref is None:
         if namespace is not None:
             set_id_namespace(namespace)
         self.id_ = create_id(prefix='action')
     self.action_arguments = action_arguments
     self.action_aliases = action_aliases
     self.discovery_method = discovery_method
     self.name = name
     self.action_status = action_status
     self.associated_objects = associated_objects
     self.type_ = type
     self.timestamp = timestamp
     self.relationships =relationships
     self.ordinal_position = ordinal_position
     self.frequency= frequency
     self.description = description
     self.context = context
コード例 #7
0
ファイル: idgen_tests.py プロジェクト: kralca/mixbox
 def setUp(self):
     # Reset the generator's count before each test
     idgen.set_id_method(idgen.IDGenerator.METHOD_INT)
     gen = idgen._get_generator()
     gen.next_int = 1
     idgen.set_id_namespace(TEST_NS)
コード例 #8
0
ファイル: idgen_tests.py プロジェクト: cy-fir/mixbox
 def setUp(self):
     # Reset the generator's count before each test
     idgen.set_id_method(idgen.IDGenerator.METHOD_INT)
     gen = idgen._get_generator()
     gen.next_int = 1
     idgen.set_id_namespace(TEST_NS)
コード例 #9
0
 def __init__(self,item=None,id=None,idref=None,description=None,namespace=None):
     set_id_method(IDGenerator.METHOD_UUID)
     if namespace is not None:
         set_id_namespace(namespace)
     super(CyboxObservable,self).__init__(item=item,id_=id,idref=idref,title=None, description=description)