예제 #1
0
class Twitter(Affiliation):
    _alias_ = 'AffiliationTwitter'
    number = IntegerEntityField('twitter.number',
                                display_name='Twitter Number')
    screenname = StringEntityField('twitter.screen-name',
                                   display_name='Screen Name')
    friendcount = IntegerEntityField('twitter.friendcount',
                                     display_name='Friend Count')
    fullname = StringEntityField('person.fullname', display_name='Real Name')
예제 #2
0
class IPv4Address(Entity):
    _category_ = 'Infrastructure'
    _namespace_ = 'maltego'

    # Main properties ---------------------------//
    host_id = IntegerEntityField('id', display_name='Host ID')
    workspace_id = IntegerEntityField('workspace_id', display_name='Workspace ID')

    # Icon Properties ---------------------------//
    origin_tool = StringEntityField('origin_tool', display_name='Origin Tool', decorator=getOriginTool)
    tool_icon = StringEntityField('tool_icon', display_name='Tool Icon')
예제 #3
0
class Netblock(Entity):
    _category_ = 'Infrastructure'
    _namespace_ = 'maltego'

    # Main properties ---------------------------//
    name = StringEntityField('name', display_name='Workspace Name',
                                    description='The name of the workspace. This is the unique identifier \
                                                for determining which workspace is being accessed.')
    workspace_id = IntegerEntityField('workspace_id', display_name='ID', 
                                    description='The primary key used to identify this object in the database.')
    boundary = StringEntityField('boundary', display_name='Boundary', 
                                    description='Comma separated list of IP ranges (in various formats) \
                                                and IP addresses that users of this workspace are allowed to interact \
                                                with if limit_to_network is true.')
    description = StringEntityField('description', display_name='Description', 
                                    description='Long description that explains the purpose of this workspace.')
    owner_id = StringEntityField('owner_id', display_name='Owner ID', 
                                    description='ID of the user who owns this workspace.')
    limit_to_network = BooleanEntityField('limit_to_network', display_name='Limit to Network', 
                                    description='true to restrict the hosts and services in this workspace \
                                                to the IP addresses listed in boundary')
    import_fingerprint = BooleanEntityField('import_fingerprint', display_name='Import fingerprint', 
                                    description='Identifier that indicates if and where this workspace was imported from.')
    created_at = StringEntityField('created_at', display_name='Created at')
    updated_at = StringEntityField('updated_at', display_name='Updated at')

    # Icon Properties ---------------------------//
    origin_tool = StringEntityField('origin_tool', display_name='Origin Tool', decorator=getOriginTool)
    tool_icon = StringEntityField('tool_icon', display_name='Tool Icon')
예제 #4
0
class CircularArea(Entity):
    _category_ = 'Locations'
    area_circular = StringEntityField('area.circular',
                                      display_name='Circular Area',
                                      is_value=True)
    latitude = FloatEntityField('latitude', display_name='Latitude')
    longitude = FloatEntityField('longitude', display_name='Longitude')
    radius = IntegerEntityField('radius', display_name='Radius (m)')
예제 #5
0
class MISPEvent(Entity):
    _category_ = 'MISP'
    _namespace_ = 'misp'

    icon_url = 'file://MISP_maltego/resources/images/MISPEvent.png'
    uuid = StringEntityField('uuid', display_name='UUID', matching_rule=MatchingRule.Loose)
    id = IntegerEntityField('id', display_name='id', is_value=True)
    # date = DateEntityField('type.date', display_name='Event date')
    info = StringEntityField('info', display_name='Event info', matching_rule=MatchingRule.Loose)
예제 #6
0
 class TestEntity(Entity):
     str = StringEntityField('type.str')
     int = IntegerEntityField('type.int')
     float = FloatEntityField('type.float')
     bool = BooleanEntityField('type.bool')
     enum = EnumEntityField('type.enum', choices=[2, 1, 0])
     date = DateEntityField('type.date')
     datetime = DateTimeEntityField('type.datetime')
     timespan = TimeSpanEntityField('type.timespan')
     color = ColorEntityField('type.color')
예제 #7
0
class MISPObject(Entity):
    _category_ = 'MISP'
    _namespace_ = 'misp'

    icon_url = 'file://MISP_maltego/resources/images/MISPObject.png'
    uuid = StringEntityField('uuid', display_name='UUID')
    event_id = IntegerEntityField('event_id', display_name='Event ID')  # LATER remove this once MISP provides objects correctly when requesting only the object.  See https://github.com/MISP/MISP/issues/3801
    name = StringEntityField('name', display_name='Name', is_value=True)
    meta_category = StringEntityField('meta_category', display_name='Meta Category', matching_rule=MatchingRule.Loose)
    description = StringEntityField('description', display_name='Description', matching_rule=MatchingRule.Loose)
    comment = StringEntityField('comment', display_name='Comment', matching_rule=MatchingRule.Loose)
예제 #8
0
class MISPObject(Entity):
    _category_ = 'MISP'
    _namespace_ = 'misp'

    icon_url = 'file://MISP_maltego/resources/images/MISPObject.png'
    uuid = StringEntityField('uuid', display_name='UUID')
    event_id = IntegerEntityField('event_id', display_name='Event ID')
    name = StringEntityField('name', display_name='Name', is_value=True)
    meta_category = StringEntityField('meta_category', display_name='Meta Category')
    description = StringEntityField('description', display_name='Description')
    comment = StringEntityField('comment', display_name='Comment')
예제 #9
0
class MISPEvent(Entity):
    _category_ = 'MISP'
    _namespace_ = 'misp'

    icon_url = 'file://MISP_maltego/resources/images/MISPEvent.png'
    uuid = StringEntityField('uuid',
                             display_name='UUID',
                             matching_rule=MatchingRule.Loose)
    id = IntegerEntityField('id', display_name='id', is_value=True)
    # date = DateEntityField('type.date', display_name='Event date')
    info = StringEntityField('info',
                             display_name='Event info',
                             matching_rule=MatchingRule.Loose)
    # threat_level = EnumEntityField('type.enum', choices=['Undefined', 'Low', 'Medium', 'High'], display_name='Threat Level')
    # analysis = EnumEntityField('type.enum', choices=['Initial', 'Ongoing', 'Completed'])
    # org = StringEntityField('type.str', display_name='Organisation')
    count_attributes = IntegerEntityField('count_attributes',
                                          display_name="# attributes",
                                          matching_rule=MatchingRule.Loose)
    count_objects = IntegerEntityField('count_objects',
                                       display_name="# objects",
                                       matching_rule=MatchingRule.Loose)
예제 #10
0
class AS(Entity):
    _category_ = 'Infrastructure'
    _alias_ = 'ASNumber'
    number = IntegerEntityField('as.number',
                                display_name='AS Number',
                                is_value=True)
예제 #11
0
class MXRecord(DNSName):
    priority = IntegerEntityField('mxrecord.priority', display_name='Priority')
예제 #12
0
class Website(Entity):
    _category_ = 'Infrastructure'
    fqdn = StringEntityField('fqdn', display_name='Website', is_value=True)
    ssl_enabled = BooleanEntityField('website.ssl-enabled',
                                     display_name='SSL Enabled')
    ports = IntegerEntityField('ports', display_name='Ports')