Skip to content
This repository has been archived by the owner on Feb 4, 2024. It is now read-only.

chramostatm/Stix-Taxi-To-EDL

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
.gitignore
.gitignore
 
 
GeneralFromJSON.py
GeneralFromJSON.py
 
 
GeneralFromServer.py
GeneralFromServer.py
 
 
HardCoded.py
HardCoded.py
 
 
README.md
README.md
 
 
REFERENCES.md
REFERENCES.md
 
 

Repository files navigation

STIX/TAXII Feed to EDL

Project Inspiration

This project was spawned from a business need to pull a STIX/TAXII feeds for IOCs (Indicatiors of Compromise) from specific entities to an EDL (External Dynamic List) to block IPs and Domains

Learning steps

Explaining Each File

HardCoded.py

  • Meant for partial understanding how the json/ stix api is set up and work on how to get the URLs/IPs GeneralFromJSON.py
  • Core functionality from Hard coded but generalized to any stix 2.1 JSON Bundle
  • The STIX JSON that I choose cointained ~75k IPs. With output redirection the time is ~78 seconds to complete. Without output redirection the time to complete was ~158 seconds. GeneralFromServer.py
  • example adding in the taxii2client package and connecting to a hosted server (TODO)

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages