MISP API
- Watcher.site_monitoring.misp.create_attributes(misp_api, event_id, site)
Create MISP IOCs attributes.
- Parameters:
misp_api – MISP Object API.
event_id – MISP Event ID.
site – Site Object.
- Returns:
- Watcher.site_monitoring.misp.create_misp_tags(misp_api)
Check if all tags exist in the MISP instance and if one is not, create it.
- Parameters:
misp_api – MISP Object API.
- Returns:
Tags created.
- Return type:
list
- Watcher.site_monitoring.misp.search_attributes(misp_api, event_id, attribute_value, site_id)
Search MISP Event Attributes.
- Parameters:
site_id – Site Object ID.
misp_api – MISP Object API.
event_id – MISP Event ID.
attribute_value – Attribute Value.
- Returns:
True if there is MISP Event Attributes.
- Return type:
bool
- Watcher.site_monitoring.misp.update_attributes(misp_api, site)
Update MISP IOCs attributes.
- Parameters:
misp_api – MISP Object API.
site – Site Object.
- Returns: