#32 Add metadata attributes to analyzer description files

TheHive-Project · Apr 21, 2017 · 814d561 · 814d561
1 parent 7df7796
commit 814d561
Show file tree

Hide file tree

Showing 34 changed files with 102 additions and 0 deletions.
diff --git a/analyzers/Abuse_Finder/Abuse_Finder.json b/analyzers/Abuse_Finder/Abuse_Finder.json
@@ -1,6 +1,9 @@
 {
     "name": "Abuse_Finder",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "Abuse_Finder",
     "config": {
       "check_tlp": false,

diff --git a/analyzers/DNSDB/DNSDB_DomainName.json b/analyzers/DNSDB/DNSDB_DomainName.json
@@ -1,6 +1,9 @@
 {
     "name": "DNSDB_DomainName",
     "version": "1.1",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "DNSDB",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/DNSDB/DNSDB_IPHistory.json b/analyzers/DNSDB/DNSDB_IPHistory.json
@@ -1,6 +1,9 @@
 {
     "name": "DNSDB_IPHistory",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "DNSDB",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/DNSDB/DNSDB_NameHistory.json b/analyzers/DNSDB/DNSDB_NameHistory.json
@@ -1,6 +1,9 @@
 {
     "name": "DNSDB_NameHistory",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "DNSDB",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/DomainTools/DomainTools_ReverseIP.json b/analyzers/DomainTools/DomainTools_ReverseIP.json
@@ -1,6 +1,9 @@
 {
     "name": "DomainTools_ReverseIP",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "DomainTools",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/DomainTools/DomainTools_ReverseNameServer.json b/analyzers/DomainTools/DomainTools_ReverseNameServer.json
@@ -1,6 +1,9 @@
 {
     "name": "DomainTools_ReverseNameServer",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "DomainTools",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/DomainTools/DomainTools_ReverseWhois.json b/analyzers/DomainTools/DomainTools_ReverseWhois.json
@@ -1,6 +1,9 @@
 {
     "name": "DomainTools_ReverseWhois",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "DomainTools",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/DomainTools/DomainTools_WhoisHistory.json b/analyzers/DomainTools/DomainTools_WhoisHistory.json
@@ -1,6 +1,9 @@
 {
     "name": "DomainTools_WhoisHistory",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "DomainTools",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/DomainTools/DomainTools_WhoisLookup.json b/analyzers/DomainTools/DomainTools_WhoisLookup.json
@@ -1,6 +1,9 @@
 {
     "name": "DomainTools_WhoisLookup",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "DomainTools",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/DomainTools/DomainTools_WhoisLookupIP.json b/analyzers/DomainTools/DomainTools_WhoisLookupIP.json
@@ -1,6 +1,9 @@
 {
     "name": "DomainTools_WhoisLookup_IP",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "DomainTools",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/File_Info/File_Info.json b/analyzers/File_Info/File_Info.json
@@ -1,6 +1,9 @@
 {
     "name": "File_Info",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "config": {
         "check_tlp": false,
         "max_tlp": 3,

diff --git a/analyzers/Fortiguard/Fortiguard_URLCategory.json b/analyzers/Fortiguard/Fortiguard_URLCategory.json
@@ -1,6 +1,9 @@
 {
     "name": "Fortiguard_URLCategory",
     "version": "1.0",
+    "author": "Eric Capuano",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "dataTypeList": ["domain", "url"],
     "description": "URL Category by Fortiguard: checks the category of a specific URL or domain",
     "baseConfig": "Fortiguard",

diff --git a/analyzers/Hippocampe/Hippocampe_hipposcore.json b/analyzers/Hippocampe/Hippocampe_hipposcore.json
@@ -1,6 +1,9 @@
 {
     "name": "Hipposcore",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "description": "Hippocampe Score report: provides the last report for an IP, domain or a URL",
     "dataTypeList": ["ip", "domain", "fqdn", "url"],
     "baseConfig": "Hippocampe",

diff --git a/analyzers/Hippocampe/Hippocampe_more.json b/analyzers/Hippocampe/Hippocampe_more.json
@@ -1,6 +1,9 @@
 {
     "name": "HippoMore",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "description": "Hippocampe detailed report: provides the last detailed report for an IP, domain or a URL",
     "dataTypeList": ["ip", "domain", "fqdn", "url"],
     "baseConfig": "Hippocampe",

diff --git a/analyzers/JoeSandbox/JoeSandbox_File_Analysis_Inet.json b/analyzers/JoeSandbox/JoeSandbox_File_Analysis_Inet.json
@@ -1,6 +1,9 @@
 {
     "name": "JoeSandbox_File_Analysis_Inet",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "JoeSandbox",
     "config": {
         "check_tlp": false,

diff --git a/analyzers/JoeSandbox/JoeSandbox_File_Analysis_Noinet.json b/analyzers/JoeSandbox/JoeSandbox_File_Analysis_Noinet.json
@@ -1,6 +1,9 @@
 {
     "name": "JoeSandbox_File_Analysis_Noinet",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "JoeSandbox",
     "config": {
         "check_tlp": false,

diff --git a/analyzers/JoeSandbox/JoeSandbox_Url_Analysis.json b/analyzers/JoeSandbox/JoeSandbox_Url_Analysis.json
@@ -1,6 +1,9 @@
 {
     "name": "JoeSandbox_Url_Analysis",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "JoeSandbox",
     "config": {
         "check_tlp": false,

diff --git a/analyzers/MISP/MISP_Search.json b/analyzers/MISP/MISP_Search.json
@@ -1,6 +1,9 @@
 {
     "name": "MISP_Search",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "MISP",
     "config": {
         "check_tlp": false,

diff --git a/analyzers/MaxMind/MaxMind_GeoIP.json b/analyzers/MaxMind/MaxMind_GeoIP.json
@@ -1,6 +1,9 @@
 {
     "name": "MaxMind_GeoIP",
     "version": "2.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "config": {
         "check_tlp": false,
         "max_tlp": 3,

diff --git a/analyzers/MsgParser/Msg_Parser.json b/analyzers/MsgParser/Msg_Parser.json
@@ -1,6 +1,9 @@
 {
     "name": "Msg_Parser",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "config": {
         "check_tlp": false,
         "max_tlp": 3,

diff --git a/analyzers/Nessus/Nessus.json b/analyzers/Nessus/Nessus.json
@@ -1,6 +1,9 @@
 {
     "name": "Nessus",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "Nessus",
     "config": {
         "check_tlp": false

diff --git a/analyzers/OTXQuery/OTXQuery.json b/analyzers/OTXQuery/OTXQuery.json
@@ -1,6 +1,9 @@
 {
     "name": "OTXQuery",
     "version": "1.0",
+    "author": "Eric Capuano",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "description": "Query AlienVault OTX for IPs, Domains, URLs, or File Hashes",
     "dataTypeList": ["url", "domain", "file", "hash", "ip"],
     "baseConfig": "OTXQuery",

diff --git a/analyzers/PassiveTotal/PassiveTotal_Enrichment.json b/analyzers/PassiveTotal/PassiveTotal_Enrichment.json
@@ -1,6 +1,9 @@
 {
     "name": "PassiveTotal_Enrichment",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "PassiveTotal",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/PassiveTotal/PassiveTotal_Malware.json b/analyzers/PassiveTotal/PassiveTotal_Malware.json
@@ -1,6 +1,9 @@
 {
     "name": "PassiveTotal_Malware",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "PassiveTotal",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/PassiveTotal/PassiveTotal_Osint.json b/analyzers/PassiveTotal/PassiveTotal_Osint.json
@@ -1,6 +1,9 @@
 {
     "name": "PassiveTotal_Osint",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "PassiveTotal",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/PassiveTotal/PassiveTotal_Passive_Dns.json b/analyzers/PassiveTotal/PassiveTotal_Passive_Dns.json
@@ -1,6 +1,9 @@
 {
     "name": "PassiveTotal_Passive_Dns",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "PassiveTotal",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/PassiveTotal/PassiveTotal_Ssl_Certificate_Details.json b/analyzers/PassiveTotal/PassiveTotal_Ssl_Certificate_Details.json
@@ -1,6 +1,9 @@
 {
     "name": "PassiveTotal_Ssl_Certificate_Details",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "PassiveTotal",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/PassiveTotal/PassiveTotal_Ssl_Certificate_History.json b/analyzers/PassiveTotal/PassiveTotal_Ssl_Certificate_History.json
@@ -1,6 +1,9 @@
 {
     "name": "PassiveTotal_Ssl_Certificate_History",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "PassiveTotal",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/PassiveTotal/PassiveTotal_Unique_Resolutions.json b/analyzers/PassiveTotal/PassiveTotal_Unique_Resolutions.json
@@ -1,6 +1,9 @@
 {
     "name": "PassiveTotal_Unique_Resolutions",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "PassiveTotal",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/PassiveTotal/PassiveTotal_Whois_Details.json b/analyzers/PassiveTotal/PassiveTotal_Whois_Details.json
@@ -1,6 +1,9 @@
 {
     "name": "PassiveTotal_Whois_Details",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "baseConfig": "PassiveTotal",
     "config": {
         "check_tlp": true,

diff --git a/analyzers/PhishTank/PhishTank_CheckURL.json b/analyzers/PhishTank/PhishTank_CheckURL.json
@@ -1,6 +1,9 @@
 {
     "name": "PhishTank_CheckURL",
     "version": "1.0",
+    "author": "Eric Capuano",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "description": "Check URL against PhishTank to determine if it's a verified phishing site",
     "dataTypeList": ["url"],
     "baseConfig": "PhishTank",

diff --git a/analyzers/PhishingInitiative/PhishingInitiative_Lookup.json b/analyzers/PhishingInitiative/PhishingInitiative_Lookup.json
@@ -1,6 +1,9 @@
 {
     "name": "PhishingInitiative_Lookup",
     "version": "1.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "description": "Check URL against Phishing Initiative to determine if it's a verified phishing site",
     "dataTypeList": ["url"],
     "baseConfig": "PhishingInitiative",

diff --git a/analyzers/VirusTotal/VirusTotal_GetReport.json b/analyzers/VirusTotal/VirusTotal_GetReport.json
@@ -1,6 +1,9 @@
 {
     "name": "VirusTotal_GetReport",
     "version": "2.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "description": "VirusTotal get report: provides the last report of a file, hash, domain or ip",
     "dataTypeList": ["file", "hash", "domain", "ip"],
     "baseConfig": "VirusTotal",

diff --git a/analyzers/VirusTotal/VirusTotal_Scan.json b/analyzers/VirusTotal/VirusTotal_Scan.json
@@ -1,6 +1,9 @@
 {
     "name": "VirusTotal_Scan",
     "version": "2.0",
+    "author": "CERT-BDF",
+    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
+    "license": "AGPL-V3",
     "description": "VirusTotal scan file or url",
     "dataTypeList": ["file", "url"],
     "baseConfig": "VirusTotal",