CtrlK
BlogDocsLog inGet started
Tessl Logo

tessl/pypi-pymisp

Python API for MISP threat intelligence platform enabling programmatic access to MISP instances.

Overall
score

96%

Overview
Eval results
Files

object-generators.mddocs/

Object Generators & Tools

Specialized object creation tools for generating structured threat intelligence objects from various data sources including files, network data, and external analysis reports.

Capabilities

File Analysis Objects

Generate objects from file analysis and malware samples.

class FileObject(AbstractMISPObjectGenerator):
    """Generate file objects from file data."""
    
    def __init__(self, filepath: str = None, **kwargs) -> None: ...
    
    def generate_attributes(self) -> None: ...

class PEObject(AbstractMISPObjectGenerator):
    """Generate PE file analysis objects."""
    
    def __init__(self, filepath: str, **kwargs) -> None: ...

class ELFObject(AbstractMISPObjectGenerator):  
    """Generate ELF file analysis objects."""
    
    def __init__(self, filepath: str, **kwargs) -> None: ...

class MachOObject(AbstractMISPObjectGenerator):
    """Generate Mach-O file analysis objects."""
    
    def __init__(self, filepath: str, **kwargs) -> None: ...

Network Analysis Objects

Generate objects from network traffic and communications data.

class URLObject(AbstractMISPObjectGenerator):
    """Generate URL analysis objects."""
    
    def __init__(self, url: str, **kwargs) -> None: ...

class DomainIPObject(AbstractMISPObjectGenerator):
    """Generate domain-IP relationship objects."""
    
    def __init__(self, domain: str, **kwargs) -> None: ...

class EmailObject(AbstractMISPObjectGenerator):
    """Generate email analysis objects."""
    
    def __init__(self, filepath: str = None, **kwargs) -> None: ...

External Integration Objects

Generate objects from external threat intelligence sources.

class VTReportObject(AbstractMISPObjectGenerator):
    """Generate VirusTotal report objects."""
    
    def __init__(self, apikey: str, indicator: str, **kwargs) -> None: ...

def make_binary_objects(filepath: str, **kwargs) -> List['MISPObject']:
    """Create multiple binary analysis objects from file."""

Usage Examples

File Object Generation

from pymisp.tools import FileObject, PEObject

# Generate basic file object
file_obj = FileObject('malware.exe')
misp_obj = file_obj.get_object()

# Generate PE-specific object
pe_obj = PEObject('malware.exe')
pe_misp_obj = pe_obj.get_object()

# Add to event
misp.add_object(event_id, misp_obj)
misp.add_object(event_id, pe_misp_obj)

Network Object Generation

from pymisp.tools import URLObject, DomainIPObject

# Create URL object
url_obj = URLObject('http://malware.example.com/payload')
misp.add_object(event_id, url_obj.get_object())

# Create domain-IP object  
domain_obj = DomainIPObject('malware.example.com')
misp.add_object(event_id, domain_obj.get_object())

Install with Tessl CLI

npx tessl i tessl/pypi-pymisp

docs

attribute-management.md

core-api.md

data-models.md

event-management.md

index.md

object-generators.md

object-management.md

search-query.md

server-sync.md

tag-taxonomy.md

user-org-management.md

tile.json