#66 add summary() and new short report in Abuse Finder

2024-11-06 17:15:21 +00:00 · 2017-06-28 18:00:24 +02:00 · 2017-06-28 18:00:24 +02:00 · b24c05001a
commit b24c05001a
parent c80af57f0a
2 changed files with 9 additions and 1 deletions
--- a/analyzers/Abuse_Finder/Abuse_Finder.json
+++ b/analyzers/Abuse_Finder/Abuse_Finder.json
@ -1,6 +1,6 @@
 {
    "name": "Abuse_Finder",
-    "version": "1.0",
+    "version": "2.0",
    "author": "CERT-BDF",
    "url": "https://github.com/CERT-BDF/Cortex-Analyzers",
    "license": "AGPL-V3",
--- a/analyzers/Abuse_Finder/abusefinder.py
+++ b/analyzers/Abuse_Finder/abusefinder.py
@ -14,6 +14,14 @@ logging.getLogger("tldextract").setLevel(logging.CRITICAL)

 class AbuseFinderAnalyzer(Analyzer):

+    def summary(self, raw):
+
+        taxonomies = []
+        if raw['abuse_finder'] and raw['abuse_finder'].get('abuse'):
+            for abuse in raw['abuse_finder']['abuse']:
+                taxonomies.append(self.build_taxonomy("info", "Abuse_Finder", "Address", abuse))
+            return {"taxonomies": taxonomies}
+
    def abuse(self):
        if self.data_type == "ip":
            return ip_abuse(self.getData())