Cortex Analyzers Repository
Go to file
2021-01-15 16:41:20 +01:00
.github Update issue templates 2019-02-16 21:56:55 +01:00
analyzers use ldap3, add port/search_field, move templates 2021-01-15 16:41:20 +01:00
images update for Cortex 2 2018-06-07 04:15:59 +02:00
responders Fixed if statement, requirements and indentation 2019-04-16 08:56:26 +02:00
thehive-templates use ldap3, add port/search_field, move templates 2021-01-15 16:41:20 +01:00
utils WIP: Manalyze FileInfo submodule, first simple version 2018-08-16 10:57:29 +02:00
.drone.yml #453 Fix Docker build process 2019-04-05 14:15:29 +02:00
.gitignore Added pyvenv files to gitignore, added dependencies to requirements file, moved module list to __init__.py 2018-03-29 08:35:21 +02:00
AUTHORS Update, sort and fix 2018-06-08 19:55:12 +02:00
code_of_conduct.md add code of conduct 2017-06-14 11:40:22 -04:00
COMPONENTS add COMPONENTS file 2017-01-30 19:14:06 +01:00
LICENSE AGPL license 2017-01-30 18:26:07 +01:00
README.md Update links on cortexutils README and setup.py files 2017-12-20 11:12:20 +01:00
update_catalogs.sh #450 Add docker image catalogs 2019-04-05 12:01:18 +02:00

The following repository is used by TheHive Project to develop and store Cortex analyzers.

Analyzers can be written in any programming language supported by Linux such as Python, Ruby, Perl, etc. Refer to the How to Write and Submit an Analyzer page for details on how to write and submit one.

To configure analyzers, please read the Cortex Analyzer Requirements Guide.

License

Unless specified otherwise, analyzers are released under the AGPL (Affero General Public License).

If an analyzer is released by its author under a different license, the subfolder corresponding to it will contain a LICENSE file.

Updates

Information, news and updates are regularly posted on TheHive Project Twitter account and on the blog.

Contributing

We welcome your contributions for new analyzers that can take away the load off overworked fellow analysts or improvements to existing ones. Please feel free to fork the code, play with it, make some patches and send us pull requests using issues.

Important: To make it easy for every one, please send one pull request per analyzer. It will help us reviewing the code, and merging as soon as feasible.

We do have a Code of conduct. Make sure to check it out before contributing.

Support

if you encounter an issue with an analyzer or would like to request a new one or an improvement to an existing analyzer, please open an issue on the analyzers' dedicated GitHub repository.

Alternatively, if you need to contact the project team, send an email to support@thehive-project.org.

Community Discussions

We have set up a Google forum at https://groups.google.com/a/thehive-project.org/d/forum/users. To request access, you need a Google account. You may create one using a Gmail address or without one.

Website

https://thehive-project.org/