- Improved handling of authentication failure with the MISP server. (3c38012)
- Improved handling of authentication failure with the Pandora server. (b86314a)
- The configuration file is now loaded with read_file which returns an exception when the configuration file is not found. Closes #6.
- [MISP lookup] The SHA1 values are now submitted in a single query;
- [MISP lookup] A new argument lets the user specify if the final output must be returned as a list of PyMISP Objects instead of the plain json output;
- [MISP lookup] Added possibility to specify the return format (json, stix2, csv, etc.);
- [core] Errors are always displayed, even in non-verbose mode.
- improved files handling and exit codes;
- improved checks on the loaded database;
- route errors from subprocess.run() to /dev/null.
Fixed an issue related to the function responsible of returning the version of the software.
- various improvements to the command line;
- new argument in order to specify if the output must be more verbose;
- new argument in order to display the version of the software;
- improved the creation of the default folders (for the YARA rules, Bloom filter and Cuckoo filter).
It is now possible to export the database of pyHIDS in a Bloom or a Cuckoo filter.
Various improvements and minor fixes.
YARA can now be used in order to look for malicious files in the database of pyHIDS.
Small fixes and improvements.
A MISP server can be queried in order to find potentially malicious files from the checksums in the database of pyHIDS.
Generating a RSA signature and verifying the integrity of the database is now optional: you can use an other tool.
Major improvements to the arguments parser.