Comments (6)
Hello,
The MISP API is very simple to use :
Request is like this :
curl -X POST -k -H 'Accept: application/json' -H 'Authorization: API Key' -H 'Content-Type: application/json' -i 'https://URL/attributes/restSearch' --data '{"value":"foobar"}'
Mandatory parameters :
-
API Key (can be setup by user like VT API Key)
-
URL (can be setup by user like VT API Key)
-
value can be anything no need to specify the type like IP or URL or Domain.
Hope it helps :)
from mitaka.
Postman doesn't use native cURL. It uses XHR and requires wild-card permissions.
"permissions":["cookies", "storage", "http://*/*", "https://*/*"],
from mitaka.
Thank you for giving a feature request.
Could you give more detailed information?
(Please refer to #164. This kind of information is useful for implementation.)
from mitaka.
Thanks. I think there are 2 issues for implementing the feature.
-
Mitaka is a Chrome extension which opens a website based on a search/scan action.
POST /attributes/restSearch
returns a JSON response. It doesn't include a URL to a search result page.- It’s possible to show a notification based on the JSON but it’s off the rails IMO.
-
Cross-Origin XMLHttpRequest
- Chrome extension(content scripts) is subject to the Same-origin policy.
- Sending HTTP request to MISP instances is also subject to the restriction.
- It’s possible to set a wild-card permission (e.g.
https://*
) but I don’t like that because of security concerns.
Do you have any ideas to figure out these issue?
from mitaka.
Hello,
If you're using XHR yes we will have a problem with the SOP and CORS, but is it possible to do a CURL POST like postman or something else ?
In this case we don't have any origin, just an API call to the MISP server.
from mitaka.
Close this issue because it seems like there is no solution to solve the FR.
from mitaka.
Related Issues (20)
- [Feature Request] Consider prompt Y/N popup before opening 50+ tab HOT 4
- Context Menu not showing HOT 1
- Search on all not working - Firefox HOT 2
- [BUG] Extension does not select links correctly HOT 4
- [BUG] No right-Click Context-Menu HOT 3
- Could you upload mitaka to Microsoft Edge Addons? HOT 1
- [BUG] HOT 3
- [BUG] Console.log polluted HOT 1
- [bug] "Search domain/URL on all" opens all services even if they are disabled HOT 1
- [Feature request] Add more options to enable/disable searchers in settings HOT 2
- [1.0.0] lost content-security-policy HOT 10
- [BUG] Search all not working anymore for hashes HOT 1
- [Feature Request] Some ideas for additional sources and features. HOT 1
- [Feature Request] Include new source labs.inquest.net HOT 5
- [Feature Request] OpenSanctions HOT 2
- Windows 11 - Firefox 119.0 - No Context Menu Appears[BUG] HOT 2
- [Feature Request] criminalip.io HOT 1
- [Feature Request] Favicon Support HOT 1
- [Feature Request] Web-Check
- [Feature Request] opentip.kaspersky.com HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from mitaka.