summarylogtreecommitdiffstats
diff options
context:
space:
mode:
authorpeeweep2019-10-02 02:23:45 +0800
committerpeeweep2019-10-02 02:23:45 +0800
commit45fe61681faf5b0183408106e71131ef7a25c421 (patch)
treea78c3a14a38e6ab49dc9d4fb1d891a569e5e0ec8
downloadaur-45fe61681faf5b0183408106e71131ef7a25c421.tar.gz
Init
-rw-r--r--.SRCINFO19
-rw-r--r--.gitignore6
-rw-r--r--PKGBUILD38
-rw-r--r--pymisp.patch22
4 files changed, 85 insertions, 0 deletions
diff --git a/.SRCINFO b/.SRCINFO
new file mode 100644
index 00000000000..7477e0836fc
--- /dev/null
+++ b/.SRCINFO
@@ -0,0 +1,19 @@
+pkgbase = sigma
+ pkgdesc = Generic Signature Format for SIEM Systems
+ pkgver = 0.12.1
+ pkgrel = 1
+ url = https://github.com/Neo23x0/sigma
+ arch = any
+ license = LGPL3
+ makedepends = python-setuptools
+ depends = python-yaml
+ depends = python-argparse
+ depends = python-urllib3
+ depends = python-pymisp
+ source = sigma-0.12.1.tar.gz::https://github.com/Neo23x0/sigma/archive/0.12.1.tar.gz
+ source = pymisp.patch
+ sha256sums = ebc46f1a017785c95662adcceb1bfca01208181be43616fae47f6da243ce4377
+ sha256sums = f6489322336e0e72d967fd22be157365676626a27e1f7da19df88d9efeff2eb7
+
+pkgname = sigma
+
diff --git a/.gitignore b/.gitignore
new file mode 100644
index 00000000000..5c4d6a54534
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,6 @@
+LICENSE.LGPL.txt
+*.log
+pkg/
+src/
+*.pkg.tar.xz
+*.tar.gz
diff --git a/PKGBUILD b/PKGBUILD
new file mode 100644
index 00000000000..eb9c55e50a8
--- /dev/null
+++ b/PKGBUILD
@@ -0,0 +1,38 @@
+# Maintainer: peeweep <peeweep at 0x0 dot ee>
+
+pkgname=sigma
+pkgver=0.12.1
+pkgrel=1
+pkgdesc="Generic Signature Format for SIEM Systems"
+arch=('any')
+url="https://github.com/Neo23x0/sigma"
+license=('LGPL3')
+depends=('python-yaml' 'python-argparse' 'python-urllib3' 'python-pymisp')
+makedepends=('python-setuptools')
+source=(
+ "${pkgname}-${pkgver}.tar.gz::${url}/archive/${pkgver}.tar.gz"
+ "pymisp.patch"
+)
+sha256sums=('ebc46f1a017785c95662adcceb1bfca01208181be43616fae47f6da243ce4377'
+ 'f6489322336e0e72d967fd22be157365676626a27e1f7da19df88d9efeff2eb7')
+
+prepare() {
+ cd "${pkgname}-${pkgver}"/tools
+ patch -p1 <"${srcdir}/pymisp.patch"
+}
+
+build() {
+ cd "${pkgname}-${pkgver}"/tools
+ python setup.py build
+}
+
+package() {
+ cd "${pkgname}-${pkgver}"/tools
+ python setup.py install --root="${pkgdir}" --skip-build
+ mv "${pkgdir}/usr/etc/" "${pkgdir}"
+
+ # Update License
+ install -Dm 644 "${srcdir}/${pkgname}-${pkgver}/LICENSE.LGPL.txt" "${pkgdir}/usr/share/licenses/${pkgname}/LICENSE"
+}
+
+# vim: ts=2 sw=2 et:
diff --git a/pymisp.patch b/pymisp.patch
new file mode 100644
index 00000000000..564b6723c37
--- /dev/null
+++ b/pymisp.patch
@@ -0,0 +1,22 @@
+diff --git a/sigma2misp b/sigma2misp
+--- a/sigma2misp
++++ b/sigma2misp
+@@ -4,8 +4,8 @@
+ import argparse
+ import pathlib
+ import urllib3
++import pymisp
+ urllib3.disable_warnings()
+-from pymisp import PyMISP
+
+ def create_new_event():
+ return misp.new_event(info=args.info)["Event"]["id"]
+@@ -37,7 +37,7 @@ if args.recursive:
+ else:
+ paths = [ pathlib.Path(sigma) for sigma in args.sigma ]
+
+-misp = PyMISP(args.url, args.key, args.insecure)
++misp = pymisp(args.url, args.key, args.insecure)
+ if args.event:
+ eventid = misp.get(args.event)["Event"]["id"]
+