Init

4 files changed, 85 insertions, 0 deletions

diff --git a/.SRCINFO b/.SRCINFO
new file mode 100644
index 000000000000..7477e0836fcc
--- /dev/null
+++ b/.SRCINFO
@@ -0,0 +1,19 @@
+pkgbase = sigma
+	pkgdesc = Generic Signature Format for SIEM Systems
+	pkgver = 0.12.1
+	pkgrel = 1
+	url = https://github.com/Neo23x0/sigma
+	arch = any
+	license = LGPL3
+	makedepends = python-setuptools
+	depends = python-yaml
+	depends = python-argparse
+	depends = python-urllib3
+	depends = python-pymisp
+	source = sigma-0.12.1.tar.gz::https://github.com/Neo23x0/sigma/archive/0.12.1.tar.gz
+	source = pymisp.patch
+	sha256sums = ebc46f1a017785c95662adcceb1bfca01208181be43616fae47f6da243ce4377
+	sha256sums = f6489322336e0e72d967fd22be157365676626a27e1f7da19df88d9efeff2eb7
+
+pkgname = sigma
+
diff --git a/.gitignore b/.gitignore
new file mode 100644
index 000000000000..5c4d6a545345
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,6 @@
+LICENSE.LGPL.txt
+*.log
+pkg/
+src/
+*.pkg.tar.xz
+*.tar.gz
diff --git a/PKGBUILD b/PKGBUILD
new file mode 100644
index 000000000000..eb9c55e50a8a
--- /dev/null
+++ b/PKGBUILD
@@ -0,0 +1,38 @@
+# Maintainer: peeweep <peeweep at 0x0 dot ee>
+
+pkgname=sigma
+pkgver=0.12.1
+pkgrel=1
+pkgdesc="Generic Signature Format for SIEM Systems"
+arch=('any')
+url="https://github.com/Neo23x0/sigma"
+license=('LGPL3')
+depends=('python-yaml' 'python-argparse' 'python-urllib3' 'python-pymisp')
+makedepends=('python-setuptools')
+source=(
+  "${pkgname}-${pkgver}.tar.gz::${url}/archive/${pkgver}.tar.gz"
+  "pymisp.patch"
+)
+sha256sums=('ebc46f1a017785c95662adcceb1bfca01208181be43616fae47f6da243ce4377'
+  'f6489322336e0e72d967fd22be157365676626a27e1f7da19df88d9efeff2eb7')
+
+prepare() {
+  cd "${pkgname}-${pkgver}"/tools
+  patch -p1 <"${srcdir}/pymisp.patch"
+}
+
+build() {
+  cd "${pkgname}-${pkgver}"/tools
+  python setup.py build
+}
+
+package() {
+  cd "${pkgname}-${pkgver}"/tools
+  python setup.py install --root="${pkgdir}" --skip-build
+  mv "${pkgdir}/usr/etc/" "${pkgdir}"
+
+  # Update License
+  install -Dm 644 "${srcdir}/${pkgname}-${pkgver}/LICENSE.LGPL.txt" "${pkgdir}/usr/share/licenses/${pkgname}/LICENSE"
+}
+
+# vim: ts=2 sw=2 et:
diff --git a/pymisp.patch b/pymisp.patch
new file mode 100644
index 000000000000..564b6723c374
--- /dev/null
+++ b/pymisp.patch
@@ -0,0 +1,22 @@
+diff --git a/sigma2misp b/sigma2misp
+--- a/sigma2misp
++++ b/sigma2misp
+@@ -4,8 +4,8 @@
+ import argparse
+ import pathlib
+ import urllib3
++import pymisp
+ urllib3.disable_warnings()
+-from pymisp import PyMISP
+ 
+ def create_new_event():
+     return misp.new_event(info=args.info)["Event"]["id"]
+@@ -37,7 +37,7 @@ if args.recursive:
+ else:
+     paths = [ pathlib.Path(sigma) for sigma in args.sigma ]
+ 
+-misp = PyMISP(args.url, args.key, args.insecure)
++misp = pymisp(args.url, args.key, args.insecure)
+ if args.event:
+     eventid = misp.get(args.event)["Event"]["id"]
+