This repository was archived by the owner on Aug 9, 2023. It is now read-only.
Home
The CIF Software Development Kit (SDK) for Python contains library code and examples designed to enable developers to build applications using CIF.
from pprint import pprint
from cifsdk import search, submit, ping
if not ping():
print("Server Unavailable...")
for i in search({'indicator': 'example.com'}):
pprint(i)
rv = submit({'indicator': 'example.com', 'tags': 'phishing', 'group': 'everyone'})Getting value from the project? Is it saving you time and money? Take out a small subscription to keep it going!
$ sudo apt-get install -y python-dev python-pip
$ pip install 'cifsdk>=4.0.0a1,<5.0'These plugins are minimal and run out of the box
$ export CIF_TOKEN=1234
$ export CIF_REMOTE=http://localhost:5000
$ cif -q example.com
$ cif -q example.com --format csv
$ cif -q example.com --format table
$ cif -q example.com --format jsonThe REST API doc is now available via your local CIF instance using Swagger. Simply navigate to http://localhost:5000 using your browser to begin.
import logging
from cifsdk.client.http import HTTP as Client
from pprint import pprint
cli = Client(token='1234',
remote='https://localhost',
verify_ssl=False)
ret = cli.indicators_search('example.com')
filters = {
"indicator": "example.com",
"confidence": 4,
"probability": 84,
}
ret = cli.indicators_search(filters=filters)
pprint(ret)import logging
import json
from cifsdk.client.http import HTTP as Client
data = '{"indicator":"example4.com","tlp":"amber","confidence":"4","tags":"malware","provider":"example.com","group":"everyone"}'
data = json.loads(data)
cli = Client(token='1234',
remote='https://localhost',
verify_ssl=False)
ret = cli.indicators_create(data)
print("submission id: {0}".format(ret))from cifsdk.client.http import HTTP as Client
...
ret = cli.ping()
print("roundtrip: %s ms" % ret)