gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2025-12-23 15:37:37 -08:00
Code Issues Packages Projects Releases Wiki Activity

scripts: migrate-rules: parse ATT&CK from tag name

Browse Source
This commit is contained in:
William Ballenthin
2020-06-21 17:59:16 -06:00
parent 8f097b883c
commit 5eddc9d3f4
1 changed files with 8 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
scripts/migrate-rules.py
View File

@@ -89,13 +89,15 @@ def main(argv=None):
rule.meta["namespace"] = row["proposed namespace"] rule.meta["namespace"] = row["proposed namespace"]
rule.meta["att&ck"] = [ if row["ATT&CK"] != 'n/a' and row["ATT&CK"] != "":
row["ATT&CK"] tag = row["ATT&CK"]
] name, _, id = tag.rpartition(" ")
tag = "%s [%s]" % (name, id)
rule.meta["att&ck"] = [tag]
rule.meta["mbc"] = [ if row["MBC"] != 'n/a' and row["MBC"] != "":
row["MBC"] tag = row["MBC"]
] rule.meta["mbc"] = [tag]
for rule in rules.values(): for rule in rules.values():
namespace = rule.meta.get("namespace") namespace = rule.meta.get("namespace")