Skip to content

Python Container for creating EDLs to Block BinaryEdge Scanning

Notifications You must be signed in to change notification settings

0xSteady/minionsparser-python

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Description

This is a single use python container that runs and exits. It normalizes the data contained in the files published by Binary Edge at https://api.binaryedge.io/v1/minions and https://api.binaryedge.io/v1/minions-v6 into a format that can be consumed as an EDL by the Palo Alto NGFW. The output is written to /tmp/minionsparser/minions-v4.edl.txt and /tmp/minionsparser/minions-v6.edl.txt.

Requirements

This contianer is designed to run on Docker and requries either Docker or Docker Desktop.

Dependencies

This container depends on the script minionsparser.py which is maintained in https://github.com/0xSteady/minionsparser.py

Deployment and Use

  1. Clone the Repsitory
  2. Run build-image.sh
  3. Check /tmp/minionsparser for output
  4. Schedule the container to run at an interval of your choosing

Support Policy

This container is provided under an as-is, best effort, support policy. This container and all code should be seen as community supported. We will contribute our expertise as and when possible.

Palo Alto Networks does not provide technical support or help in using or troubleshooting the components of this project through its normal support options such as Palo Alto Networks support teams, or ASC (Authorized Support Centers) partners and backline support options. The underlying product(s) and product feature(s) used in conjunction with this container (Palo Alto Networks NGFW and EDLs) is supported by Palo Alto Networks according to support entitlements, but the support is only for the product functionality and not for help in deploying or using this container itself.