Hi, when using mispfetch.py to fetch FIRST MISP IOC (https://misp.first.org/events/restSearch), I get the following message in misp42splunk.log and the IOC cannot be fetched successfully, can someone tell me how can I fix that?
Thanks very much for any help.
2024-02-17 14:40:01,509 ERROR mispfetch.py set_log_level 608 [EV-101] logging level is set to INFO
2024-02-17 14:40:01,510 ERROR mispfetch.py set_log_level 609 [EV-102] PYTHON VERSION: 3.7.11 (default, Jan 29 2023, 10:24:09)
[GCC 9.1.0]
2024-02-17 14:40:01,511 INFO mispfetch.py log_info 586 [MF-050] mf_params {'misp_instance': 'default_misp', 'misp_restsearch': 'events', 'misp_http_body': None, 'misp_output_mode': 'native', 'expand_object':True, 'getioc': True, 'keep_galaxy': True, 'only_to_ids': False, 'pipesplit': False, 'limit': '1000', 'page': 1, 'attribute_limit': '1000', 'not_tags': None, 'tags': None}
2024-02-17 14:40:02,030 INFO mispfetch.py log_info 586 [MF-030] misp_instance default_misp restSearch events url https://misp.first.org/events/restSearch
2024-02-17 14:40:02,031 INFO mispfetch.py log_info 586 [MF-100] actual http body: {"last": "1h", "published": true, "returnFormat": "json", "withAttachments": false, "limit": "1000", "page": 1}
2024-02-17 14:40:03,295 INFO mispfetch.py log_info 586 [MC501] INFO POST request is successful. url=https://misp.first.org/events/restSearch, HTTP status=200
2024-02-17 14:40:03,296 INFO mispfetch.py log_info 586 [MF-200] response contains 1 records
2024-02-17 14:40:03,296 INFO mispfetch.py log_info 586 [MF-201] typelist contains 0 values
2024-02-17 14:40:03,296 INFO mispfetch.py log_info 586 [MF-202] results contains 0 records
2024-02-17 14:40:03,296 INFO mispfetch.py log_info 586 [MF-320] as getioc=True, returning event and their attributes (limited to 1000 attributes per event)
remg427
commented
3 months ago
Hi, when using mispfetch.py to fetch FIRST MISP IOC (https://misp.first.org/events/restSearch), I get the following message in misp42splunk.log and the IOC cannot be fetched successfully, can someone tell me how can I fix that? Thanks very much for any help.
2024-02-17 14:40:01,509 ERROR mispfetch.py set_log_level 608 [EV-101] logging level is set to INFO 2024-02-17 14:40:01,510 ERROR mispfetch.py set_log_level 609 [EV-102] PYTHON VERSION: 3.7.11 (default, Jan 29 2023, 10:24:09) [GCC 9.1.0] 2024-02-17 14:40:01,511 INFO mispfetch.py log_info 586 [MF-050] mf_params {'misp_instance': 'default_misp', 'misp_restsearch': 'events', 'misp_http_body': None, 'misp_output_mode': 'native', 'expand_object':True, 'getioc': True, 'keep_galaxy': True, 'only_to_ids': False, 'pipesplit': False, 'limit': '1000', 'page': 1, 'attribute_limit': '1000', 'not_tags': None, 'tags': None} 2024-02-17 14:40:02,030 INFO mispfetch.py log_info 586 [MF-030] misp_instance default_misp restSearch events url https://misp.first.org/events/restSearch 2024-02-17 14:40:02,031 INFO mispfetch.py log_info 586 [MF-100] actual http body: {"last": "1h", "published": true, "returnFormat": "json", "withAttachments": false, "limit": "1000", "page": 1} 2024-02-17 14:40:03,295 INFO mispfetch.py log_info 586 [MC501] INFO POST request is successful. url=https://misp.first.org/events/restSearch, HTTP status=200 2024-02-17 14:40:03,296 INFO mispfetch.py log_info 586 [MF-200] response contains 1 records 2024-02-17 14:40:03,296 INFO mispfetch.py log_info 586 [MF-201] typelist contains 0 values 2024-02-17 14:40:03,296 INFO mispfetch.py log_info 586 [MF-202] results contains 0 records 2024-02-17 14:40:03,296 INFO mispfetch.py log_info 586 [MF-320] as getioc=True, returning event and their attributes (limited to 1000 attributes per event)