alienvault-otx / apiv2 Goto Github PK

Hey, When running /ApiV2/PythonExample/threatcrowd.py, I get:

requests.exceptions.SSLError: [Errno 1] _ssl.c:510: error:14077438:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error

requests==2.2.1
python2.7

In the documentation it says that "Results for entities will include a "votes" field",
but a file request does not return this field (tried approximately 30 file hashes).
At start I notices there is no verdict in the UI also, but then I discovered a file that
is malicious according to the UI but there is no votes field in the api response,
What makes this call unreliable for determine whether the file is malicious or not.

Hello,

In the description it mentioned about filehashes search. What is the API point for MD5 hash search?

Thanks!

Is the

https://www.threatcrowd.org/searchApi/v2/

Still functioning? Performing a search using this vs AlienVault directly I get very different results

e.g.
https://www.threatcrowd.org/searchApi/v2/ip/report/?ip=185.53.177.31
vs
https://otx.alienvault.com/indicator/ip/185.53.177.31

It looks like the threatcrowd domain was changed to ci-www.threatcrowd.org.
Is this correct?

To reduce the possible number of request on your server, you should split the hashes array return in json by the api in two array: malicious hashes flag by AV and the one not flag by AV. It would look more like the website.

This is a suggestion :) Nice job by the way.

What happened with the site www.threatcrowd.org?
Has the site been moved anywhere?
I'd like to run a similar site. How can I contact the author?