Tree [fd5e72] /
History



File Date Author Commit
bot 2012-12-26 pat pat [fd5e72] initial check-in
phish 2012-12-26 pat pat [fd5e72] initial check-in
README.txt 2012-12-26 pat pat [fd5e72] initial check-in

Read Me

This is the documentation for example scripts used to submit data to the APWG repositories. Although marked as 'examples' the scripts should perform flawlessly if used to submit data.

I. Overview

Some of the repositories receive IODEF-formatted XML via an HTTP/SSL interface.
Data is encoded in 'wrappers', like:
	IODEF-Document
		Incident-#1
			Time, Criticality, other data and an ...
			EventData for #1, which includes:
			    One of:
				PhraudReport (for reporting phishing lures)
				BotDetails (for reporting infected systems)
			    Time, Date, and other Information

To submit data to these places requires a three-step operation:
	1. Encode your data into an appropriate PhraudReport or BotDetails. 
	2. Encode your data into an IETF IODEF (RFC5070) IODEF-Document.
	3. Submit to the APWG.

This contents of this directory:
phish
	askquestions_phish.py
	iodef_phish_config.ini
	phish_fromStruct.py
	phish_fromMessage.py
	phishStruct_test.py
bot
	askQuestions.py   
	botStruct.pc       
	botStruct_test.py     
	processBot.py
	iodef       
	iodef_bot_config.ini   
	tiredBot.py
	lazyBot.py

common
	buildIODEF.py
	send_to_apwg.py

iodef


II. Data submission using a template



III. Data submission using a function