adding support for .yara and adding to threat report title

carbonblack · Mar 6, 2019 · 763a9a1 · 763a9a1
1 parent 9653a10
commit 763a9a1
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 3 deletions.
diff --git a/main.py b/main.py
@@ -40,7 +40,7 @@ def generate_feed_from_db():
                   'timestamp': int(time.mktime(time.gmtime())),
                   'link': '',
                   'id': 'binary_{0}'.format(binary.md5),
-                  'title': '',
+                  'title': binary.last_success_msg,
                   'description': binary.last_success_msg
                   }
 
@@ -83,7 +83,7 @@ def generate_yara_rule_map_hash(yara_rule_path):
 def generate_rule_map_remote(yara_rule_path):
     ret_dict = dict()
     for fn in os.listdir(yara_rule_path):
-        if fn.lower().endswith(".yar"):
+        if fn.lower().endswith(".yar") or fn.lower().endswith(".yara"):
             ret_dict[fn] = open(os.path.join(yara_rule_path, fn), 'rb').read()
 
     result = update_yara_rules_remote.delay(ret_dict)

diff --git a/tasks.py b/tasks.py
@@ -73,7 +73,7 @@ def generate_rule_map(yara_rule_path):
 
     rule_map = {}
     for fn in os.listdir(yara_rule_path):
-        if fn.lower().endswith(".yar"):
+        if fn.lower().endswith(".yar") or fn.lower().endswith(".yara"):
             fullpath = os.path.join(yara_rule_path, fn)
             if not os.path.isfile(fullpath):
                 continue