The repository has been migrated to vmware-labs: https://github.com/vmware-labs/galaxy-parser-for-misp
Utilities to parse galaxy clusters and resolve labels (including synonyms).
There is some string normalization (whitespace removal and compound words handling) that can be improved, but anything domain-specific is computed using MITRE galaxies.
./bin/query_galaxy.py -q sednit -g mitre-intrusion-set
> Mapping 'sednit' to: ['misp-galaxy:mitre-intrusion-set="APT28 - G0007"']./bin/query_galaxy.py -q apt28 -g mitre-intrusion-set
> Mapping 'apt28' to: ['misp-galaxy:mitre-intrusion-set="APT28 - G0007"']./bin/query_galaxy.py -q feodo -g malpedia
> Mapping 'feodo' to: ['misp-galaxy:malpedia="Emotet"']./bin/query_galaxy.py -q emotet -g malpedia
> Mapping 'emotet' to: ['misp-galaxy:malpedia="Emotet"']