Update

Author: MislavReversingLabs

CHANGELOG.md

@@ -84,4 +84,10 @@ v2.10.0 (2025-06-23)
 
 ### Improvements
 - **Scenarios and Workflows** notebooks:
-  - Added the `TAXII_data_filtering` notebook.
+  - Added the `TAXII_data_filtering` notebook.
+
+
+v2.10.0 (2025-10-01)
+-------------------
+- **Scenarios and Workflows** notebooks:
+  - Fixed minor issues in the `advanced_search_using_network_indicators.ipynb` notebook.

Scenarios and Workflows/advanced_search_using_network_indicators.ipynb

@@ -26,9 +26,14 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 1,
+   "execution_count": 2,
    "id": "59ab69c2",
-   "metadata": {},
+   "metadata": {
+    "ExecuteTime": {
+     "end_time": "2025-09-30T22:33:28.895480027Z",
+     "start_time": "2025-09-30T22:33:28.832413744Z"
+    }
+   },
    "outputs": [],
    "source": [
     "from ReversingLabs.SDK.ticloud import AdvancedSearch\n",
@@ -51,38 +56,54 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 2,
+   "execution_count": 9,
    "id": "66ed0816",
-   "metadata": {},
+   "metadata": {
+    "ExecuteTime": {
+     "end_time": "2025-09-30T22:38:20.732097504Z",
+     "start_time": "2025-09-30T22:38:20.726257601Z"
+    }
+   },
    "outputs": [],
    "source": [
     "import json\n",
     "import re\n",
     "\n",
-    "# ---------------------------------------------------\n",
-    "# Configuration\n",
-    "# ---------------------------------------------------\n",
-    "SERVER = \"<server>\"\n",
-    "USERNAME = \"username\"\n",
-    "PASSWORD = \"password\"\n",
-    "USER_AGENT= \"ReversingLabs SDK Cookbook v2.9.0\""
+    "\n",
+    "CREDENTIALS = json.load(open('credentials.json'))\n",
+    "USERNAME = CREDENTIALS.get(\"ticloud\").get(\"username\")\n",
+    "PASSWORD = CREDENTIALS.get(\"ticloud\").get(\"password\")\n",
+    "USER_AGENT = json.load(open('../user_agent.json'))[\"user_agent\"]\n",
+    "HOST = \"https://data.reversinglabs.com\"\n",
+    "\n",
+    "config = {\n",
+    "    \"host\": HOST,\n",
+    "    \"username\": USERNAME,\n",
+    "    \"password\": PASSWORD,\n",
+    "    \"user_agent\": USER_AGENT\n",
+    "}\n"
    ]
   },
   {
    "cell_type": "markdown",
    "id": "d5beb2d8",
    "metadata": {},
    "source": [
-    "# 3. Filter query string\n",
+    "/# 3. Filter query string\n",
     "This code block defines a Python dictionary named QUERY_STRING that sets up the parameters for an API query to the ReversingLabs platform. When running this in a Jupyter Notebook, it forms the basis for the search request by specifying filters, pagination, and the desired response format.\n",
     "Addiditonal options available here: https://docs.reversinglabs.com/SpectraIntelligence/API/MalwareHunting/tca-0320"
    ]
   },
   {
    "cell_type": "code",
-   "execution_count": 3,
+   "execution_count": 10,
    "id": "791783de",
-   "metadata": {},
+   "metadata": {
+    "ExecuteTime": {
+     "end_time": "2025-09-30T22:38:25.551755262Z",
+     "start_time": "2025-09-30T22:38:25.511153908Z"
+    }
+   },
    "outputs": [],
    "source": [
     "QUERY_STRING = 'firstseen:[2025-02-20T00:00:00Z TO *] classification:[malicious, suspicious] filetype:EXE uri:\"https://api.telegram.org/bot*\" size:[0 TO *]'\n",
@@ -102,9 +123,14 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 4,
+   "execution_count": 11,
    "id": "dbdf8739",
-   "metadata": {},
+   "metadata": {
+    "ExecuteTime": {
+     "end_time": "2025-09-30T22:38:28.047287138Z",
+     "start_time": "2025-09-30T22:38:28.035230497Z"
+    }
+   },
    "outputs": [],
    "source": [
     "\n",
@@ -130,9 +156,14 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 5,
+   "execution_count": 12,
    "id": "067c7c95",
-   "metadata": {},
+   "metadata": {
+    "ExecuteTime": {
+     "end_time": "2025-09-30T22:38:30.576112670Z",
+     "start_time": "2025-09-30T22:38:30.567537234Z"
+    }
+   },
    "outputs": [],
    "source": [
     "def recursive_search_for_urls(obj, prefix):\n",
@@ -179,15 +210,7 @@
     "    query_string = QUERY_STRING\n",
     "    url_prefix = extract_url_prefix_from_string_query(query_string)\n",
     "    \n",
-    "    search_client = AdvancedSearch(\n",
-    "        host=SERVER,\n",
-    "        username=USERNAME,\n",
-    "        password=PASSWORD,\n",
-    "        verify=True,\n",
-    "        proxies=None,\n",
-    "        user_agent=\"USER_AGENT\",\n",
-    "        allow_none_return=False\n",
-    "    )\n",
+    "    search_client = AdvancedSearch(**config)\n",
     "\n",
     "    try:\n",
     "        results = search_client.search_aggregated(\n",
@@ -206,15 +229,7 @@
     "        print(\"No samples found.\")\n",
     "        return\n",
     "\n",
-    "    actions = AdvancedActions(\n",
-    "        host=SERVER,\n",
-    "        username=USERNAME,\n",
-    "        password=PASSWORD,\n",
-    "        verify=True,\n",
-    "        proxies=None,\n",
-    "        user_agent=\"USER_AGENT\",\n",
-    "        allow_none_return=False\n",
-    "    )\n",
+    "    actions = AdvancedActions(**config)\n",
     "\n",
     "    minimal_results = []\n",
     "    enrichment_success_count = 0\n",

user_agent.json

@@ -1,3 +1,3 @@
 {
-  "user_agent": "ReversingLabs SDK Cookbook v2.10.0"
+  "user_agent": "ReversingLabs SDK Cookbook v2.11.0"
 }