The converter is a console application. You can invoke it from the command line.
Syntax
The converter uses the following syntax:
python main.py --misp_url <MISP_URL> --auth_key <AUTH_key_of_MISP_instance> [--full_update_interval_h <full_update_interval_hours>] [-nv] [-h]
On your computer, the command that runs Python may have a different name (for example, python3 or py).
Options
The following options are available:
--misp_url <MISP_URL>URL or IP address of a MISP instance.
If your MISP instance uses an SSL certificate to establish secure connections over HTTPS, then the URL must begin with the https:// protocol specifier. Otherwise, the converter will not be able to delete obsolete events from MISP.
--auth_key <AUTH_KEY_MISP_INSTANCE>AUTH key of a MISP instance.
The AUTH key is available in the MISP UI interface.
--full_update_interval_h <full_update_interval_hours>Interval (in hours) between full updates of Kaspersky Threat Data Feeds in MISP. For more information, see General workflow.
By default, this parameter is 12.
-nv, --no_verificationDisables the SSL certificate verification performed when connecting to a MISP instance by HTTPS.
Use this parameter if you use a self-signed certificate on your MISP instance. Otherwise, the converter will not be able to delete obsolete events from MISP.
This parameter is intended only for evaluation purposes. Using this parameter in a production environment may create security issues.
-h, --helpPrints a help message to the console and exits.