Merge branch 'hotfix/3.2.3'

.gitignore

@@ -6,6 +6,8 @@ thehive-templates/*.sh
 .idea
 .DS_Store
 .vscode
+.venv 
+venv
 
 Cortex-analyzers.iml
 

analyzers/GoogleVisionAPI/GoogleVisionAPI_WebDetection.py

@@ -1,4 +1,4 @@
-#!/usr/bin/python3
+#!/usr/bin/env python3
 # coding:utf-8
 
 from cortexutils.analyzer import Analyzer

analyzers/VirusTotal/virustotal.py

@@ -39,8 +39,10 @@ def __init__(self):
             "config.download_sample_if_highlighted", False
         )
         self.obs_path = None
-        self.proxies = self.get_param("config.proxy", None)
-        self.vt = Client(apikey=self.virustotal_key, proxy=self.proxies)
+        self.proxies = self.get_param("config.proxy.https", None)
+        if os.environ.get("REQUESTS_CA_BUNDLE"):
+            os.environ["SSL_CERT_FILE"] = os.environ["REQUESTS_CA_BUNDLE"]
+        self.vt = Client(apikey=self.virustotal_key, proxy=self.proxies, verify_ssl=None, trust_env=True)
 
     def get_file(self, hash):
         self.obs_path = "{}/{}".format(tempfile.gettempdir(), hash)
@@ -323,8 +325,9 @@ def run(self):
                         filepath = self.get_param("file", None, "File is missing")
                         with open(filepath, "rb") as f:
                             self.vt.scan_file(file=f, wait_for_completion=True)
-            except Exception:
-                self.report({"message": "Report not found."})
+            except Exception as e:
+                # self.report({"message": "Report not found."})
+                self.report({"message": str(e)})
                 return
 
             # download if hash, dangerous and not seen by av

responders/FalconCustomIOC/FalconCustomIOC.py

@@ -1,4 +1,4 @@
-#!/usr/bin/python2
+#!/usr/bin/env python
 # -*- coding: utf-8 -*-
 
 import requests

responders/KnowBe4/KnowBe4.py

@@ -1,4 +1,4 @@
-#!/usr/bin/python3
+#!/usr/bin/env python3
 # encoding: utf-8
 
 from cortexutils.responder import Responder