-
This repo from Threatfox covers a lot of malware hits if you are going to use Censys:
https://github.com/censys-workshop/threatfox-censys/blob/main/fingerprints.yaml
I also like to search within t…
-
Hello,
I'm trying to automatically extract IOCs from malware families. However it looks like the limit parameter is preventing successful returns when it's higher than the number of IOCs over the l…
-
We want to regularly query Threatfox, in particular https://threatfox.abuse.ch/browse/tag/c2/ through their API.
If the host respond and the hash is not in top-1M we can then flag it as suspicious, a…
-
## Description
According to ThreatFox statistics page there has been 21 IOCs of type sha3_384_hash added to ThreatFox, but the connector does not support it.
## Environment
1. Ubuntu 22.04LTS…
-
- [ ] DomainTools
- [ ] InQuest Labs API - https://labs.inquest.net/docs/#inquest-labs-api
- [ ] CRT.sh
- [ ] Google Safe Browsing (Lookup v4 API) [https://developers.google.com/safe-browsing/v4/l…
31453 updated
1 month ago
-
Hi, community. I like to use feeds in csv format for importing to MISP - it simple and easy to use and managment, I think.
Some time ago I recognized interesting threat intelligence community - Threa…
-
Please unblock damro.lk from Threat Intelligence Feeds.
It's a furniture retailer's website.
-
### Contact Details
twitter.com/abuse_ch
### What organization is using the sid range?
abuse.ch
### SID Ranges
I was able to find the following ranges in use as of 2022-01-29
| Low End | Hi…
-
### Expected behavior
When running a server fetch, I want it to grab all the feeds and download them.
```
runuser -u www-data -- /var/www/MISP/app/Console/cake Server fetchFeed 2 all
```
### Ac…
-
### Support Questions
Hi there,
I am using the "2.4.187", and I have enabled Threatfox as a feed.
I would like to start fetching the events from this feed, but I do not want to fetch all old ev…