-
could you make attack map like those below?
https://threatmap.checkpoint.com/ThreatPortal/livemap.html
http://threatmap.fortiguard.com/
jjjan updated
7 years ago
-
I get a lot of events each day just from mass scans, which makes it hard to filter out the more useful events.
Would it be possible to ignore any scan on ports that are not in use to decrease the num…
-
## ENVIRONMENT
```
OS and Version: Linux ubuntu-ad 6.8.0-35-generic
Python Version: 3.12.3
MobSF Version: v4.0.3 (since v3.7.6)
```
## EXPLANATION OF THE ISSUE
```
Any IPA scanning gener…
-
Hello!
Subj
E.g.:
```
SYSLOG_SERVER=192.168.1.15:514
SYSLOG_SERVER_1=192.168.1.16:514
SYSLOG_SERVER_2=192.168.1.17:514
...
LOGSTASH_SERVER=192.168.1.15:5000
LOGSTASH_SERVER_1=192.168.…
-
## ENVIRONMENT
```
OS and Version: Win11 21H2 22000.16963.
Python Version: python 3.8.8
MobSF Version: v3.6.3Beta
```
## EXPLANATION OF THE ISSUE
```
I can check some old version of this…
-
@stamparm @MikhailKasimov
Listed in [maltrail-malware-domains.txt](https://raw.githubusercontent.com/stamparm/aux/master/maltrail-malware-domains.txt)
It seems to be a legit URL shortener: https…
zhg7 updated
2 months ago
-
When I scan IPs range sensor shutdown and need scan again... Where is problem? Is there timeout for sensor or what?
-
Is adding these sources feasible?
https://otx.alienvault.com/api/
https://www.spamhaus.org/drop/ DROP & EDROP
Open Threat eXchange (otx.alienvault.com) requires users to have an API key (free).…
-
**Question**
Hey @stamparm, just a small question:
Why are DNS quieries with type 28 filtered out in this line?
https://github.com/stamparm/maltrail/blob/f0bc2e97186d9ce06f49e3863bc0023414486727/…
-
**Question**
I am getting a very high false positive for suspicious domains in particular domains ending in xyz, cc, ws
Is there any way i can disable suspicious domain detection for multiple clie…