-
Can you please remove the following line from the APT10 Yara rules file?
`hash255 = "DA5EE020BEF41DC95C3532CBAA1EA8F4"
`
This is a legit, signed binary by Microsoft (VT [results](https://virust…
-
[root@instance-1 GOSINT]# ./gosint --serve localhost:8020
_____ _______ _____ _____ _____ _____
…
-
Let's use Open threatExchange
https://github.com/AlienVault-Labs/OTX-Python-SDK
Basically if an env var exists for OTX API Key... go ahead and do this if CloudTrail happens to be enabled.
-
Is this correct, shouldn't that be the white-listed entries?
**Skynet: [INFO] Skynet Up To Date - v5.1.1**
**admin@AC88U:/jffs# cat shared-Skynet-whitelist**
_https://www.abuseat.org/iotcc.txt
h…
fdx90 updated
7 years ago
-
Hi,
I've been using an otx-misp script to poll from OTX and push to MISP for the past few months. However, recently, I realised that the OTX events were added in MISP without any attributes (from …
CQRuu updated
7 years ago
-
Let's use AlienVault ipv4 reputation data as an example data structure.
CSV file
```
60.173.9.26#3#2#Scanning Host;Malicious Host#CN#Hefei#31.863899231,117.280799866#11;3
```
it has multiple delim…
-
When opening an iframe in for example OSSIM and then doing a Threapinch lookup by hovering over the threatpinch will show over the initial page (and not over the iframe).
gd1eh updated
7 years ago
-
Looks like some !important styles are overriding the ThreatPinch styles. Looking into a fix.
-
Hi,
I am currently testing CIF (master branch) and I have issues with cif-smrt. Its updates are quite slow and with source like Alienvault I get an error after ~15min while CPU usage stay really lo…
-
when you are producing to much queries to the toe Alienvault API you will be limited and answers will be delayed. This creates high loads on Graylog and most lookups fails with the following:
```
…