search

TheresAFewConors / Sooty

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.
GNU General Public License v3.0
1.3k stars 205 forks source link

Add ahmia.fi Blacklist #80

Open austinsonger opened 3 years ago

austinsonger commented 3 years ago

What is the feature that you are requesting? Detect a DNS Query of Onion Website with ahmia.fi blacklist

Additional information WEBSITE

CHild Abuse Onion URL HASHes

Is your feature request related to a problem? Please describe. AlienVault didn't detect this and it would be nice to use Sooty to automatically hash the onion URL and then check the blacklist to see if the Onion URL is known for child abuse material.

URLS

TheresAFewConors commented 3 years ago

I think this would be a great addition. Are you currently working on this or is this a request for it to be added? Either way is fine.

austinsonger commented 3 years ago

I think this would be a great addition. Are you currently working on this or is this a request for it to be added? Either way is fine.

Yeah i could. What section in Sooty would this be best to be placed?

TheresAFewConors commented 3 years ago

I think it would work under the reputation checker (option 3), since it essentially is performing that action. For now though, if you want to put it under its own option in the main menu (option 8 is free) it can then be moved later with the URL Scan option.

Thanks!