certtools / intelmq

IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
https://docs.intelmq.org/latest/
GNU Affero General Public License v3.0
976 stars 296 forks source link

Output bot to call external program #1565

Open ghost opened 4 years ago

ghost commented 4 years ago

Create an output bot which calls an external program and gives the event data via standard out to it. Add usual formatting options (json, raw yes/not, hierarchical, etc)

aaronkaplan commented 4 years ago

Just be sure that no command injections are possible.

ghost commented 4 years ago

For stdin/stdout I think command injection is impossible, except you pass the data to a shell