It would be cool if cuckoo could raise a signature when one of those domains is queried.
I hope this belongs to here since there is an external file needed and the path for this file needs to be changed in order to work. But I wanted to share it, so if anything needs to be changed I would be glad to change that.
The file can be downloaded with a cronjob every 5 minutes:
URLhaus provides a list of URLs that are serving malware. https://urlhaus.abuse.ch/
It would be cool if cuckoo could raise a signature when one of those domains is queried.
I hope this belongs to here since there is an external file needed and the path for this file needs to be changed in order to work. But I wanted to share it, so if anything needs to be changed I would be glad to change that.
The file can be downloaded with a cronjob every 5 minutes: