Nothink blacklists - Githubissues

mlsecproject / combine

Tool to gather Threat Intelligence indicators from publicly available sources

https://www.mlsecproject.org/

GNU General Public License v3.0

650 stars 179 forks source link

Nothink blacklists #5

Closed alexcpsec closed 10 years ago

alexcpsec commented 10 years ago

There a few blacklist entries in this website here: http://www.nothink.org/honeypots.php

Also malware samples, even though we don't need those at the moment.

krmaxwell commented 10 years ago

I put two of them in the Known Threat Intelligence Feeds list to evaluate. Will check to see if any of the others are worthwhile.

alexcpsec commented 10 years ago

Thanks. I'm cleaning up some issues from the main project and moving them here because they are related to this side of things. I have not gotten to your chances at the wiki yet. :)

krmaxwell commented 10 years ago

:neckbeard:

alexcpsec commented 10 years ago

Add these both to IP and DOMAIN because the separation on the generator is messed up (OUTBOUND)

IP OUTBOUND:

http://www.nothink.org/blacklist/blacklist_malware_irc.txt

IP INBOUND:

http://www.nothink.org/blacklist/blacklist_ssh_day.txt