|
|
|
|
@ -1,14 +1,17 @@
|
|
|
|
|
# This is an example OnionIngestor config file with some preconfigured configurations
|
|
|
|
|
# Storage Engines elasticsearch and telegram are configured
|
|
|
|
|
# This is an example ThreatIngestor config file with some preconfigured RSS
|
|
|
|
|
# sources, feeding extracted artifacts into a CSV file.
|
|
|
|
|
|
|
|
|
|
general:
|
|
|
|
|
# Run forever, check feeds once an hour.
|
|
|
|
|
daemon: True
|
|
|
|
|
sleep: 10
|
|
|
|
|
onion_validation: ([a-z2-7]{16,56}\.onion)
|
|
|
|
|
blacklist: pedo,porn,child
|
|
|
|
|
interestingKeywords: your,keywords,here
|
|
|
|
|
blacklist: blacklist,keywords,go,here
|
|
|
|
|
interestingKeywords: Interesting,Keywords,Go,Here
|
|
|
|
|
save-thread: no # Use a separate thread to save onions
|
|
|
|
|
TorController:
|
|
|
|
|
port: 9051
|
|
|
|
|
password: YOUR-TOR-CONTROLLER-PASSWORD
|
|
|
|
|
|
|
|
|
|
monitor:
|
|
|
|
|
filename: monitoring.txt
|
|
|
|
|
@ -54,41 +57,43 @@ operators:
|
|
|
|
|
module: html
|
|
|
|
|
timeout: 300
|
|
|
|
|
retries: 2
|
|
|
|
|
interestingKeywords: your,keywords,here
|
|
|
|
|
interestingKeywords: t.me,feed,rss,xml,atom,dataleak,breach,blog,ransomware,source code,data breach
|
|
|
|
|
socks5:
|
|
|
|
|
http: 'socks5h://127.0.0.1:9050'
|
|
|
|
|
https: 'socks5h://127.0.0.1:9050'
|
|
|
|
|
TorController:
|
|
|
|
|
port: 9051
|
|
|
|
|
password: your-tor-controller-password
|
|
|
|
|
|
|
|
|
|
- name: onionscan-go
|
|
|
|
|
module: onionscan
|
|
|
|
|
binpath: your-onionscan-binary-path
|
|
|
|
|
binpath: /home/tony/go/src/github.com/s-rah/onionscan/test123
|
|
|
|
|
# - name: simple-screenshot
|
|
|
|
|
# module: screenshot
|
|
|
|
|
# screenshots_path: null
|
|
|
|
|
#
|
|
|
|
|
# - name: onionscan-go
|
|
|
|
|
# module: onionscan
|
|
|
|
|
# binpath: /home/tony/go/bin/onionscan
|
|
|
|
|
#
|
|
|
|
|
|
|
|
|
|
- name: simple-screenshot
|
|
|
|
|
module: screenshot
|
|
|
|
|
screenshots_path: null
|
|
|
|
|
|
|
|
|
|
# - name: yara-rule
|
|
|
|
|
# module: yara
|
|
|
|
|
# filename: categories.yar
|
|
|
|
|
# base_score: 50
|
|
|
|
|
#
|
|
|
|
|
# - name: regex-match
|
|
|
|
|
# module: regex
|
|
|
|
|
# keywords: test,test2
|
|
|
|
|
# base_score: 20
|
|
|
|
|
# - name: yara-rule
|
|
|
|
|
# module: yara
|
|
|
|
|
# filename: categories.yar
|
|
|
|
|
# base_score: 50
|
|
|
|
|
#
|
|
|
|
|
# - name: regex-match
|
|
|
|
|
# module: regex
|
|
|
|
|
# keywords: test,test2
|
|
|
|
|
# base_score: 20
|
|
|
|
|
|
|
|
|
|
database_Engines:
|
|
|
|
|
- name: telegram-notifer #Simple Telegram notifier
|
|
|
|
|
# Simple telegram notifier
|
|
|
|
|
- name: telegram-notifer
|
|
|
|
|
module: telegram
|
|
|
|
|
chat_id: your-telegram-chat-id
|
|
|
|
|
token: your-telegram-token
|
|
|
|
|
chat_id: YOUR-TELEGRAM-CHAT
|
|
|
|
|
token: YOUR-TELEGRAM-TOKEN
|
|
|
|
|
|
|
|
|
|
- name: elasticsearch
|
|
|
|
|
module: elasticsearch
|
|
|
|
|
index: your-index-name
|
|
|
|
|
index: YOUR-ELASTICSEARCH-INDEX_NAME
|
|
|
|
|
port : 9200
|
|
|
|
|
host : 127.0.0.1
|
|
|
|
|
|
|
|
|
|
|
danieleperera
4 years ago