Archives
/
OnionIngestor
mirror of https://github.com/danieleperera/OnionIngestor
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
dependabot/pip/requirements/certifi-2022.12.7
dependabot/pip/requirements/lxml-4.9.1
dependabot/pip/requirements/urllib3-1.26.5
dependabot/pip/requirements/pyyaml-5.4
development-docker
master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'e31f149af0'
${ noResults }
OnionIngestor/example.yml

87 lines
2.4 KiB
YAML
Raw Blame History

# This is an example ThreatIngestor config file with some preconfigured RSS
# sources, feeding extracted artifacts into a CSV file.
general:
# Run forever, check feeds once an hour.
daemon: True
sleep: 10
onion_validation: ([a-z2-7]{16,56}\.onion)
blacklist: pedo,xxx,infant,loli,porn,child,abuse,sex,drug,cocaine,dope,zoo,daddy,daughter,boy,girl,young,muder,cocks,year,old
interestingKeywords: t.me,feed,rss,xml,atom,dataleak,breach,blog,ransomware,source code,data breach
elasticsearch:
index: darkweb
port : 9200
host : 127.0.0.1
sources:
# A few threat intel blogs to get you started!
- name: simple-text-file
module: simplefile
filename: onion_master_list.txt
# - name: source-gist
# module: gist
# url: https://gist.github.com/search?l=Text&q=.onion
# - name: source-reddit
# module: reddit
# url: https://api.pushshift.io/reddit/search/comment/?subreddit=onions&limit=1000000
# feed_type: messy
#
# - name: pastebin
# module: pastebin-account
# url: https://gist.github.com/search?l=Text&q=.onion
# feed_type: messy
#
# - name: hunchly-report
# module: gmail-hunchly
# url: https://gist.github.com/search?l=Text&q=.onion
# feed_type: messy
#
# - name: onionland-search
# module: collect-onions
# url: http://3bbaaaccczcbdddz.onion/discover
# feed_type: messy
#
# - name: torch
# module: collect-onions
# url: http://xmh57jrzrnw6insl.onion
# feed_type: messy
operators:
- name: simple-html
module: html
socks5:
http: 'socks5h://127.0.0.1:9050'
https: 'socks5h://127.0.0.1:9050'
TorController:
port: 9051
password: your-torcontroller-password-here
- name: simple-screenshot
module: screenshot
screenshots_path: null
- name: onionscan-go
module: onionscan
binpath: /home/tony/go/bin/onionscan
# - name: yara-rule
# module: yara
# filename: categories.yar
# base_score: 50
#
# - name: regex-match
# module: regex
# keywords: test,test2
# base_score: 20
notifiers:
# Simple telegram notifier
- name: telegram-notifer
module: telegram
chat_id:
token:
Reference in New Issue View Git Blame Copy Permalink