tpotce/installer/data/ews/conf/ews.cfg

[MAIN]
homedir = /opt/ewsposter/
spooldir = /opt/ewsposter/spool/
logdir = /opt/ewsposter/log/
del_malware_after_send = false
send_malware = true
sendlimit = 400
contact = your_email_address
proxy =
ip =

[EWS]
ews = true
username = community-01-user
token = foth{a5maiCee8fineu7
rhost_first = https://community.sicherheitstacho.eu/ews-0.1/alert/postSimpleMessage
rhost_second = https://community.sicherheitstacho.eu/ews-0.1/alert/postSimpleMessage
ignorecert = false

[HPFEED]
hpfeed = false
host = 0.0.0.0
port = 0
channels = 0
ident = 0
secret= 0

[EWSJSON]
json = false
jsondir = /data/ews/

[GLASTOPFV3]
glastopfv3 = true
nodeid = glastopfv3-community-01
sqlitedb = /data/glastopf/db/glastopf.db
malwaredir = /data/glastopf/data/files/

[GLASTOPFV2]
glastopfv2 = false
nodeid =
mysqlhost =
mysqldb =
mysqluser =
mysqlpw =
malwaredir =

[KIPPO]
kippo = true
nodeid = kippo-community-01
mysqlhost = localhost
mysqldb = cowrie
mysqluser = cowrie
mysqlpw = s0m3Secr3T!
malwaredir = /data/cowrie/downloads/

[DIONAEA]
dionaea = true
nodeid = dionaea-community-01
malwaredir = /data/dionaea/binaries/
sqlitedb = /data/dionaea/log/dionaea.sqlite

[HONEYTRAP]
honeytrap = true
nodeid = honeytrap-community-01
newversion = true
payloaddir = /data/honeytrap/attacks/
attackerfile = /data/honeytrap/log/attacker.log

[RDPDETECT]
rdpdetect = false
nodeid =
iptableslog =
targetip =

[EMOBILITY]
eMobility = true
nodeid = emobility-community-01
logfile = /data/eMobility/log/centralsystemEWS.log

[CONPOT]
conpot = true
nodeid = conpot-community-01
logfile = /data/conpot/log/conpot.json
update ews.cfg 2016-01-11 08:56:14 +00:00			`[MAIN]`
			`homedir = /opt/ewsposter/`
			`spooldir = /opt/ewsposter/spool/`
			`logdir = /opt/ewsposter/log/`
			`del_malware_after_send = false`
			`send_malware = true`
tweaking, fixing 2016-08-07 17:13:07 +00:00			`sendlimit = 400`
update ews.cfg 2016-01-11 08:56:14 +00:00			`contact = your_email_address`
			`proxy =`
			`ip =`

			`[EWS]`
			`ews = true`
			`username = community-01-user`
			`token = foth{a5maiCee8fineu7`
			`rhost_first = https://community.sicherheitstacho.eu/ews-0.1/alert/postSimpleMessage`
			`rhost_second = https://community.sicherheitstacho.eu/ews-0.1/alert/postSimpleMessage`
Update ews.cfg 2017-02-24 11:20:08 +00:00			`ignorecert = false`
update ews.cfg 2016-01-11 08:56:14 +00:00
			`[HPFEED]`
			`hpfeed = false`
			`host = 0.0.0.0`
			`port = 0`
			`channels = 0`
			`ident = 0`
			`secret= 0`

			`[EWSJSON]`
			`json = false`
			`jsondir = /data/ews/`

			`[GLASTOPFV3]`
			`glastopfv3 = true`
			`nodeid = glastopfv3-community-01`
			`sqlitedb = /data/glastopf/db/glastopf.db`
			`malwaredir = /data/glastopf/data/files/`

			`[GLASTOPFV2]`
			`glastopfv2 = false`
			`nodeid =`
			`mysqlhost =`
			`mysqldb =`
			`mysqluser =`
			`mysqlpw =`
			`malwaredir =`

			`[KIPPO]`
			`kippo = true`
			`nodeid = kippo-community-01`
			`mysqlhost = localhost`
			`mysqldb = cowrie`
			`mysqluser = cowrie`
			`mysqlpw = s0m3Secr3T!`
			`malwaredir = /data/cowrie/downloads/`

			`[DIONAEA]`
			`dionaea = true`
			`nodeid = dionaea-community-01`
			`malwaredir = /data/dionaea/binaries/`
update dionaea log path 2016-06-01 14:08:23 +00:00			`sqlitedb = /data/dionaea/log/dionaea.sqlite`
update ews.cfg 2016-01-11 08:56:14 +00:00
			`[HONEYTRAP]`
			`honeytrap = true`
			`nodeid = honeytrap-community-01`
			`newversion = true`
			`payloaddir = /data/honeytrap/attacks/`
			`attackerfile = /data/honeytrap/log/attacker.log`

			`[RDPDETECT]`
			`rdpdetect = false`
			`nodeid =`
			`iptableslog =`
			`targetip =`

prevent race condition for ewsposter/ews.ip at first start 2016-02-08 12:37:02 +00:00			`[EMOBILITY]`
update emobility/ews logging 2016-02-11 14:52:19 +00:00			`eMobility = true`
			`nodeid = emobility-community-01`
			`logfile = /data/eMobility/log/centralsystemEWS.log`
add conpot support 2017-02-22 19:21:56 +00:00
			`[CONPOT]`
			`conpot = true`
			`nodeid = conpot-community-01`
			`logfile = /data/conpot/log/conpot.json`