| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  | [MAIN] | 
					
						
							|  |  |  | homedir = /opt/ewsposter/ | 
					
						
							|  |  |  | spooldir = /opt/ewsposter/spool/ | 
					
						
							|  |  |  | logdir = /opt/ewsposter/log/ | 
					
						
							|  |  |  | del_malware_after_send = false | 
					
						
							|  |  |  | send_malware = false | 
					
						
							|  |  |  | sendlimit = 500 | 
					
						
							|  |  |  | contact = your_email_address | 
					
						
							| 
									
										
										
										
											2020-10-15 09:14:30 +00:00
										 |  |  | proxy = None | 
					
						
							|  |  |  | ip_int = None | 
					
						
							|  |  |  | ip_ext = None | 
					
						
							| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  | [EWS] | 
					
						
							|  |  |  | ews = true | 
					
						
							|  |  |  | username = community-01-user | 
					
						
							|  |  |  | token = foth{a5maiCee8fineu7 | 
					
						
							|  |  |  | rhost_first = https://community.sicherheitstacho.eu/ews-0.1/alert/postSimpleMessage | 
					
						
							|  |  |  | rhost_second = https://community.sicherheitstacho.eu/ews-0.1/alert/postSimpleMessage | 
					
						
							|  |  |  | ignorecert = false | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | [HPFEED] | 
					
						
							| 
									
										
										
										
											2019-03-15 15:59:02 +00:00
										 |  |  | hpfeed = %(EWS_HPFEEDS_ENABLE)s | 
					
						
							|  |  |  | host = %(EWS_HPFEEDS_HOST)s | 
					
						
							|  |  |  | port = %(EWS_HPFEEDS_PORT)s | 
					
						
							|  |  |  | channels = %(EWS_HPFEEDS_CHANNELS)s | 
					
						
							|  |  |  | ident = %(EWS_HPFEEDS_IDENT)s | 
					
						
							|  |  |  | secret= %(EWS_HPFEEDS_SECRET)s | 
					
						
							| 
									
										
										
										
											2019-03-13 22:04:07 +00:00
										 |  |  | # path/to/certificate for tls broker - or "false" for non-tls broker | 
					
						
							| 
									
										
										
										
											2019-03-15 15:59:02 +00:00
										 |  |  | tlscert = %(EWS_HPFEEDS_TLSCERT)s | 
					
						
							| 
									
										
										
										
											2019-03-13 22:04:07 +00:00
										 |  |  | # hpfeeds submission format: "ews" (xml) or "json" | 
					
						
							| 
									
										
										
										
											2019-03-15 15:59:02 +00:00
										 |  |  | hpfformat = %(EWS_HPFEEDS_FORMAT)s | 
					
						
							| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  | [EWSJSON] | 
					
						
							|  |  |  | json = false | 
					
						
							|  |  |  | jsondir = /data/ews/json/ | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | [GLASTOPFV3] | 
					
						
							|  |  |  | glastopfv3 = true | 
					
						
							|  |  |  | nodeid = glastopfv3-community-01 | 
					
						
							|  |  |  | sqlitedb = /data/glastopf/db/glastopf.db | 
					
						
							|  |  |  | malwaredir = /data/glastopf/data/files/ | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | [COWRIE] | 
					
						
							|  |  |  | cowrie = true | 
					
						
							|  |  |  | nodeid = cowrie-community-01 | 
					
						
							|  |  |  | logfile = /data/cowrie/log/cowrie.json | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | [DIONAEA] | 
					
						
							|  |  |  | dionaea = true | 
					
						
							|  |  |  | nodeid = dionaea-community-01 | 
					
						
							|  |  |  | malwaredir = /data/dionaea/binaries/ | 
					
						
							|  |  |  | sqlitedb = /data/dionaea/log/dionaea.sqlite | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | [HONEYTRAP] | 
					
						
							|  |  |  | honeytrap = true | 
					
						
							|  |  |  | nodeid = honeytrap-community-01 | 
					
						
							|  |  |  | newversion = true | 
					
						
							|  |  |  | payloaddir = /data/honeytrap/attacks/ | 
					
						
							|  |  |  | attackerfile = /data/honeytrap/log/attacker.log | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | [EMOBILITY] | 
					
						
							| 
									
										
										
										
											2018-08-08 11:58:26 +00:00
										 |  |  | eMobility = false | 
					
						
							| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  | nodeid = emobility-community-01 | 
					
						
							|  |  |  | logfile = /data/emobility/log/centralsystemEWS.log | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | [CONPOT] | 
					
						
							|  |  |  | conpot = true | 
					
						
							|  |  |  | nodeid = conpot-community-01 | 
					
						
							| 
									
										
										
										
											2018-05-07 10:17:33 +00:00
										 |  |  | logfile = /data/conpot/log/conpot*.json | 
					
						
							| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  | [ELASTICPOT] | 
					
						
							| 
									
										
										
										
											2020-06-29 10:45:33 +00:00
										 |  |  | elasticpot = false | 
					
						
							| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  | nodeid = elasticpot-community-01 | 
					
						
							| 
									
										
										
										
											2020-06-29 10:45:33 +00:00
										 |  |  | logfile = /data/elasticpot/log/elasticpot.json | 
					
						
							| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  | [SURICATA] | 
					
						
							|  |  |  | suricata = true | 
					
						
							|  |  |  | nodeid = suricata-community-01 | 
					
						
							| 
									
										
										
										
											2019-03-19 11:08:23 +00:00
										 |  |  | logfile = /data/suricata/log/eve.json | 
					
						
							| 
									
										
										
										
											2017-11-17 14:29:16 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  | [MAILONEY] | 
					
						
							|  |  |  | mailoney = true | 
					
						
							|  |  |  | nodeid = mailoney-community-01 | 
					
						
							|  |  |  | logfile = /data/mailoney/log/commands.log | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | [RDPY] | 
					
						
							|  |  |  | rdpy = true | 
					
						
							|  |  |  | nodeid = rdpy-community-01 | 
					
						
							|  |  |  | logfile = /data/rdpy/log/rdpy.log | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | [VNCLOWPOT] | 
					
						
							|  |  |  | vnclowpot = true | 
					
						
							|  |  |  | nodeid = vnclowpot-community-01 | 
					
						
							|  |  |  | logfile = /data/vnclowpot/log/vnclowpot.log | 
					
						
							| 
									
										
										
										
											2018-05-07 10:17:33 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  | [HERALDING] | 
					
						
							|  |  |  | heralding = true | 
					
						
							|  |  |  | nodeid = heralding-community-01 | 
					
						
							|  |  |  | logfile = /data/heralding/log/auth.csv | 
					
						
							| 
									
										
										
										
											2018-05-09 16:43:37 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  | [CISCOASA] | 
					
						
							|  |  |  | ciscoasa = true | 
					
						
							|  |  |  | nodeid = ciscoasa-community-01 | 
					
						
							|  |  |  | logfile = /data/ciscoasa/log/ciscoasa.log | 
					
						
							| 
									
										
										
										
											2018-06-23 22:10:55 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  | [TANNER] | 
					
						
							|  |  |  | tanner = true | 
					
						
							|  |  |  | nodeid = tanner-community-01 | 
					
						
							| 
									
										
										
										
											2018-06-24 21:16:19 +00:00
										 |  |  | logfile = /data/tanner/log/tanner_report.json | 
					
						
							| 
									
										
										
										
											2019-03-01 13:57:21 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  | [GLUTTON] | 
					
						
							|  |  |  | glutton = true | 
					
						
							|  |  |  | nodeid = glutton-community-01 | 
					
						
							|  |  |  | logfile = /data/glutton/log/glutton.log | 
					
						
							| 
									
										
										
										
											2020-10-15 09:14:30 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  | [HONEYSAP] | 
					
						
							|  |  |  | honeysap = true | 
					
						
							|  |  |  | nodeid = honeysap-community-01 | 
					
						
							|  |  |  | logfile = /data/honeysap/log/honeysap-external.log | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | [ADBHONEY] | 
					
						
							|  |  |  | adbhoney = true | 
					
						
							|  |  |  | nodeid = adbhoney-community-01 | 
					
						
							|  |  |  | logfile = /data/adbhoney/log/adbhoney.json | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | [FATT] | 
					
						
							|  |  |  | fatt = true | 
					
						
							|  |  |  | nodeid = fatt-community-01 | 
					
						
							|  |  |  | logfile = /data/fatt/log/fatt.log |