Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-10-31 04:22:52 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
tpotce/docker/ewsposter/dist/ews.cfg

196 lines
4.1 KiB
INI
Raw Normal View History

include docker repos ... skip emobility since it is a dev repo
2017-10-13 18:58:14 +00:00
[MAIN]
homedir = /opt/ewsposter/
spooldir = /opt/ewsposter/spool/
logdir = /opt/ewsposter/log/
del_malware_after_send = false
send_malware = false
bump ewsposter to 1.12
2020-12-10 11:40:53 +00:00
sendlimit = 5000
include docker repos ... skip emobility since it is a dev repo
2017-10-13 18:58:14 +00:00
contact = your_email_address
prepare for new ewsposter
2020-10-15 09:14:30 +00:00
proxy = None
ip_int = None
ip_ext = None
include docker repos ... skip emobility since it is a dev repo
2017-10-13 18:58:14 +00:00
[EWS]
ews = true
username = community-01-user
token = foth{a5maiCee8fineu7
rhost_first = https://community.sicherheitstacho.eu/ews-0.1/alert/postSimpleMessage
rhost_second = https://community.sicherheitstacho.eu/ews-0.1/alert/postSimpleMessage
ignorecert = false
[HPFEED]
prepare for sissden opt-in
2019-03-15 15:59:02 +00:00
hpfeed = %(EWS_HPFEEDS_ENABLE)s
host = %(EWS_HPFEEDS_HOST)s
port = %(EWS_HPFEEDS_PORT)s
channels = %(EWS_HPFEEDS_CHANNELS)s
ident = %(EWS_HPFEEDS_IDENT)s
secret= %(EWS_HPFEEDS_SECRET)s
update ewsposter
2019-03-13 22:04:07 +00:00
# path/to/certificate for tls broker - or "false" for non-tls broker
prepare for sissden opt-in
2019-03-15 15:59:02 +00:00
tlscert = %(EWS_HPFEEDS_TLSCERT)s
update ewsposter
2019-03-13 22:04:07 +00:00
# hpfeeds submission format: "ews" (xml) or "json"
prepare for sissden opt-in
2019-03-15 15:59:02 +00:00
hpfformat = %(EWS_HPFEEDS_FORMAT)s
include docker repos ... skip emobility since it is a dev repo
2017-10-13 18:58:14 +00:00
[EWSJSON]
json = false
jsondir = /data/ews/json/
prep for new ewsposter, rollout to follow next week
2021-06-24 16:26:53 +00:00
[INFLUXDB]
influxdb = false
host = http://localhost
port = 8086
username = <your username for influx 1.8>
password = <your password for influx 1.8>
token = <your token for influx 2.0>
bucket = <your bucket/database for 2.0/1.8>
org = <your org for influx 2.0>
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
[ADBHONEY]
adbhoney = true
nodeid = adbhoney-community-01
logfile = /data/adbhoney/log/adbhoney.json
malwaredir = /data/adbhoney/downloads
[BEELZEBUB]
bump ewsposter to latest master
2025-05-06 17:36:02 +00:00
beelzebub = true
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
nodeid = beelzebub-community-01
logfile = /data/beelzebub/log/beelzebub.json
[CISCOASA]
ciscoasa = true
nodeid = ciscoasa-community-01
logfile = /data/ciscoasa/log/ciscoasa.log
[CITRIX]
citrix = true
nodeid = citrix-community-01
logfile = /data/citrixhoneypot/logs/server.log
[CONPOT]
conpot = true
nodeid = conpot-community-01
logdir = /data/conpot/log
include docker repos ... skip emobility since it is a dev repo
2017-10-13 18:58:14 +00:00
[COWRIE]
cowrie = true
nodeid = cowrie-community-01
logfile = /data/cowrie/log/cowrie.json
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
[DDOSPOT]
ddospot = true
nodeid = ddospot-community-01
logdir = /data/ddospot/log
[DICOMPOT]
dicompot = true
nodeid = dicompot-community-01
logfile = /data/dicompot/log/dicompot.log
include docker repos ... skip emobility since it is a dev repo
2017-10-13 18:58:14 +00:00
[DIONAEA]
dionaea = true
nodeid = dionaea-community-01
malwaredir = /data/dionaea/binaries/
sqlitedb = /data/dionaea/log/dionaea.sqlite
[ELASTICPOT]
prep for new ewsposter, rollout to follow next week
2021-06-24 16:26:53 +00:00
elasticpot = true
include docker repos ... skip emobility since it is a dev repo
2017-10-13 18:58:14 +00:00
nodeid = elasticpot-community-01
tweaking add kibana export / import config function ewsposter remove transmitting old elasticpot data (need update) final export of all objects
2020-06-29 10:45:33 +00:00
logfile = /data/elasticpot/log/elasticpot.json
include docker repos ... skip emobility since it is a dev repo
2017-10-13 18:58:14 +00:00
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
[ENDLESSH]
endlessh = true
nodeid = endlessh-community-01
logfile = /data/endlessh/log/endlessh.log
Update config for Mailoney, RDPY, VNClowpot
2017-11-17 14:29:16 +00:00
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
[GALAH]
galah = true
nodeid = galah-community-01
logfile = /data/galah/log/galah.json
[GLUTTON]
glutton = true
nodeid = glutton-community-01
logfile = /data/glutton/log/glutton.log
Update config for Mailoney, RDPY, VNClowpot
2017-11-17 14:29:16 +00:00
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
[GOPOT]
gopot = true
nodeid = gopot-community-01
logfile = /data/go-pot/log/go-pot.json
Update config for Mailoney, RDPY, VNClowpot
2017-11-17 14:29:16 +00:00
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
[H0NEYTR4P]
bump ewsposter to latest master
2025-05-06 17:36:02 +00:00
h0neytr4p = true
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
nodeid = h0neytr4p-community-01
logfile = /data/h0neytr4p/log/log.json
payloaddir = /data/h04neytr4p/payload
[HELLPOT]
hellpot = true
nodeid = hellpot-community-01
logfile = /data/hellpot/log/hellpot.log
tweaking
2018-05-07 10:17:33 +00:00
[HERALDING]
heralding = true
nodeid = heralding-community-01
logfile = /data/heralding/log/auth.csv
tweaking
2018-05-09 16:43:37 +00:00
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
[HONEYAML]
honeyaml = true
nodeid = honeyaml-community-01
logfile = /data/honeyaml/log/honeyaml.log
prepare for new ewsposter
2020-10-15 09:14:30 +00:00
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
[HONEYPOTS]
honeypots = true
nodeid = honeypots-community-01
logdir = /data/honeypots/log
prepare for new ewsposter
2020-10-15 09:14:30 +00:00
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
[HONEYTRAP]
honeytrap = true
nodeid = honeytrap-community-01
newversion = true
payloaddir = /data/honeytrap/attacks/
attackerfile = /data/honeytrap/log/attacker.log
prep for new ewsposter, rollout to follow next week
2021-06-24 16:26:53 +00:00
[IPPHONEY]
ipphoney = true
nodeid = ipphoney-community-01
logfile = /data/ipphoney/log/ipphoney.json
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
[LOG4POT]
log4pot = true
nodeid = log4pot-community-01
logfile = /data/log4pot/log/log4pot.log
[MAILONEY]
mailoney = true
nodeid = mailoney-community-01
logfile = /data/mailoney/log/commands.log
prep for new ewsposter, rollout to follow next week
2021-06-24 16:26:53 +00:00
[MEDPOT]
medpot = true
nodeid = medpot-community-01
logfile = /data/medpot/log/medpot.log
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
[MINIPRINT]
miniprint = true
nodeid = miniprint-community-01
logfile = /data/miniprint/log/miniprint.json
bump ewsposter to latest master, update packages
2022-10-11 15:13:47 +00:00
[REDISHONEYPOT]
redishoneypot = true
nodeid = redishoneypot-community-01
logfile = /data/redishoneypot/log/redishoneypot.log
[SENTRYPEER]
sentrypeer = true
nodeid = sentrypeer-community-01
logfile = /data/sentrypeer/log/sentrypeer.json
prepare for new ewsposter release
2025-03-03 16:34:29 +00:00
[TANNER]
tanner = true
nodeid = tanner-community-01
logfile = /data/tanner/log/tanner_report.json
[WORDPOT]
wordpot = true
nodeid = wordpot-community-01
bump ewsposter to latest master
2025-05-06 17:36:02 +00:00
logfile = /data/wordpot/log/wordpot.log
Reference in a new issue Copy permalink