forked from mlsecproject/combine
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathfeeds.cfg
45 lines (40 loc) · 917 Bytes
/
feeds.cfg
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
[_default]
impact = low
confidence = low
type = inbound
campaign = combine
[zeustracker]
impact = medium
confidence = high
campaign = zeustracker
reference = https://zeustracker.abuse.ch/blocklist.php?download=ipblocklist
source = ZeusTrackerIPs
type = botnet
[sans]
impact = medium
confidence = medium
campaign = sans
reference = https://isc.sans.edu/ipsascii.html
source = Sans_ISC
type = inbound
[nothink_malware_dns]
impact = medium
confidence = medium
campaign = nothink
reference = http://www.nothink.org/blacklist/blacklist_malware_dns.txt
source = nothink.org
type = malware_dns
[alienvault]
impact = low
confidence = low
campaign = alienvault
reference = http://reputation.alienvault.com/reputation.data
source = alienvault.com
type = outbound
[malwaredomainslist]
impact = low
confidence = low
campaign = malwaredomainslist
reference = file://updates.csv
source = malwaredomainslist.com
type = outbound