Giters

eCrimeLabs / eCrimeLabsFeeds

A tool to fetch all the feeds presented through the API

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

ecrimelabsmisp

eCrimeLabsFeeds

A tool to fetch all the feeds presented through the API

The following script can be used to fetch IOC data from the eCrimeLabs Broker API and stores it into files or bulk can be choosen.

Besides storing to file, the script also support storing data into memcached.

Sample usage:

    python3 eCrimeLabsFeeds.py -h
    python3 eCrimeLabsFeeds.py --listtypes

    # Bulk storing all data types from a specific feed
    python3 eCrimeLabsFeeds.py --output /home/<user>/iocs/ --feed any --age 1d --bulk

    # Storing specific data type from a specific feed to a file
    python3 eCrimeLabsFeeds.py --output temp1 --feed block --age 1d --type ipv4

    # Memcached implementation (Expiration is the lifetime in seconds for the feed and data type in memcached)
    python3 eCrimeLabsFeeds.py --server 127.0.0.1 --port 11211 --expiration 600 --feed alert --age 2d --type ipv4

Remember to create the file "keys.py" should look like this:

#!/usr/bin/env python3
# -*- coding: utf-8 -*-

broker_url = 'https://broker_url'
broker_key = '00000000-0000-0000-0000-000000000000'

About

A tool to fetch all the feeds presented through the API

ecrimelabsmisp

License:MIT License

Languages

Language:Python 100.0%