intelmq
intelmq copied to clipboard
certtools
IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
Formats: - csv - json - snort - suricata
The code can be compiled optionally during install time. See for example https://github.com/rthalley/dnspython/pull/327
I'd like to discuss displaying queue traffic in manager. It would be cool we see what pipes had recently transferred some messages on the visjs edges in manager. There are...
It is currently not possible to filter for empty/not existing fields. As an empty value is not allowed, this value can be used for filtering, or null.
For the _recover all_ operation, all the dumps are processed separately. Doing that once or in bulk would save resources.
Discussion started in #1239 There are also "extensions" to argparse which can provide the possible completions. These (python) functions are called by the completion function with the existing parameters as...
See also #1237 For common bots, the meaning of the log messages "Processed .. messages" is clear. For filtering bots which can send and drop messages, it is not. #1237...
the program should support to send messages to different paths