mobiletrackers icon indicating copy to clipboard operation
mobiletrackers copied to clipboard

Published 20 hours ago verified publisher icon craiu

MISP warning lists?

Open adulau opened this issue 4 years ago • 2 comments

Cool idea. It might be interesting to build a MISP warning list out of this list. To quickly spot in MISP events related with such network activity.

adulau avatar Mar 31 '20 08:03 adulau

Sounds good - although it would require constant updating / parsing of the source here and re-upload to the MISP warning list?

craiu avatar Mar 31 '20 09:03 craiu

Got some more for ya:

# When you visit ANY url in ANY browser or app it will instantly try to Send data to any of these:
sa.api.*.miui.com
globalapi.ad.xiaomi.com
authbe.sec.*.miui.com
api.ad.*.xiaomi.com
api.zhuti.*.xiaomi.com

# Optional - this will block updater for MIUI apps.
# In one hand, might be inconvenient, in another - 
# Xiaomi most likely will add new resources after
# publicly know will become blacklisted, subdomains
# cost nothing
global.market.xiaomi.com

# Find Device app
find.api.micloud.xiaomi.net

Kein avatar May 18 '20 23:05 Kein