dumprop
dumprop
  Many tags have the same meaning, but have different spelling e.g. "64-bit" and "64bits" / "ddos_bot" and "ddosbot". Seems that it should be unified because it breaks export...
 In list seems ok  After 2 letters not 
 
https://blocklist.greensnow.co/ Attacks / bruteforce that are monitored are: Scan Port, FTP, POP3, mod_security, IMAP, SMTP, SSH, cPanel ... Feed: https://blocklist.greensnow.co/greensnow.txt
http://charles.the-haleys.org/ "Many machines attack my personal server daily, doing a dictionary attack on the SSH port. A list of attacking machine IP addresses during the last 2 years sorted by...
https://www.spamhaus.org/drop/ The Spamhaus DROP (Don't Route Or Peer) lists are advisory "drop all traffic" lists, consisting of netblocks that are "hijacked" or leased by professional spam or cyber-crime operations (used...
https://iplists.firehol.org/?ipset=voipbl VoIPBL.org a distributed VoIP blacklist that is aimed to protects against VoIP Fraud and minimizing abuse for network that have publicly accessible PBX's. Several algorithms, external sources and manual...
In YETI already implemented feed for c2 servers from https://malwared.malwaremustdie.org/rss.php But they also have feed for binary (hash+malware name) on https://malwared.malwaremustdie.org/rss_bin.php and ssh honeypot on https://malwared.malwaremustdie.org/rss_ssh.php
http://security-research.dyndns.org/pub/malware-feeds/ http://security-research.dyndns.org/pub/malware-feeds/ponmocup-infected-domains-CIF-latest.txt
BenkowTracker contains onion domains, which cant be added to yeti  I found this issue on #558, but I still have this problem (installed from repo yeti 1.5.2, not docker),...