diff --git a/example_config/intelmq/etc/feeds.yaml b/example_config/intelmq/etc/feeds.yaml index e87fcba..d2c19f1 100644 --- a/example_config/intelmq/etc/feeds.yaml +++ b/example_config/intelmq/etc/feeds.yaml @@ -628,60 +628,6 @@ providers: revision: 2018-01-20 documentation: https://project.turris.cz/en/greylist public: yes - Malc0de: - Bind Format: - description: This feed includes FQDN's of malicious hosts, the file format is - in Bind file format. - additional_information: - bots: - collector: - module: intelmq.bots.collectors.http.collector_http - parameters: - http_url: https://malc0de.com/bl/ZONES - rate_limit: 10800 - name: __FEED__ - provider: __PROVIDER__ - parser: - module: intelmq.bots.parsers.malc0de.parser - parameters: - revision: 2018-01-20 - documentation: http://malc0de.com/dashboard/ - public: yes - Windows Format: - description: This feed includes FQDN's of malicious hosts, the file format is - in Windows Hosts file format. - additional_information: - bots: - collector: - module: intelmq.bots.collectors.http.collector_http - parameters: - http_url: https://malc0de.com/bl/BOOT - rate_limit: 10800 - name: __FEED__ - provider: __PROVIDER__ - parser: - module: intelmq.bots.parsers.malc0de.parser - parameters: - revision: 2018-01-20 - documentation: http://malc0de.com/dashboard/ - public: yes - IP Blacklist: - description: This feed includes IP Addresses of malicious hosts. - additional_information: - bots: - collector: - module: intelmq.bots.collectors.http.collector_http - parameters: - http_url: https://malc0de.com/bl/IP_Blacklist.txt - rate_limit: 10800 - name: __FEED__ - provider: __PROVIDER__ - parser: - module: intelmq.bots.parsers.malc0de.parser - parameters: - revision: 2018-01-20 - documentation: http://malc0de.com/dashboard/ - public: yes University of Toulouse: Blacklist: description: Various blacklist feeds diff --git a/example_config/intelmq/etc/manager/positions.conf b/example_config/intelmq/etc/manager/positions.conf index 942a4c7..b2eec86 100644 --- a/example_config/intelmq/etc/manager/positions.conf +++ b/example_config/intelmq/etc/manager/positions.conf @@ -27,14 +27,6 @@ "x": -252, "y": 243 }, - "malc0de-parser": { - "x": 297, - "y": 24 - }, - "malc0de-windows-format-collector": { - "x": 433, - "y": 121 - }, "malware-domain-list-collector": { "x": 465, "y": -198 diff --git a/example_config/intelmq/etc/runtime.yaml b/example_config/intelmq/etc/runtime.yaml index 0cfad2b..24afacf 100644 --- a/example_config/intelmq/etc/runtime.yaml +++ b/example_config/intelmq/etc/runtime.yaml @@ -118,38 +118,6 @@ gethostbyname-2-expert: global: {destination_pipeline_broker: redis, process_manager: intelmq, source_pipeline_broker: redis, ssl_ca_certificate: null, statistics_database: 3, statistics_host: 127.0.0.1, statistics_password: null, statistics_port: 6379, destination_pipeline_host: redis, source_pipeline_host: redis} -malc0de-parser: - bot_id: malc0de-parser - description: Malc0de Parser is the bot responsible to parse the IP Blacklist and - either Windows Format or Bind Format reports and sanitize the information. - enabled: true - group: Parser - groupname: parsers - module: intelmq.bots.parsers.malc0de.parser - name: Malc0de - parameters: - destination_queues: - _default: [deduplicator-expert-queue] - run_mode: continuous -malc0de-windows-format-collector: - bot_id: malc0de-windows-format-collector - description: '' - enabled: true - group: Collector - groupname: collectors - module: intelmq.bots.collectors.http.collector_http - name: Malc0de Windows Format - parameters: - destination_queues: - _default: [malc0de-parser-queue] - http_password: null - http_url: https://malc0de.com/bl/BOOT - http_username: null - name: Windows Format - provider: Malc0de - rate_limit: 10800 - ssl_client_certificate: null - run_mode: continuous spamhaus-drop-collector: bot_id: spamhaus-drop-collector description: ''