2014-08-06 09:43:40 +00:00
|
|
|
[Directories]
|
2014-08-20 14:00:56 +00:00
|
|
|
bloomfilters = Blooms
|
2016-08-09 12:23:36 +00:00
|
|
|
dicofilters = Dicos
|
2014-08-19 17:07:07 +00:00
|
|
|
pastes = PASTES
|
2018-04-20 08:48:44 +00:00
|
|
|
base64 = BASE64
|
2016-07-15 07:08:38 +00:00
|
|
|
|
2014-08-20 14:00:56 +00:00
|
|
|
wordtrending_csv = var/www/static/csv/wordstrendingdata
|
|
|
|
wordsfile = files/wordfile
|
2014-08-06 09:43:40 +00:00
|
|
|
|
2016-07-15 07:08:38 +00:00
|
|
|
protocolstrending_csv = var/www/static/csv/protocolstrendingdata
|
|
|
|
protocolsfile = files/protocolsfile
|
|
|
|
|
|
|
|
tldstrending_csv = var/www/static/csv/tldstrendingdata
|
2016-07-22 07:32:13 +00:00
|
|
|
tldsfile = faup/src/data/mozilla.tlds
|
2016-07-15 07:08:38 +00:00
|
|
|
|
|
|
|
domainstrending_csv = var/www/static/csv/domainstrendingdata
|
|
|
|
|
2017-01-10 17:33:46 +00:00
|
|
|
pystemonpath = /home/pystemon/pystemon/
|
|
|
|
|
2017-01-11 10:00:36 +00:00
|
|
|
sentiment_lexicon_file = sentiment/vader_lexicon.zip/vader_lexicon/vader_lexicon.txt
|
|
|
|
|
2018-02-27 14:12:02 +00:00
|
|
|
##### Notifications ######
|
|
|
|
[Notifications]
|
2018-07-17 13:11:25 +00:00
|
|
|
ail_domain = http://localhost:7000
|
2018-02-27 14:12:02 +00:00
|
|
|
sender = sender@example.com
|
|
|
|
sender_host = smtp.example.com
|
|
|
|
sender_port = 1337
|
2018-03-30 09:35:37 +00:00
|
|
|
|
|
|
|
# optional for using with authenticated SMTP over SSL
|
|
|
|
# sender_pw = securepassword
|
2018-02-27 14:12:02 +00:00
|
|
|
|
2016-07-15 07:10:44 +00:00
|
|
|
##### Flask #####
|
|
|
|
[Flask]
|
2018-08-07 11:07:08 +00:00
|
|
|
#Number of logs to display in the dashboard
|
|
|
|
max_dashboard_logs = 15
|
2016-07-15 07:08:38 +00:00
|
|
|
#Maximum number of character to display in the toolip
|
2018-02-27 15:16:57 +00:00
|
|
|
max_preview_char = 250
|
2016-07-15 07:08:38 +00:00
|
|
|
#Maximum number of character to display in the modal
|
2018-02-27 15:16:57 +00:00
|
|
|
max_preview_modal = 800
|
2016-07-15 07:08:38 +00:00
|
|
|
#Default number of header to display in trending graphs
|
|
|
|
default_display = 10
|
2016-08-09 12:23:36 +00:00
|
|
|
#Number of minutes displayed for the number of processed pastes.
|
|
|
|
minute_processed_paste = 10
|
2018-02-27 15:16:57 +00:00
|
|
|
#Maximum line length authorized to make a diff between duplicates
|
|
|
|
DiffMaxLineLength = 10000
|
|
|
|
|
|
|
|
#### Modules ####
|
2018-07-26 13:31:58 +00:00
|
|
|
[BankAccount]
|
|
|
|
max_execution_time = 60
|
|
|
|
|
2018-02-27 15:16:57 +00:00
|
|
|
[Categ]
|
|
|
|
#Minimum number of match between the paste and the category file
|
|
|
|
matchingThreshold=1
|
|
|
|
|
|
|
|
[Credential]
|
|
|
|
#Minimum length that a credential must have to be considered as such
|
|
|
|
minimumLengthThreshold=3
|
|
|
|
#Will be pushed as alert if the number of credentials is greater to that number
|
|
|
|
criticalNumberToAlert=8
|
|
|
|
#Will be considered as false positive if less that X matches from the top password list
|
|
|
|
minTopPassList=5
|
2017-12-11 16:28:34 +00:00
|
|
|
|
2018-05-03 14:21:33 +00:00
|
|
|
[Curve]
|
|
|
|
max_execution_time = 90
|
|
|
|
|
2018-05-02 15:07:10 +00:00
|
|
|
[Base64]
|
|
|
|
path = Base64/
|
|
|
|
max_execution_time = 60
|
|
|
|
|
2016-07-18 13:50:41 +00:00
|
|
|
[Modules_Duplicates]
|
|
|
|
#Number of month to look back
|
|
|
|
maximum_month_range = 3
|
2016-08-09 12:23:36 +00:00
|
|
|
#The value where two pastes are considerate duplicate for ssdeep.
|
|
|
|
threshold_duplicate_ssdeep = 50
|
|
|
|
#The value where two pastes are considerate duplicate for tlsh.
|
2018-05-09 11:03:46 +00:00
|
|
|
threshold_duplicate_tlsh = 52
|
2016-07-18 13:52:53 +00:00
|
|
|
#Minimum size of the paste considered
|
|
|
|
min_paste_size = 0.3
|
2016-07-18 13:50:41 +00:00
|
|
|
|
2016-12-22 09:06:35 +00:00
|
|
|
[Module_ModuleInformation]
|
|
|
|
#Threshold to deduce if a module is stuck or not, in seconds.
|
|
|
|
threshold_stucked_module=600
|
2016-07-21 12:59:52 +00:00
|
|
|
|
2016-12-23 09:31:26 +00:00
|
|
|
[Module_Mixer]
|
2018-02-27 15:16:57 +00:00
|
|
|
#Define the configuration of the mixer, possible value: 1, 2 or 3
|
|
|
|
operation_mode = 3
|
2016-12-23 09:31:26 +00:00
|
|
|
#Define the time that a paste will be considerate duplicate. in seconds (1day = 86400)
|
|
|
|
ttl_duplicate = 86400
|
|
|
|
|
2014-08-06 09:43:40 +00:00
|
|
|
##### Redis #####
|
|
|
|
[Redis_Cache]
|
|
|
|
host = localhost
|
|
|
|
port = 6379
|
|
|
|
db = 0
|
|
|
|
|
2014-12-22 15:50:25 +00:00
|
|
|
[Redis_Log]
|
|
|
|
host = localhost
|
|
|
|
port = 6380
|
|
|
|
db = 0
|
|
|
|
|
2018-06-05 14:58:04 +00:00
|
|
|
[Redis_Log_submit]
|
|
|
|
host = localhost
|
|
|
|
port = 6380
|
|
|
|
db = 1
|
|
|
|
|
2014-08-06 09:43:40 +00:00
|
|
|
[Redis_Queues]
|
|
|
|
host = localhost
|
|
|
|
port = 6381
|
2014-09-05 08:41:00 +00:00
|
|
|
db = 0
|
2014-08-06 09:43:40 +00:00
|
|
|
|
|
|
|
[Redis_Data_Merging]
|
|
|
|
host = localhost
|
|
|
|
port = 6379
|
|
|
|
db = 1
|
|
|
|
|
2016-08-23 07:59:39 +00:00
|
|
|
[Redis_Paste_Name]
|
|
|
|
host = localhost
|
|
|
|
port = 6379
|
|
|
|
db = 2
|
|
|
|
|
2017-01-09 13:12:26 +00:00
|
|
|
[Redis_Mixer_Cache]
|
2016-12-23 09:31:26 +00:00
|
|
|
host = localhost
|
|
|
|
port = 6381
|
|
|
|
db = 1
|
|
|
|
|
2018-05-07 12:50:40 +00:00
|
|
|
##### ARDB #####
|
|
|
|
[ARDB_Curve]
|
2016-08-09 12:23:36 +00:00
|
|
|
host = localhost
|
2016-08-23 07:59:39 +00:00
|
|
|
port = 6382
|
|
|
|
db = 1
|
|
|
|
|
2018-05-07 12:50:40 +00:00
|
|
|
[ARDB_Sentiment]
|
2016-08-23 07:59:39 +00:00
|
|
|
host = localhost
|
|
|
|
port = 6382
|
|
|
|
db = 4
|
|
|
|
|
2018-05-07 12:50:40 +00:00
|
|
|
[ARDB_TermFreq]
|
2016-08-23 07:59:39 +00:00
|
|
|
host = localhost
|
|
|
|
port = 6382
|
|
|
|
db = 2
|
2016-08-09 12:23:36 +00:00
|
|
|
|
2018-05-07 12:50:40 +00:00
|
|
|
[ARDB_TermCred]
|
2017-07-18 14:57:15 +00:00
|
|
|
host = localhost
|
|
|
|
port = 6382
|
|
|
|
db = 5
|
|
|
|
|
2018-05-07 12:50:40 +00:00
|
|
|
[ARDB_DB]
|
2014-08-06 09:43:40 +00:00
|
|
|
host = localhost
|
2018-05-07 12:50:40 +00:00
|
|
|
port = 6382
|
2014-08-06 09:43:40 +00:00
|
|
|
db = 0
|
|
|
|
|
2018-05-07 12:50:40 +00:00
|
|
|
[ARDB_Trending]
|
2016-07-15 07:08:38 +00:00
|
|
|
host = localhost
|
2016-08-23 07:59:39 +00:00
|
|
|
port = 6382
|
|
|
|
db = 3
|
2016-07-15 07:08:38 +00:00
|
|
|
|
2018-05-07 12:50:40 +00:00
|
|
|
[ARDB_Hashs]
|
2014-08-06 09:43:40 +00:00
|
|
|
host = localhost
|
|
|
|
db = 1
|
|
|
|
|
2018-05-09 11:03:46 +00:00
|
|
|
[ARDB_Tags]
|
|
|
|
host = localhost
|
|
|
|
port = 6382
|
|
|
|
db = 6
|
|
|
|
|
2018-05-15 21:28:47 +00:00
|
|
|
[ARDB_Metadata]
|
|
|
|
host = localhost
|
|
|
|
port = 6382
|
|
|
|
db = 7
|
|
|
|
|
2018-06-19 13:09:26 +00:00
|
|
|
[ARDB_Statistics]
|
|
|
|
host = localhost
|
|
|
|
port = 6382
|
|
|
|
db = 8
|
|
|
|
|
2014-12-22 15:29:05 +00:00
|
|
|
[Url]
|
|
|
|
cc_critical = DE
|
2014-08-11 09:04:09 +00:00
|
|
|
|
2014-09-17 15:19:03 +00:00
|
|
|
[DomClassifier]
|
|
|
|
cc = DE
|
|
|
|
cc_tld = r'\.de$'
|
2018-05-02 15:07:10 +00:00
|
|
|
dns = 8.8.8.8
|
|
|
|
|
|
|
|
[Mail]
|
|
|
|
dns = 8.8.8.8
|
2014-09-17 15:19:03 +00:00
|
|
|
|
2014-08-11 09:04:09 +00:00
|
|
|
# Indexer configuration
|
|
|
|
[Indexer]
|
|
|
|
type = whoosh
|
2014-08-20 14:00:56 +00:00
|
|
|
path = indexdir
|
2017-03-15 15:36:51 +00:00
|
|
|
register = indexdir/all_index.txt
|
2017-03-15 11:14:41 +00:00
|
|
|
#size in Mb
|
|
|
|
index_max_size = 2000
|
2014-08-29 17:37:56 +00:00
|
|
|
|
2017-11-23 06:13:44 +00:00
|
|
|
[ailleakObject]
|
|
|
|
maxDuplicateToPushToMISP=10
|
|
|
|
|
2014-08-29 17:37:56 +00:00
|
|
|
###############################################################################
|
|
|
|
|
2016-12-23 09:31:26 +00:00
|
|
|
# For multiple feed, add them with "," without space
|
|
|
|
# e.g.: tcp://127.0.0.1:5556,tcp://127.0.0.1:5557
|
2014-08-29 17:37:56 +00:00
|
|
|
[ZMQ_Global]
|
2016-02-04 14:32:50 +00:00
|
|
|
#address = tcp://crf.circl.lu:5556
|
2018-02-27 15:16:57 +00:00
|
|
|
address = tcp://127.0.0.1:5556,tcp://crf.circl.lu:5556
|
2014-08-29 17:37:56 +00:00
|
|
|
channel = 102
|
2017-01-13 13:54:43 +00:00
|
|
|
bind = tcp://127.0.0.1:5556
|
2014-08-29 17:37:56 +00:00
|
|
|
|
|
|
|
[ZMQ_Url]
|
|
|
|
address = tcp://127.0.0.1:5004
|
|
|
|
channel = urls
|
|
|
|
|
2014-12-22 15:29:05 +00:00
|
|
|
[ZMQ_FetchedOnion]
|
|
|
|
address = tcp://127.0.0.1:5005
|
|
|
|
channel = FetchedOnion
|
2014-09-30 14:55:16 +00:00
|
|
|
|
2014-12-22 15:29:05 +00:00
|
|
|
[RedisPubSub]
|
|
|
|
host = localhost
|
|
|
|
port = 6381
|
|
|
|
db = 0
|