Replies: 3 comments
-
|
I know this is a little old, but I'm on the same page, any help here about sending to abuseipdb |
Beta Was this translation helpful? Give feedback.
-
|
I've developed an integration between T-Pot and AbuseIPDB. It currently supports Cowrie, Dionaea, and Honeytrap. Support for more honeypots is coming soon. https://github.com/sefinek/T-Pot-To-AbuseIPDB
|
Beta Was this translation helpful? Give feedback.
-
|
I use a python script that runs on the hive server (so I dont have to open any ports) python script queries ES index, then runs through 15 min of data, parses, normalizes, and submits the stuff to Alienvault OTX. you could do the same for abuseIPDB or anything else like that. thats my approach. another approach (I'm working on) is building a plugin/connector for OpenCTI that will pull/injest data from TPOT. OpenCTI has connectors for all the data sharing platforms like abuseIPDB I hope this helps |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
-
Hello, I would like to export with T-Pot attack to AbuseIPDB and similar Spam Pages.
Does anyone have an idea or know how to export them directly through T-Pot if necessary?
Beta Was this translation helpful? Give feedback.
All reactions