-
Notifications
You must be signed in to change notification settings - Fork 296
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Shadowserver API bot #2493
Comments
@elsif2 Could you please have a look at this? I have also got a similar report during private channels (I didn't have a time to dig into yet) |
The bot downloads the latest reports by checking the past two days for availability and downloads only those that have not been fetched previously. You can specify the types of reports to download using the types option. |
Thanks @elsif2 |
What parameters do you have configured for the collector? Example:
|
Yes, that's how I defined them but when i did that way, it did not download any data so I've to apply only |
The following config only downloads the
What version of IntelMQ are you running? |
Even when the types was set to blocklist, it still downloaded all scan reports, I will do some testing over the next few days and see if any changes |
The
|
Hi,
By default, the bot seems to download a set of reports covering a four-day span (e.g., from "2024-02-26" to "2024-02-29"). However, I have specific requirements regarding the types of reports and the dates for which I need the data.
Could you please guide me on how to customise the bot's configuration to download only specific types of reports for a specific date or based on the current date? For example, If I am interested in fetching only the 'sinkhole', 'http_scan', 'compromised-website','honeypot_ddos' reports for the current date.
Thank you
The text was updated successfully, but these errors were encountered: