YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack.
Additional Information in enSilo's BreakingMalware Blog.
Usage Example:
Bash:
python3 yeti_to_elasticsearch.py "HOSTNAME/IP" --elastic_index="yeti-index" --elastic_use_sslPython:
from yeti_to_elasticsearch import YetiFeedSender, set_logging
set_logging()
sender = YetiFeedSender("yeti-feeds", excluded_feeds=("AsproxTracker"),
elastic_hostname="="<elasticsearch hostname>",
elastic_port=<elasticsearch port>)
sender.extract_and_send()