Skip to content
Permalink
Browse files

ioc2rpz is a place where threat intelligence meets DNS

  • Loading branch information...
Homas committed Jul 20, 2019
1 parent c8995ed commit 0ec2e46b149b48eef09a498665cbcdf2beeace1a
Showing with 11 additions and 2 deletions.
  1. +2 −1 README.md
  2. +1 −1 TODO.md
  3. +8 −0 src/ioc2rpz_fun.erl
@@ -67,7 +67,8 @@ You can start ioc2rpz with the following command:
sudo docker run -d --name ioc2rpz --log-driver=syslog --restart always --mount type=bind,source=/home/ioc2rpz/cfg,target=/opt/ioc2rpz/cfg --mount type=bind,source=/home/ioc2rpz/db,target=/opt/ioc2rpz/db -p53:53 -p53:53/udp -p853:853 -p8443:8443 pvmdel/ioc2rpz
```
where /home/ioc2rpz/cfg, /home/ioc2rpz/db directories on a host system.
where /home/ioc2rpz/cfg, /home/ioc2rpz/db directories on a host system.
You can pass a custom configuration file name via``-e`` parameter. E.g. ``./cfg/ioc2rpz2.conf``
## ioc2rpz on AWS
You can run ioc2rpz and ioc2rpz.gui on AWS. For relatively small deployments (several hundreds thousands indicators) even free tier is enough.
@@ -12,7 +12,7 @@
- [x] Retry if source was not available and handle the behaviour
- [ ] Simultanious source downloads
## Configuration
- [.] Validate: Configuration file name pass as a variable to the container
- [x] Validate: Configuration file name pass as a variable to the container
## UI
- [x] Custom configuration (e.g. "include")
- [x] Groups support on RPZ, SRV level
@@ -15,6 +15,7 @@
%IOC2RPZ Functions

-module(ioc2rpz_fun).
-include_lib("eunit/include/eunit.hrl").
-include_lib("ioc2rpz.hrl").
-export([logMessage/2,logMessageCEF/2,strs_to_binary/1,curr_serial/0,curr_serial_60/0,constr_ixfr_url/3,ip_to_bin/1,read_local_actions/1,split_bin_bytes/2,split_tail/2,
bin_to_lowcase/1,ip_in_list/2,intersection/2,bin_to_hexstr/1,conv_to_Mb/1,q_class/1,q_type/1,split/2,msg_CEF/1]).
@@ -236,3 +237,10 @@ split([H|T],Index)->
[RH,RT]=split(T,Index-1),
[[H|RH],RT].

%%%%
%%%% Unit tests
%%%%
q_class_test() -> [
?assert(q_class(?C_IN) =:= "IN"),
?assert(q_class(42) =:= "42")
].

0 comments on commit 0ec2e46

Please sign in to comment.
You can’t perform that action at this time.