DOC: Update changelog and docs for shadowserver PR#2134

certtools · Jan 10, 2022 · 6991597 · 6991597
1 parent bfcdbad
commit 6991597
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 1 deletion.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -62,6 +62,9 @@ CHANGELOG
   - `ssl.cert.serial` and `ssl.dhparams.generator`, which may return both integers and strings, are converted to strings.
   - Changes to method `apply_mapping`, such as reducing needless loop iterations, removing a big try-except, and adding the `NoValueException` handling described above.
   - Stops falsy values (False, 0) besides None from being filtered out.
+- `intelmq.bots.parsers.shadowserver._config`:
+  - Added support for `Accessible AMQP`, `Device Identification Report` (IPv4 and IPv6) (PR#2134 by Mateo Durante).
+  - Added file name mapping for `SSL-POODLE-Vulnerable-Servers IPv6` (file name `scan6_ssl_poodle`) (PR#2134 by Mateo Durante).
 
 #### Experts
 - `intelmq.bots.experts.domain_valid`: New bot for checking domain's validity (PR#1966 by Marius Karotkis).

diff --git a/docs/user/bots.rst b/docs/user/bots.rst
@@ -1587,6 +1587,7 @@ These are the supported feed name and their corresponding file name for automati
   =======================================   =========================
    Accessible-ADB                            `scan_adb`
    Accessible-AFP                            `scan_afp`
+   Accessible-AMQP                           `scan_amqp`
    Accessible-ARD                            `scan_ard`
    Accessible-Cisco-Smart-Install            `cisco_smart_install`
    Accessible-CoAP                           `scan_coap`
@@ -1605,6 +1606,7 @@ These are the supported feed name and their corresponding file name for automati
    Blacklisted-IP (deprecated)               `blacklist`
    Blocklist                                 `blocklist`
    Compromised-Website                       `compromised_website`
+   Device-Identification IPv4 / IPv6         `device_id`/`device_id6`
    DNS-Open-Resolvers                        `scan_dns`
    Honeypot-Amplification-DDoS-Events        `event4_honeypot_ddos_amp`
    Honeypot-Brute-Force-Events               `event4_honeypot_brute_force`
@@ -1654,7 +1656,7 @@ These are the supported feed name and their corresponding file name for automati
    Sinkhole-Events-HTTP-Referer IPv6         `event6_sinkhole_http_referer`
    Spam-URL                                  `spam_url`
    SSL-FREAK-Vulnerable-Servers              `scan_ssl_freak`
-   SSL-POODLE-Vulnerable-Servers             `scan_ssl_poodle`
+   SSL-POODLE-Vulnerable-Servers             `scan_ssl_poodle`/`scan6_ssl_poodle`
    Vulnerable-Exchange-Server `*`            `scan_exchange`
    Vulnerable-ISAKMP                         `scan_isakmp`
    Vulnerable-HTTP                           `scan_http`