Sources
While showing how to build your own CIF server, I'll use and mention below sites and sources of interest:
- Main source: https://code.google.com/p/collective-intelligence-framework/wiki/WhatisCIF
- New (own) feeds: https://code.google.com/p/collective-intelligence-framework/wiki/NewFeedSources
- More feeds: https://github.com/daverstephens/The-SOC-Shop/blob/master/CIF-Stuff/MISP-Pull.sh
- Publishing: https://code.google.com/p/collective-intelligence-framework/wiki/Sharing_Threat_Intelligence_v1
- The PfIPRep project: https://github.com/BBcan177/pf-IPrep/blob/master/pfiprep
- My config creating script for PfIPRep
- the catch.sh script
Known issues
"out of memory" message after trying to fork new processes.
Solution:
echo 1 > /proc/sys/vm/overcommit_memory