Monitoring discord for the IOCs
Just as per my Telegram-Monitoring, I'd like to automatically crawl all the discord messages and attachments that are being posted within the groups I'm intrested in.
It's basically the same procedure as it uses the same infrastructure as per the Telegram-Monitoring.
- Download all the data
- Translate from what ever to english
- Verify downloaded date is eligable for a splunk import
- Import data into Splunk
- Run the IOC-matcher via Splunk
dotnet DiscordChatExporter.Cli.dll exportall --token [removed] --output /data/Discord/Discord_Feed.json --format Json --media True --reuse-media TrueWhile I only have english groups, there is no need for translation, yet.