qrz.is/content/post/cif.md
2021-07-14 01:53:07 +02:00

23 lines
1.7 KiB
Markdown

---
title: "Cif / Bearded Avenger"
date: 2018-10-28T20:09:18+01:00
draft: true
---
# Introduction
cif@cif:~$ cif --itype fqdn --tags malware --limit 1 --fields tlp,indicator,count,tags,description,confidence,rdata,provider
+-------+----------------+-------+---------+----------------+------------+-------+--------------+
| tlp | indicator | count | tags | description | confidence | rdata | provider |
+-------+----------------+-------+---------+----------------+------------+-------+--------------+
| white | erxxxxxxzq.com | 2 | malware | malware domain | 9.0 | None | spamhaus.org |
+-------+----------------+-------+---------+----------------+------------+-------+--------------+
cif@cif:~$ cif --indicator 2xx.xx.xx.xx7 --format table --fields tlp,indicator,count,tags,description,confidence,rdata,provider --limit 3
+-------+---------------+-------+--------------------+------------------+------------+-------+---------------------+
| tlp | indicator | count | tags | description | confidence | rdata | provider |
+-------+---------------+-------+--------------------+------------------+------------+-------+---------------------+
| green | 2xx.xx.xx.xx7 | 1 | malware | compromised host | 8.0 | None | emergingthreats.net |
| green | 2xx.xx.xx.xx7 | 6 | bruteforce,scanner | None | 9.0 | None | dataplane.org |
| amber | 2xx.xx.xx.xx7 | 7 | search | None | 10.0 | None | admin |
+-------+---------------+-------+--------------------+------------------+------------+-------+---------------------+