threatfeed

package
v0.18.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Dec 6, 2024 License: MIT Imports: 21 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func Start added in v0.16.0 

func Start(cfg *config.ThreatFeed)

Start initializes and starts the threat feed server. The server provides a list of IP addresses observed interacting with the honeypot servers in various formats.

func Update added in v0.16.0 

func Update(ip string, threatScore int)

Update updates the threat feed with the provided source IP address and threat score. This function should be called by honeypot servers whenever a client interacts with the honeypot. If the source IP address is already in the threat feed, its last-seen timestamp is updated, and its threat score is incremented. Otherwise, the IP address is added as a new entry in the threat feed.

Types

type IOC added in v0.18.0 

type IOC struct {
	// contains filtered or unexported fields
}

IOC represents an Indicator of Compromise (IOC) entry that stores information about IP addresses that interact with the honeypot servers.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.