Ojebode/IP-threat-intel-pipeline

# IP 威胁情报管道 多源IP威胁情报管道，负责标准化并输送网络威胁情报源至Elasticsearch。当前接入以下4个数据源： Feodo Tracker Botvrij IPsum REScure 标准化模板： def format_template(initial_data): intel = {} intel["type"] = "ip_address" intel["category"] = "threat_intelligence" intel["value"] = initial_data["value"] intel["description"] = initial_data["details"] intel["confidence"] = "" intel["first_seen"] = "" intel["last_seen"] = "" intel["active"] = "" intel["meta"] = initial_data return intel

标签：Elasticsearch, IP情报, Python, 多源数据集成, 威胁情报, 威胁馈送, 安全情报平台, 实时情报, 开发者工具, 恶意IP追踪, 情报馈送, 数据管道, 数据聚合, 无后门, 网络安全, 软件工程, 逆向工具, 隐私保护, 馈送聚合