phish-stream

command module
v0.0.0-...-a012571 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Aug 13, 2024 License: BSD-3-Clause Imports: 5 Imported by: 0

README

phish-stream

This is a program that filters through domains gathered by Certstream to match pre-defined conditions. Matches domains are then sent to a slack channel for manual classification.

Setup

The following environment variables are required to be set in order to run the program:

  • SLACK_APP_TOKEN: The token for the slack app (starts with xapp-)
  • SLACK_BOT_TOKEN: The token for the slack bot (starts with xoxb-) — socket mode must be enabled
  • SLACK_CHANNEL_ID: The slack channel ID to send messages to
  • PHISH_OBSERVER_API_KEY: The API key for the Phish Observer API

See .env.example for a template.

In your filters directory, create yaml files following the format seen in filters/example.yaml. The name and enabled fields are required, all others are optional.

Running

To run the program, simply run ./phish-stream in the root directory of the project.

There are a few optional flags that can be passed to the program:

  • --filters: The directory containing the filter files. Defaults to filters/
  • --loglevel: Minimum log level to output. Defaults to info. Options are debug, info, warn, and error.

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis
apis
observer

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.