Exploring the OSINT pre configured

To demonstrate the capabilities of CIF and provide some usefulness out of the box, CIF ships with many Open-source Intelligence (OSINT) feeds preconfigured. You can find explore the default OSINT via the github repo or by listing the configuration files on your CIF server:

$ sudo ls -l /etc/cif/rules/default/

-rw-rw---- 1 cif cif  589 Mar 28 13:49 00_whitelist.yml
-rw-rw---- 1 cif cif  268 Mar 28 13:49 1d4_us.yml
-rw-rw---- 1 cif cif  616 Mar 28 13:49 alexa.yml
...

CIF was designed to be a data warehouse for all of the threat intelligence availabe to you; it is expected that you will add additional public, private or organic threat intelligence to your CIF server.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Exploring the OSINT pre configured

Clone this wiki locally