bojemoi/blog
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
741c7050fc748299f947ed2e859973450883389c
blog/content/posts/commits/2026-02-25-commit-f0d9fc1.md
Betty c6b9a8e408
Some checks failed
Hugo Build & Deploy / build-deploy (push) Has been cancelled
Details
post: commit f0d9fc1 in bojemoi
2026-02-25 18:42:58 +01:00

1.3 KiB
Raw Blame History

title, date, draft, tags, categories, summary, author
title date draft tags categories summary author
[bojemoi] borodino/bm12: add OSINT enrichment after host fingerprinting 2026-02-25T18:42:57+01:00 false
commit
bojemoi
main
Git Activity
Commit f0d9fc1 par Betty dans bojemoi Betty

Commit f0d9fc1
Repository bojemoi
Branch main
Author Betty
Hash f0d9fc1897d7ae9732249c3a353ae671e392c09d

Description

  • Add osint_lookup.py: synchronous OSINT module (ip-api, AlienVault OTX, ThreatCrowd + optional AbuseIPDB/VirusTotal/Shodan via env vars)
  • Integrate into thearm_bm12: OSINT runs after nmap scan, results merged into hosts.scan_details JSON and hosts.info flagged for malicious IPs
  • Dockerfile: copy osint_lookup.py to /usr/bin/
  • Stack: expose ABUSEIPDB_API_KEY, VIRUSTOTAL_API_KEY, SHODAN_API_KEY env vars

Co-Authored-By: Claude Sonnet 4.6 noreply@anthropic.com

Files Changed

M	borodino/Dockerfile.borodino
A	borodino/osint_lookup.py
M	borodino/thearm_bm12
M	stack/40-service-borodino.yml

Diff Summary

 borodino/Dockerfile.borodino  |   1 +
 borodino/osint_lookup.py      | 213 ++++++++++++++++++++++++++++++++++++++++++
 borodino/thearm_bm12          |  83 +++++++++++-----
 stack/40-service-borodino.yml |   3 +
 4 files changed, 279 insertions(+), 21 deletions(-)
Reference in New Issue View Git Blame Copy Permalink