KasperskyLab-TinyCheck/config.yaml
Félix Aimé 102f45be46
Adding Te-k stalkerwares IOCs in the default watchers list #14
Related to the issue #14, thanks for his time and his contribution!
2020-12-16 20:23:56 +01:00

75 lines
1.9 KiB
YAML

# ANALYSIS -
# All the things related to the analysis engine.
# Some configuration keys aren't accessible from the backend
# but can be edited here...
#
analysis:
free_issuers:
- CN=Let's Encrypt Authority X3,O=Let's Encrypt,C=US
- CN=ZeroSSL RSA Domain Secure Site CA,O=ZeroSSL,C=AT
heuristics: true
http_default_port: 80
iocs: true
max_alerts: 3
max_ports: 1024
remote: false
ssl_default_ports:
- 443
- 465
- 636
- 989
- 990
- 993
- 995
- 5223
whitelist: true
# BACKEND -
# Backend login / password and the possibility to
# access to it from remote location.
#
backend:
login: tinycheck
password: 2de5a04967d6cffd33243bb226db194b97e1d6d1331eea3ad1e8c5e9f6e58315
remote_access: true
# FRONTEND -
# Some elements related to the frontend configuration & ergonomy
# you can change them via the backend.
#
frontend:
download_links: false
hide_mouse: true
kiosk_mode: true
remote_access: false
sparklines: true
virtual_keyboard: true
# NETWORK -
# Some elements related to the network configuration, such as
# the interfaces (updated during the install), the list of SSIDs
# the URL to check internet and the tokenization of SSIDs.
#
network:
in: iface_in
internet_check: http://example.com
out: iface_out
ssids:
- wireless
- skynet
- network
- wifi
tokenized_ssids: true
# WATCHERS -
# They are used to grab automatically new IOCs or whitelisted
# elements from files containing IOCs export. You can add your
# own URL and it will be parsed at each TinyCheck reboot.
#
watchers:
iocs:
- https://raw.githubusercontent.com/KasperskyLab/TinyCheck/main/assets/iocs.json
- https://github.com/Te-k/stalkerware-indicators/raw/master/indicators-for-tinycheck.json
whitelists:
- https://raw.githubusercontent.com/KasperskyLab/TinyCheck/main/assets/whitelist.json