csirtgadgets.cif
Rol de Ansible CIF
Un rol completo de ansible para el Marco de Inteligencia Colectiva.
Variables del Rol
# variables
cif_version: 3.0.0b5
cif_user: cif
cif_group: cif
cif_etc_path: '/etc/cif'
cif_home: '/home/{{ cif_user }}'
smrt_enabled: true
router_enabled: true
GH_TOKEN: "{{ lookup('env', 'GH_TOKEN') }}"
# valores por defecto
smrt:
user: "{{ cif_user }}"
group: "{{ cif_group }}"
home: "{{ cif_home }}"
runtime_path: /var/run/smrt
cache_path: /var/run/smrt
rules_path: /etc/cif/rules
fireball_size: 500
goback_days: 3
enable_service: false
service_client: cif
router:
release_url: "https://github.com/csirtgadgets/bearded-avenger/archive/{{ cif_version }}.tar.gz"
user: "{{ cif_user }}"
group: "{{ cif_group }}"
home: "/home/{{ cif_user }}"
runtime_path: "/var/run/{{ cif_user }}"
etc_path: '/etc/cif'
config_path: "{{ cif_etc_path }}/cif-router.yml"
httpd:
fireball_size: 500
listen: 127.0.0.1
token:
hunter:
token:
exclude: 'osint.bambenekconsulting.com:dga'
threads: 2
gatherer:
threads: 2
geo_fqdn: 0
geoip:
user: 999999
key: "000000000000"
products: "GeoLite2-City GeoLite2-Country GeoLite-Legacy-IPv6-City GeoLite-Legacy-IPv6-Country 506 517 533"
Ejemplo de Playbook
todo en uno:
- hosts: servers
roles:
- { role: csirtgadgets.cif }
solo router:
- hosts: servers
roles:
- { role: csirtgadgets.cif, smrt_enabled: false }
solo smrt:
- hosts: servers
roles:
- { role: csirtgadgets.cif, router_enabled: false }
Licencia
MPLv2
Información del Autor
Wes Young
CSIRT Gadgets
https://github.com/csirtgadgets/bearded-avenger-deploymentkit/wiki
Instalar
ansible-galaxy install csirtgadgets.cifLicencia
mpl-2.0
Descargas
1.9k
Propietario
Helping Security Operators Innovate. Together- We are creating a Trustworthy Internet.