-
Notifications
You must be signed in to change notification settings - Fork 126
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Creation of the common module and notification system
Created a new Django App to centralize the generic functions of Watcher used by multiple modules. Refactored the notification system to integrate SMTPS protocol (replacing SMTP). Added automatic alert creation in TheHive via Feeder. Integrated notifications through the Citadel enterprise application (via APIs). Added Slack notifications (via APIs).
- Loading branch information
ygal
authored and
ygal
committed
Dec 4, 2024
1 parent
77c9d14
commit e6f9346
Showing
4 changed files
with
89 additions
and
34 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -28,8 +28,8 @@ ALLOWED_HOST= | |
CSRF_TRUSTED_ORIGINS= | ||
|
||
# DJANGO EMAIL Configuration | ||
EMAIL_FROM= | ||
SMTP_SERVER= | ||
EMAIL_FROM=[email protected] | ||
SMTP_SERVER=localhost | ||
WATCHER_URL=https://example.watcher.local | ||
WATCHER_LOGO=https://raw.githubusercontent.com/thalesgroup-cert/Watcher/master/Watcher/static/Watcher-logo-simple.png | ||
EMAIL_SUBJECT_TAG_SITE_MONITORING=INCIDENT | ||
|
@@ -38,9 +38,11 @@ EMAIL_CLASSIFICATION=INTERNAL | |
# THE HIVE Setup | ||
THE_HIVE_URL= | ||
THE_HIVE_VERIFY_SSL=False | ||
THE_HIVE_KEY= | ||
THE_HIVE_API_KEY= | ||
THE_HIVE_CASE_ASSIGNEE=watcher | ||
THE_HIVE_TAGS=Watcher,Impersonation,Malicious Domain,Typosquatting | ||
THE_HIVE_CUSTOM_FIELD=watcher-id | ||
THE_HIVE_EMAIL_SENDER=[email protected] | ||
|
||
# MISP Setup | ||
MISP_URL= | ||
|
@@ -50,6 +52,15 @@ MISP_KEY= | |
MISP_TICKETING_URL= | ||
MISP_TAGS=Watcher,Impersonation,Malicious Domain,Typosquatting,tlp:amber | ||
|
||
# SLACK Setup | ||
SLACK_API_TOKEN= | ||
SLACK_CHANNEL= | ||
|
||
# CITADEL Setup | ||
CITADEL_API_TOKEN= | ||
CITADEL_ROOM_ID= | ||
CITADEL_URL= | ||
|
||
# LDAP Setup | ||
AUTH_LDAP_SERVER_URI= | ||
AUTH_LDAP_BIND_DN= | ||
|
Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters