This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Help

Who rated this post

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
delToro1
Contributor
‎2024-04-23 01:03 AM

Hello mates, I usually use the following open source project:

https://github.com/stamparm/ipsum 

It sumarice malicious IP between different lists. It create lists based on the ocurrence of the IP and categorice en levels.

I have configured this IOC in my lab and it's working fine. The level 3 list has over 17K malicious IPs. From R81.20, the way of using network feeds in the access control policy, for me it is more granular.

 

 

testing network feedtesting network feedPolicy access rulebasePolicy access rulebaseblock event Network feedblock event Network feedUpdate Event Network feedUpdate Event Network feed

Best regards! 😉

 

(1)
Who rated this post