forked from viper-framework/viper
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathviper.conf.sample
105 lines (83 loc) · 2.26 KB
/
viper.conf.sample
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
# This file is part of Viper - https://github.com/botherder/viper
# See the file 'LICENSE' for copying permission.
##
# Core
##
[modules]
store_output = True
[paths]
# Path to a folder that will be used for storing samples and resources.
# If left blank, the default will be $HOME/.viper
storage_path =
[database]
# Configure the database connection type example shown below
# Examples:
# sqlite:///foo.db
# postgresql://foo:bar@localhost:5432/mydatabase
# mysql://foo:bar@localhost/mydatabase
# mysql+pymysql://foo:bar@localhost/mydatabase
# If empty, default is a SQLite in $storage_path/viper.db
connection =
[logging]
# log file (full path - e.g. /tmp/viper.log)
# If left blank, the default will be $storage_path/viper.log
log_file =
# enable additional debug logging
debug = False
[web]
host = 0.0.0.0
port = 8080
[api]
enabled = True
host = 0.0.0.0
port = 9090
[autorun]
enabled = True
# Verbose True will print the output of each command.
# False will tell you a command has been run but not display the output
verbose = False
# Enter a comma separated list of command lines, As you would enter them in the CLI. You can use ; to chain commands.
# Commands are run in sequence and the output of MODULES is stored if store_output is set to True.
# commands = yara scan -t, fuzzy, pe compiletime
commands = yara scan -t, triage
##
# Modules
##
[virustotal]
virustotal_has_private_key = False
virustotal_has_intel_key = False
virustotal_key =
[cuckoo]
cuckoo_modified = False
cuckoo_host = http://localhost:8090
cuckoo_web = http://localhost:8000
[reports]
malwr_login = https://malwr.com/account/login/
malwr_user =
malwr_pass =
malwr_search = https://malwr.com/analysis/search/
malwr_prefix = https://malwr.com
[misp]
misp_url =
misp_key =
misp_verify = True
misp_vturl = https://www.virustotal.com/vtapi/v2/file/report
# To use the misp taxonomies, you need to clone https://github.com/MISP/misp-taxonomies
# and set the path to the directory here:
misp_taxonomies_directory = ./misp-taxonomies
[pssl]
pssl_url =
pssl_user =
pssl_pass =
[pdns]
pdns_url =
pdns_user =
pdns_pass =
[koodous]
base_url = https://koodous.com/api/apks
token = d01d9c845e4b2430682241c5faa55e786c129441
[lastline]
base_url = https://analysis.lastline.com/analysis/submit/file
key =
token =
portal_account =