shane/hivealert
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
1 Commit 1 Branch 0 Tags
ad2c8cb2472b68f3e094f1910f2a2b1ed9331399
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Shane Peters ad2c8cb247 initial commit
2019-01-11 10:22:04 -05:00
hivealert.py
initial commit
2019-01-11 10:22:04 -05:00
hivealert.service
initial commit
2019-01-11 10:22:04 -05:00
LICENSE
initial commit
2019-01-11 10:22:04 -05:00
README.md
initial commit
2019-01-11 10:22:04 -05:00
requirements.txt
initial commit
2019-01-11 10:22:04 -05:00

README.md

What is it

Hivealert is a simple HTTP callback server to generate alerts in TheHive. This began as a need to generate TheHive alerts from Graylog using an HTTP callback and didn't have time to learn how to build graylog plugins. This has the added benefit of being called from anywhere to generate an alert, just add a route for it.

Install

export HH=/opt/hivealert
sudo useradd hivealert -k /dev/null -m -d $HH
sudo -H -u hivealert git clone https://gitlab.com/shanerade/hivealert.git $HH/hivealert
cd $HH/hivealert
sudo -H -u hivealert pip3 install -r requirements.txt
sudo cp hivealert.service /etc/systemd/system
sudo systemctl daemon-reload
sudo systemctl enable hivealert && sudo systemctl start hivealert

Note: Be sure to set the set the following values in hivealert.py:

GRAYLOG = 'GRAYLOG_URL'
HIVE = 'HIVE_URL'
HIVE_API_KEY = 'HIVE_API_KEY'
Description
No description provided
Readme 23 KiB
Languages
Python 100%