-
Notifications
You must be signed in to change notification settings - Fork 13
/
Copy pathmidas-settings.cfg
37 lines (27 loc) · 963 Bytes
/
midas-settings.cfg
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
#Config File for MIDAS
#DB info below:
[midasdb]
server: localhost
port: 27017
db: test
collection: metadata
#General Settings
[settings]
#Path to log file, default midas.log
logs: midas.log
#Database data only on files which set off an alert (Yara/Metadata/Virustotal) (default: database data from all files)
maliciousonly: True
#list of Malicious Metadata to Alert on
badmetalist: badmetalist.txt
#Number of Processes to spawn to increase processing speed of samples (Set to 'off' to disable)
threads: 2
#Sleep time in seconds if using internal loop to recurse over input directory (Set to 'off' to disable)
sleep: off
#Perform ssdeep fuzzy hashing of files and store in DB
ssdeep: True
#Scan the entriety of each file with Yara Rules
fullyara: True
yararules: midasyararules.yar
#Submit Hash of scanned file to VirusTotal Records Detections (Only hash is submitted requires Premium API Key)
virustotal: False
vtapikey: <VIRUSTOTAL - PRIVATE API HERE>