# Sample Cortex application.conf file## SECRET KEY## The secret key is u

1. # Sample Cortex application.conf file
2.  
3. ## SECRET KEY
4. #
5. # The secret key is used to secure cryptographic functions.
6. #
7. # IMPORTANT: If you deploy your application to several instances, make
8. # sure to use the same key.
9. #play.crypto.secret="***CHANGEME***"
10.  
11. ## ANALYZERS
12. #
13. # This section holds the configuration of the analyzers.
14. #
15. # Please note that MISP expansion modules have their separate section
16. # (see MISP EXPANSION MODULES below).
17. #
18. # NOTE: you are highly advised to remove the configuration parts related
19. # to unneeded/unused analyzers.
20. #
21. # NOTE: if you don't need an analyzer, please remove the corresponding
22. # directory. For example, if you don't use 'MaxMind', remove:
23. # /path/to/Cortex-Analyzers/analyzers/MaxMind
24. #
25. # WARNING: there is overlap between Cortex native analyzers and MISP
26. # expansion modules. We highly advise you to use native analyzers
27. # whenever possible.
28. #
29. # WARNING: DO NOT CONFIGURE A CORTEX ANALYZER AND A MISP MODULE FOR THE
30. # SAME SERVICE.
31. analyzer {
32. path = "path/to/Cortex-Analyzers/analyzers"
33. }
34. ## MISP EXPANSION MODULES
35. #
36. # This section holds the configuration of the MISP expansion modules
37. # which Cortex can use as analyzers. They are disabled by default. If
38. # you need to enable them, change the value of the 'enabled' parameter
39. # WARNING: there is overlap between Cortex native analyzers and MISP
40. # expansion modules. We highly advise you to use native analyzers
41. # whenever possible.
42. #
43. # WARNING: DO NOT CONFIGURE A CORTEX ANALYZER AND A MISP MODULE FOR THE
44. # SAME SERVICE.
45. misp.modules {
46. enabled = true
47.  
48. # Refer to https://github.com/MISP/misp-modules#expansion-modules for
49. # the configuration of the MISP expansion modules.
50. config {
51.  
52. shodan {
53. apikey = ""
54. }
55.  
56. eupi {
57. #apikey = ""
58. #url = ""
59. }
60.  
61. passivetotal {
62. #username = ""
63. #api_key = ""
64. }
65.  
66. dns {
67. nameserver = "127.0.0.1"
68. }
69.  
70. whois {
71. #server = ""
72. #port = ""
73. }
74.  
75. sourcecache {
76. #archivepath = ""
77. }
78. geoip_country {
79. }
80.  
81. circl_passivessl {
82. #username = ""
83. #password = ""
84. }
85.  
86. iprep {
87. #apikey = ""
88. }
89.  
90. countrycode {
91. }
92.  
93. cve {
94. }
95.  
96. virustotal {
97. #apikey = ""
98. ipasn {
99. #host = ""
100. #port = ""
101. #db = ""
102. }
103.  
104. circl_passivedns {
105. #username = ""
106. #password = ""
107. }
108.  
109. vmray_submit {
110. #apikey = ""
111. #url = ""
112. #shareable = ""
113. wiki {
114. }
115.  
116. domaintools {
117. #username = ""
118. #api_key = ""
119. }
120.  
121. reversedns {
122. #nameserver = ""
123. }
124.  
125. threatminer {
126. }
127.  
128. asn_history {
129. #host = ""
130. #port = ""
131. #db = ""
132. }
133. http.port=9001
134. misp.modules.enabled = true
135. misp.modules {
136. enabled = true
137.  
138. config {
139.  
140. shodan {
141. apikey = ""
142. }
143.  
144. dns {
145. nameserver = "127.0.0.1"
146. }
147.  
148. }
149. }
150. # It's the end my friend. Happy hunting!
151. # Secret key
152. # ~~~~~
153. # The secret key is used to secure cryptographics functions.
154. # If you deploy your application to several instances be sure to use the same key!
155. play.crypto.secret="