Skip to content
This repository was archived by the owner on Mar 5, 2026. It is now read-only.

elasticsearch.md

Latest commit

 

History

History
27 lines (23 loc) · 990 Bytes

elasticsearch.md

File metadata and controls

27 lines (23 loc) · 990 Bytes

To write results to ElasticSearch

Write to a elasticsearch docker container

$ docker volume create --name malice
$ docker run -d --name elasticsearch \
                -p 9200:9200 \
                -v malice:/usr/share/elasticsearch/data \
                 blacktop/elasticsearch:6
$ docker run --rm --link elasticsearch \
             -v /path/to/malware:/malware:ro \
             -e MALICE_ELASTICSEARCH_URL=http://elasticsearch:9200 \
             malice/mcafee -t FILE

Write to an external elasticsearch database

$ docker run --rm \
             -e MALICE_ELASTICSEARCH_URL=$MALICE_ELASTICSEARCH_URL \
             -e MALICE_ELASTICSEARCH_USERNAME=$MALICE_ELASTICSEARCH_USERNAME \
             -e MALICE_ELASTICSEARCH_PASSWORD=$MALICE_ELASTICSEARCH_PASSWORD \
             -e MALICE_ELASTICSEARCH_INDEX="test" \
             -v /path/to/malware:/malware:ro \
              malice/mcafee -t FILE