I apologize if this has been answered in previous posts, I've tried searching and it seems that I'm getting bit and pieces but not the whole picture.
How would I go about creating my own list of IPs and then customizing Minemeld to mine \ gather the IPs to be used in an EDL. We have McKesson products and they recently send us a PDF with a large list of IPs and URLs that need to be allowed in order for their products to function. I was thinking that in the long run it may be easier to create a custom list vs manually creating a security policy.
Hi Luigi, that is a good question, I have tried searching for the document they sent me but have been unable to find it. I will check with McKesson support and validate if the document is public and if they provide the content in a machine readable format.
you might want to give my article Using MineMeld to extract indicators from a generic API that introduces the JSON, HTTP and CSV miners that could be considered the "general purpose miners"
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The Live Community thanks you for your participation!