{ "VirusTotal": { "apikey": null, "autosubmit": false, "allow_auto_trigger": false }, "PhishingInitiative": { "apikey": null, "autosubmit": false, "allow_auto_trigger": false }, "SaneJS": { "enabled": true, "allow_auto_trigger": true }, "MISP": { "apikey": null, "url": "https://misp.url", "verify_tls_cert": true, "timeout": 10, "enable_lookup": false, "enable_push": false, "default_tags": [], "auto_publish": false, "allow_auto_trigger": false }, "UniversalWhois": { "enabled": false, "ipaddress": "127.0.0.1", "port": 4243, "allow_auto_trigger": true }, "UrlScan": { "apikey": null, "autosubmit": false, "allow_auto_trigger": false, "force_visibility": false }, "Phishtank": { "enabled": false, "url": null, "allow_auto_trigger": true }, "_notes": { "apikey": "null disables the module. Pass a string otherwise.", "autosubmit": "Automatically submits the URL to the 3rd party service.", "allow_auto_trigger": "Allow auto trigger per module: some (i.e. VT) can be very expensive", "VirusTotal": "Module to query Virustotal: https://www.virustotal.com/", "PhishingInitiative": "Module to query phishing initiative: https://phishing-initiative.fr/contrib/", "SaneJS": "Module to query SaneJS: https://github.com/Lookyloo/sanejs", "MISP": "Module to query MISP: https://www.misp-project.org/", "UniversalWhois": "Module to query a local instance of uWhoisd: https://github.com/Lookyloo/uwhoisd", "UrlScan": "Module to query urlscan.io", "Phishtank": "Module to query Phishtank Lookup (https://github.com/Lookyloo/phishtank-lookup). URL set to none means querying the public instance." } }