A simple utility for logging hpfeeds events to files compatible with Splunk and ArcSight (coming soon).
git clone https://github.com/threatstream/mhn-logger.git
cd mhn-logger
virtualenv env
. env/bin/activate
pip install -r requirements.txt
Add an hpfeeds user that is capable of subscribing to all channels listed in your config. (see add_user.py from ThreatStream's fork of hpfeeds).
Create your config.
cp logger.json.example logger.json
vi logger.json
. env/bin/activate
./bin/hpfeeds-logger logger.json
This application is designed to fail fast and should be run using supervisord or upstart configured to auto restart upon exitting.