fibratus.yml

image_meta:
  enabled: false
  imports: false
  file_info: false

skips:
  images:
    - svchost.exe
    - smss.exe
    - services.exe
    - taskmgr.exe
    - dwm.exe
    - vprot.exe
    - lsass.exe
    - sihost.exe
    - system

output:
  - console:
      format: pretty
#  - amqp:
#      host: 127.0.0.1
#      port: 5672
#      username: guest
#      password: guest
#      vhost: /
#      exchange: amq.direct
#      routingkey: fibratus
#  - smtp:
#      host: smtp.gmail.com
#      port: 587
#      from: info@github.io
#      password: secret
#      to:
#        - fibratus@github.io
#        - netmutatus@github.io
#  - elasticsearch:
#      hosts:
#        - localhost:9200
#      index: kernelstream
#      document: threads
#      bulk: True
#      username: elastic
#      password: changeme
#      ssl: True

#binding:
#  - yara:
#      path: D:\yara-rules