Support Questions

Abdulrahmants · ‎02-05-2023

I have a use case that requires malware analysis. The analysis and feature extraction is taking place on a separate designated server/network. A feature file is generated on that server/network. I will need to schedule the analysis to run on the most recent malware and generate feature files. The challenge is how do I send the feature file to Nifi from the server/network that has access to malware repository?

steven-matison · ‎02-06-2023

I believe this is a job for MiNiFi

https://nifi.apache.org/minifi/index.html

Basically, you create a small minifi flow to run on the server/network with privelaged access, and this flow will send its results to NiFi.

Abdulrahmants · ‎02-06-2023

Thanks Steven! We do not have Minifi or the edge management product though, is there another approach?

steven-matison · ‎02-07-2023

@Abdulrahmants if you need to talk to someone about getting those added, please reach out in direct message.

Another approach could be to create an API input endpoint on nifi (handleHttpRequest/handleHttpResponse), and make a scripted (python,java,etc) process to send the file to the nifi endpoint.

Cloudera Community

Support Questions

Ingesting Malware Features into Nifi and Cloudera