{"id":26010204,"url":"https://github.com/jblukach/feedwalla","last_synced_at":"2026-04-08T12:01:03.612Z","repository":{"id":256509384,"uuid":"855081407","full_name":"jblukach/feedwalla","owner":"jblukach","description":"Feedwalla transforms Firewalla block events - specifically Internet Scanner detections - into a clean, Open Source Threat Intelligence feed.","archived":false,"fork":false,"pushed_at":"2026-04-04T10:00:30.000Z","size":38,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2026-04-04T12:27:50.591Z","etag":null,"topics":["aws","cdk","feed","firewalla","ipv4","ipv6","msp","osint","python","threat"],"latest_commit_sha":null,"homepage":"https://lukach.io","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jblukach.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2024-09-10T09:18:53.000Z","updated_at":"2026-03-12T04:00:56.000Z","dependencies_parsed_at":"2026-04-04T12:02:29.174Z","dependency_job_id":null,"html_url":"https://github.com/jblukach/feedwalla","commit_stats":null,"previous_names":["jblukach/feedwalla"],"tags_count":10628,"template":false,"template_full_name":null,"purl":"pkg:github/jblukach/feedwalla","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jblukach%2Ffeedwalla","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jblukach%2Ffeedwalla/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jblukach%2Ffeedwalla/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jblukach%2Ffeedwalla/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jblukach","download_url":"https://codeload.github.com/jblukach/feedwalla/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jblukach%2Ffeedwalla/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31554109,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-08T10:21:54.569Z","status":"ssl_error","status_checked_at":"2026-04-08T10:21:38.171Z","response_time":54,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","cdk","feed","firewalla","ipv4","ipv6","msp","osint","python","threat"],"created_at":"2025-03-05T22:40:10.760Z","updated_at":"2026-04-08T12:01:02.035Z","avatar_url":"https://github.com/jblukach.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# feedwalla\n\nFeedwalla transforms **[Firewalla](https://firewalla.com)** block events — specifically **Internet Scanner** detections — into a clean, Open Source Threat Intelligence (OSINT) feed. The feed is **released daily at 10:00 AM UTC** as a **GitHub Release**, sourced from the **[Firewalla MSP](https://firewalla.net)** subscription.\n\n---\n\n## ✨ What is Feedwalla?\n\nFeedwalla is an open-source threat intelligence project that publishes **atomic indicators** observed by Firewalla networks. By focusing on **actual firewall blocks** triggered by **internet-wide scanning activity**, Feedwalla provides defenders with timely and practical indicators suitable for automated ingestion.\n\nThe goal is simple:\n\n- Turn real firewall blocks into actionable OSINT  \n- Keep indicators atomic and easy to consume  \n- Release consistently, predictably, and transparently  \n\n---\n\n## 🔌 How to Use\n\n### Manual Download\n\nDownload the latest feed directly from the **GitHub Releases** page.\n\n### Automated Ingestion\n\nFeedwalla is designed for easy integration with:\n\n- Firewalls  \n- SIEM platforms  \n- SOAR pipelines  \n- IDS / IPS systems  \n- Custom scripts  \n\n---\n\n## 🎯 Intended Use Cases\n\n- Enrich firewall blocklists  \n- Correlate scanner activity across environments  \n- Threat hunting  \n- Detection engineering  \n- Security research  \n\n---\n\n## ⚠️ Disclaimer\n\n- Indicators are provided **as-is**  \n- Inclusion does **not guarantee malicious intent**, only observed scanner behavior  \n- Always validate indicators against your own environment and risk tolerance  \n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjblukach%2Ffeedwalla","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjblukach%2Ffeedwalla","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjblukach%2Ffeedwalla/lists"}