josh-morin
diff --git a/‎LICENSE
+1-1 b/‎LICENSE
+1-1
diff --git a/‎README.md
+6-17 b/‎README.md
+6-17
diff --git a/‎scripts/sms.sh ‎action_scripts/sms.sh b/‎scripts/sms.sh ‎action_scripts/sms.sh
diff --git a/‎configs/ip_context_menu.xml
+3-4 b/‎configs/ip_context_menu.xml
+3-4
diff --git a/‎playbooks/deployment_info.yml
-14 b/‎playbooks/deployment_info.yml
-14
diff --git a/‎playbooks/qradar_log.yml
-14 b/‎playbooks/qradar_log.yml
-14
diff --git a/‎playbooks/restart_hostcontext.yml
-14 b/‎playbooks/restart_hostcontext.yml
-14
diff --git a/‎playbooks/restart_tomcat.yml
-13 b/‎playbooks/restart_tomcat.yml
-13
diff --git a/‎playbooks/system_usage.yml
-28 b/‎playbooks/system_usage.yml
-28
@@ -1,6 +1,6 @@
 MIT License
 
-Copyright (c) 2018-2019 Joshua Morin
+Copyright (c) 2018-2023 Joshua Morin
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
 
@@ -1,31 +1,16 @@
 ## Contents
-- [Ansible Playbooks](#ansible-playbooks)
 - [Custom Action Scripts](#custom-action-scripts)
 - [Custom Configurations](#custom-configurations)
+- [Remote Tasks](#remote-tasks)
 - [Resources](#resources)
 
 ---
 
-## Ansible Playbooks
-
-Usage:
-```
-$ ansible-playbook --ask-pass YourPlaybook.yml 
-```
-
-| Name | Description |
-| :--- | :--- |
-| deployment_info.yml | All appliances in QRadar deployment | 
-| qradar_log.yml | Last 20 lines of qradar and qradar error log files |
-| restart_hostcontext.yml | Restarts Hostcontext process | 
-| restart_tomcat.yml | Restarts Tomcat process |
-| system_usage.yml | Results from Disk Free, Free, and Netstat |
-
 ## Custom Action Scripts
 
 ### Short Message Service
 
-#### [sms.sh](https://github.com/josh-morin/qradar/blob/master/scripts/sms.sh)
+#### [sms.sh](https://github.com/josh-morin/qradar/blob/master/action_scripts/sms.sh)
 Send text messages from QRadar ”Custom Actions” using Twilio API in a bash file. 
 
 Setup
@@ -69,9 +54,13 @@ The following options are included:
 * MxToolBox Blacklist
 * Project Honey Pot
 * Shodan
+* Spamhaus Reputation Checker
 * ThreatMiner
 * VirusTotal
 
+## Remote Tasks
+
+
 ## Resources
 
 #### Resources & Content by IBM
 
@@ -1,9 +1,7 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <!--
-    
 This is a configuration file to add custom actions into the IP address right-click menu.
 github.com/josh-morin    
-
 -->
 <contextMenu>
         <menuEntry name="Nmap Scan -A -T4" exec="/bin/nmap -A -T4 %IP%" />
@@ -16,12 +14,13 @@ github.com/josh-morin
             <menuEntry name="Cisco Talos" url="https://www.talosintelligence.com/reputation_center/lookup?search=%IP%" />
             <menuEntry name="DNSlytics" url="https://dnslytics.com/ip/%IP%" />
             <menuEntry name="DShield" url="http://www.dshield.org/ipinfo.html?ip=%IP%" />
-            <menuEntry name="Google Safe Browsing" url="https://transparencyreport.google.com/safe-browsing/search?url=%IP%" />
+            <menuEntry name="Google" url="https://transparencyreport.google.com/safe-browsing/search?url=%IP%" />
             <menuEntry name="GreyNoise" url="https://www.greynoise.io/viz/ip/%IP%" />
             <menuEntry name="IPVoid" url="http://www.ipvoid.com/scan/%IP%" />
-            <menuEntry name="MxToolBox Blacklist" url="http://www.mxtoolbox.com/SuperTool.aspx?action=blacklist%3a%IP%" />
+            <menuEntry name="MxToolBox" url="http://www.mxtoolbox.com/SuperTool.aspx?action=blacklist%3a%IP%" />
             <menuEntry name="Project Honey Pot" url="https://www.projecthoneypot.org/ip_%IP%" />
             <menuEntry name="Shodan" url="https://www.shodan.io/host/%IP%" />
+            <menuEntry name="Spamhaus" url="https://check.spamhaus.org/listed?searchterm=103.232.200.125%IP%" />
             <menuEntry name="ThreatMiner" url="https://www.threatminer.org/host.php?q=%IP%" />
             <menuEntry name="VirusTotal" url="https://www.virustotal.com/#/ip-address/%IP%" />
 </contextMenu>