Video of the latest MISP Training - Advanced, Developer session, from API to MISP internals is now online.

https://youtu.be/2tmjLsPrQkI

#opensource #threatintelligence #misp #infosec

by @mokaddem and @adulau from @circl

If you don't know how to enable and configure MFA (TOTP/HTOP) in MISP, there is a documentation about it in MISP book

https://www.circl.lu/doc/misp/administration/#administration-of-totphotp

Thanks to @wachizungu

#MISP #infosec #opensource

On the summer of 2018, hot on the heels of #riscv movement, #MISP / Wave came out that they, too, are embracing open source, and plan to make some of their ISAs *and* designs freely usable and downloadable.
I pre-registered for that, only to receive a pushback when the program started: they need my company/employer, address and phone numbers.
They didn't quite understand what a hobbyist is, and what they can do for them if they didn't alienate them...
Now #arm wouldn't do that... right?

https://www.misp-project.org/2023/08/24/MISP.2.4.175.released.html/

MISP 2.4.175 released with various bugs fixed, improvements and security fixes. A huge thank to everyone who help and support us. Don't forget to update.

#ThreatIntelligence #threatintel #opensource #misp #CTI

Another excellent playbook from @cudeso "Threat actor profiling" to explore MISP galaxies and clusters and discover TA associated TTPS, indicators and vulnerabilities and even TAXII-ing towards MITRE ATT&CK repository.

🔗 https://github.com/MISP/misp-playbooks/blob/main/misp-playbooks/pb_threat_actor_profiling-with_output.ipynb

For more playbooks https://github.com/MISP/misp-playbooks/

#cti #misp #opensource #ThreatIntelligence #threatintel #threatactor

@mitreattack

SecurityOnline: MISP v2.4.174 released – Malware Information Sharing Platform & Threat Sharing https://securityonline.info/misp-malware-information-sharing-platform-threat-sharing/ #MalwareAnalysis #Forensics #Defense #MISP

We are thrilled to announce the immediate availability of MISP v2.4.174 with significant workflow improvements, accompanied by a host of quality-of-life enhancements and bug fixes.

#opensource #misp #threatintel #threatintelligence #workflow #cti

https://www.misp-project.org/2023/07/31/MISP.2.4.174.released.html/

@narF de nos jours, la plupart du temps le.a fraichement né.e est enlevé.e de sa mère pour lavage pesage tout ça. Puis certain.e.s auront une chambre à part. Et des subterfuges pour endormissement. Je veux dire que notre culture moderne installe facilement de la distance entre les corps parents-enfants, peut-être un peu trop tôt, et la culture du câlin en pâtirait.

Le programme #MISP enseigne aux instituteurices comment enseigner un contact respectueux entre les enfants.
https://www.misa-france.fr/

Discovered a way to possibly automate a block list of servers there is a consensus of agreeing to block. This seems similar to #threatintelligence in #cybersecurity with tools like #MISP just a little bit. #MastoAdmin may be interested in this as it works over API too. I may see about adding it to my @Raspberry_Pi running several bots for #mastodon and #twitch https://codeberg.org/oliphant/blocklists

#fediblockmeta #infosec #IT #selfhosting

"MISP 2.4.173 released with various bugfixes and improvements"

We are pleased to announce the immediate availability of MISP v2.4.173 with a new password reset feature, along with a host of quality of life improvements and fixes.

#misp #opensource #cti

https://www.misp-project.org/2023/07/11/MISP.2.4.173.released.html/

Two free and online MISP training will be given the 5th September 2023 14:00-17:00 CEST and the 6th September 2023 14:00-17:00 CEST.

- MISP Training - Threat Intelligence Introduction for Analysts and Security Professionals

- MISP Training - Advanced Developer session from API to MISP internals

For more details: https://www.misp-project.org/events/#public-misp-trainings

#misp #threatintelligence #threatintel #opensource #cti

New release of MISP 2.4.172 with many new features such as the local HOTP/TOTP support, new TAXII browser and many improvements.

https://www.misp-project.org/2023/06/13/MISP.2.4.172.released.html/

#opensource #misp #threatintelligence #threatintel

If you are at #FIRSTCON23, don't forget to join us for the MISP workflow workshop on Monday given by @mokaddem and @adulau

Agenda: https://www.first.org/conference/2023/program#pBuilding-Your-Own-Workflows-in-MISP-Tutorial-and-Hands-On-Full-Day

#threatintelligence #opensource #misp

@firstdotorg

Hat jemand schon mal #wazuh , #thehive, #cortex und #misp miteinander verheiratet?
Das sind geniale Opensource Projekte für ein SIEM / SOC Konzept.
Würde mich über einen Know-How Austausch freuen.

#SOC #SIEM #wazuh #misp #thehive #cortex #malware #security #opensource #linux

We are pleased to announce the immediate availability of MISP v2.4.171 with a long list of fixes, major STIX 2 improvements and an overhaul over the dashboard widget toolkit.

https://www.misp-project.org/2023/05/18/MISP.2.4.171.released.html/

#misp #threatintel #opensource

Thanks to everyone who contributed and helped us to make MISP better.

How to push to a TAXII server from MISP.

Step by step blog post.

#threatintel #misp #taxii

https://www.misp-project.org/2023/04/29/MISP.how.to.push.to.a.taxii.server.html/

As @chrisr3d and @adulau from MISP project are involved into OASIS open CTI TC and STIX, a lot of discussions/ideas about interoperability testing and standard are happening.

A first initiative is the generation of @circl OSINT feed in different formats:

https://codeberg.org/adulau/misp-circl-feed

#opensource #cti #threatintelligence #misp

Thanks to Christophe Vandeplas for the new relationships tooling for galaxy clusters. Now MISP has the new relationships with new Microsoft threat actor "taxonomy" linking with the all other threat actor galaxy such as MISP or MITRE ATT&CK .

To have it, you just need to update your MISP galaxy in your MISP instance.

#threatintelligence #threatintel #misp #opensource

We are pleased to announce the immediate availability of MISP v2.4.170 with new features, workflow improvements and many bugs fixed.

#opensource #threatintelligence #threatintel #misp #cti #intelligencecommunity

https://www.misp-project.org/2023/04/13/MISP.2.4.170.released.html/

MISP to Azure Sentinel integration

The MISP to Azure / Sentinel integration allows you to upload indicators from MISP to Microsoft Sentinel. It relies on PyMISP to get indicators from MISP and an Azure App and Threat Intelligence Data Connector in Azure.

https://www.misp-project.org/2023/04/03/MISP-Sentinel.html/

Thanks to @cudeso for this nifty and cool new integration in MISP.

#threatintelligence #threatintel #misp #infosec #azure #opensource