After the recent news of a Threat Intelligence Platform vendor stopping its activities, we have received some questions about our strategies as a Threat Intelligence Platform.
MISP is open-source and free software released some years ago in the interest of the community. The MISP Threat Sharing project became a significant undertaking allowing people to freely and openly contribute. Our objective is not to lock-down users. On the contrary, we want a large and diverse community to gather valuable feedback on how information sharing is done and how MISP could support these respective use-cases. As an example, the financial sector was taken into consideration when extending the datamodel because many of our users decided to support financial indicators in addition to cyber security indicators.
Our social contract is simple: MISP is open-source software (licensed under the AGPL) and MISP is secured to remain open-source forever.
When joining and contributing to the MISP project, it’s a reciprocal model. While contributing to MISP, you bring value into the MISP project and this value is shared among the community and not captured in the sole benefit of one user or organisation.
How can you contribute to MISP?
Our work is public and transparent. Each contribution is a seed to improve MISP and information sharing. We are always enthusiastic to get contributions as this is a vital part of how we build the MISP Threat Sharing project.