Blogs

MISP 2.4.141 released (Many improvements from email notification, UI, API and installation scripts)

MISP 2.4.141 released MISP 2.4.141 released including many improvements from email notification, UI, API and installation scripts. User-Interface [UI] Render galaxy cluster description as markdown.

Continue reading

Creating a MISP Object, 101

MISP Objects MISP objects are containers around contextually linked attributes. They support analysts in grouping related attributes and describing the relations that exist between the data points in a threat event.

Continue reading

MISP 2.4.140 released (OpenID support, cross object references in extended events and many improvements)

MISP 2.4.140 released We have released 2.4.140, the latest release for MISP, introducing a host of new features, including integrations with various authentication systems, various improvements to the handling of objects, CLI improvements as well as a package containing general bug fixes, along with the usual update of the JSON libraries.

Continue reading

MISP 2.4.139 released (Quality of life and bugfix release)

MISP 2.4.139 released We have released 2.4.139, the latest release for MISP squashes a set of pretty annoying bugs, whilst also adding some shiny new features to play with, along with the usual update of the JSON libraries.

Continue reading

MISP 2.4.138 released (Many improvements including CISA.gov AIS dynamic marking functionality, RSIT galaxy added)

MISP 2.4.138 released We have released 2.4.138, the latest release for MISP along with an update of the JSON libraries.

Continue reading

MISP 2.4.137 released (New exclusion module for the correlation engine, many improvements and security vulnerabilities resolved)

MISP 2.4.137 released We have released 2.4.137, a security and bug fix release including a collection of fixes and improvements collected over the past month.

Continue reading

MISP 2.4.136 released (Cerebrate project integration)

MISP 2.4.136 released Though we’re rather late with the release notes, we did have some goodies to share for the winter festivities, bundled neatly into the 2.

Continue reading

MISP 2.4.135 released (galaxy 2.0)

MISP 2.4.135 released Don’t let the minor version number change fool you, this release is a game changer for MISP and information sharing in general.

Continue reading

MISP 2.4.134 released (new import extractor for the event report, various improvements and fixes)

MISP 2.4.134 released In the previous version of MISP, the new Event Report functionality has been introduced to edit, visualise and share reports in Markdown format, which includes the ability to reference elements from within a MISP event.

Continue reading

MISP 2.4.133 released (major improvements such as the markdown report feature and many UI improvements)

MISP 2.4.133 released with major improvements such as the markdown report feature and many UI improvements. Unstructured/semi-structured report feature MISP is widely known as a powerful tool to gather, correlate and share information.

Continue reading

Event Report - A convenient mechanism to edit, visualize and share reports

Event Report: A convenient mechanism to edit, visualize and share reports MISP is widely known as a powerful tool to gather, correlate and share information.

Continue reading

Create an import script for MISP , step-by-step tutorial

Create an import script for MISP in Python, step-by-step tutorial Script description Example add_github_user.py Here the goal is to push to MISP information gathered on Github.

Continue reading

MISP 2.4.132 released (security fix CVE-2020-25766 and bugs fixed)

MISP 2.4.132 released A new version of MISP (2.4.132) has been released with several bugs fixed including an important security fix CVE-2020-25766.

Continue reading

MISP 2.4.131 released (improvements, bug fixes and major update to JavaScript dependencies)

MISP 2.4.131 released A new version of MISP (2.4.131) has been released with improvements, bug fixes and a major update to JavaScript libraries.

Continue reading

MISP service monitoring with Cacti

MISP service monitoring with Cacti Introduction A previous post covered how to do MISP service monitoring with OpenNSM. Because having different options is good, this post covers how to achieve similar results with Cacti.

Continue reading

MISP 2.4.130 released (Various fixes, performance improvements and new features)

MISP 2.4.130 released A new version of MISP (2.4.130) has been released with performance improvements, multiple bugs fixed and new features.

Continue reading

MISP service monitoring (and a bit of healing) with OpenNMS

MISP service monitoring (and a bit of healing) with OpenNMS Introduction: Many organisations adore how quick and easy MISP can be set up.

Continue reading

Creating a MISP Galaxy, 101

MISP Galaxies MISP Galaxies and Clusters are an easy way to add context to data. Compared to the relatively simple concept of tags and taxonomies, they allow you to add more complex data structures.

Continue reading

Publishing open data from MISP

Publish data on Open data portals with MISP The Open data format Open data defines the idea of making some data freely available for everyone to use with a possibility of redistribution in any form.

Continue reading

MISP 2.4.129 released (merge event improved, event block rule system, security fixes and many bugs fixed)

MISP 2.4.129 released A new version of MISP (2.4.129) has been released with an improved merge functionality, a new event block rule system, many security fixes and bugs fixed.

Continue reading