MISP 2.4.132 released (security fix CVE-2020-25766 and bugs fixed)
MISP 2.4.132 released
A new version of MISP (2.4.132) has been released with several bugs fixed including an important security fix CVE-2020-25766.
MISP 2.4.131 released (improvements, bug fixes and major update to JavaScript dependencies)
MISP 2.4.131 released
A new version of MISP (2.4.131) has been released with improvements, bug fixes and a major update to JavaScript libraries.
MISP service monitoring with Cacti
MISP service monitoring with Cacti
Introduction
A previous post covered how to do MISP service monitoring with OpenNSM. Because having different options is good, this post covers how to achieve similar results with Cacti. For those not familiar with Cacti: it is a network graphing solution designed to harness the power of RRDTool’s data storage and graphing functionality.
MISP 2.4.130 released (Various fixes, performance improvements and new features)
MISP 2.4.130 released
A new version of MISP (2.4.130) has been released with performance improvements, multiple bugs fixed and new features.
MISP service monitoring (and a bit of healing) with OpenNMS
MISP service monitoring (and a bit of healing) with OpenNMS
Introduction:
Many organisations adore how quick and easy MISP can be set up. Once it’s running, people start integrating it into their processes and begin to rely on it, for instance by exporting indicators and using them in security or network focused software. Usually this is the time when MISP becomes a fundamental part in the portfolio of fighting attacks, and the need for reliability grows rapidly.
Creating a MISP Galaxy, 101
MISP Galaxies
MISP Galaxies and Clusters are an easy way to add context to data. Compared to the relatively simple concept of tags and taxonomies, they allow you to add more complex data structures. There is already a large list of galaxies and clusters available as a community effort, and directly accessible within MISP, but it’s always possible these do not fully address your needs.
Publishing open data from MISP
Publish data on Open data portals with MISP
The Open data format
Open data defines the idea of making some data freely available for everyone to use with a possibility of redistribution in any form. The open data format provides metadata information describing the datasets along with resources stored within the portal.
MISP 2.4.129 released (merge event improved, event block rule system, security fixes and many bugs fixed)
MISP 2.4.129 released
A new version of MISP (2.4.129) has been released with an improved merge functionality, a new event block rule system, many security fixes and bugs fixed.
MISP 2.4.128 released (STIX import/export refactored release edition)
MISP 2.4.128 released
A new version of MISP (2.4.128) has been released with a significant refactoring of the STIX import/export along with many improvements and bugs fixed.
MISP 2.4.127 released (decay updates release edition)
MISP 2.4.127 released
A new version of MISP (2.4.127) has been released with an improved version of attributes decaying, new set of widgets, many improvements and bugs fixed.
MISP 2.4.126 released (Spring release edition)
MISP 2.4.126 released
A new version of MISP (2.4.126) has been released a while ago, though we have forgotten to publish a blog post about it - thanks to @coolacid for the reminder. This version includes a security fix and various quality of life improvements.
MISP 2.4.125 released (aka self-registration feature and feed improvements release)
MISP 2.4.125 released
A new version of MISP (2.4.125) has been released. This version includes various improvements including a major refactoring of the feed system, the addition of OTP, a new inbox system to allow for self-registration, sightings in the timeline visualisation and many more improvements.
MISP 2.4.124 released (aka the dashboard, auditing improvements)
MISP 2.4.124 released
A new version of MISP (2.4.124) has been released. This version includes various improvements including a new multiline widgets in the dashboard, auditing improvements and many bugs fixed.
Cogsec Collab MISP Community - sharing group dedicated to misinformation and information campaigns
We’re proud to announce the CogSec Collab MISP Community - the first public MISP sharing group dedicated to misinformation and information campaigns.
MISP 2.4.123 released (aka the dashboard and security fix release)
MISP 2.4.123 released
A new version of MISP (2.4.123) has been released. This version includes various security related fixed, and a new Dashboard system.
MISP 2.4.122 released (aka the bug fix release)
MISP 2.4.122 released
A new version of MISP (2.4.122) has been released. This version includes various fixes, minor new features and improvements.
MISP 2.4.121 released (aka the security release)
MISP 2.4.121 released
A new version of MISP (2.4.121) has been released. This version is a security/bug fix release and users are highly encouraged to update as soon as possible. Besides that several issues were resolved and some new functionalities were added.
MISP 2.4.120 released (aka the timeline release)
MISP 2.4.120 released
A new version of MISP (2.4.120) has been released, including an extension to the data-model adding the first_seen and last_seen values at the attribute and object levels. The user-interface has been extended with a timeline view/editor per event, allowing users to see all occurrences of attributes and objects based on time. A new quick object edit tool has been added, enabling users to easily add new attributes to already existing objects. A long list of bugs were fixed and various improvements were made in the existing features.
MISP 2.4.119 released (aka the quality of life release)
MISP 2.4.119 released
A new version of MISP (2.4.119) has been released, including several functionalities that should make the operation of a MISP instance more convenient.
MISP 2.4.118 released (aka the exclusivity tag release and SightingDB support)
MISP 2.4.118 released
A new version of MISP (2.4.118) has been release including a functionality that allows for tag exclusivity within taxonomies, the support for external Sighting sources via SightingDB and many fixes.