MISP 2.4.200 and 2.5.2 released - Post Hack.lu/CTI-Summit release with many new features
The Hack.lu/CTI-Summit once again allowed us to get in touch with the community and sit down to talk about new features and issues to be implemented.
MISP ioC retrosearch with misp42 Splunk app.
Introduction Hi, in this blog post I am going to share how I have built a framework on Splunk to retrosearch on MISP indicators of compromise.
MISP 2.4.197 released with many bugs fixed, a security fix and improvements.
Release Notes - v2.4.197 (2024-09-02) New Features Config Option: Added a new configuration option user_org_uuid_in_response_header to include a response header with the requesting user’s organization UUID.
MISP 2.4.196 released with many bugs fixed and improvements.
MISP 2.4.196 released with many bugs fixed and improvements. New Features Decaying Model: Introduced a new DecayingModel that leverages true positive and false positive sightings for better decision-making.
SkillAegis
Design and Execute Cyber Threat Intelligence Scenarios with SkillAegis Practical experience is essential for skill development, and effective training must be both engaging and capable of identifying gaps in understanding.
MISP 2.4.195 - hot summer olympic release
MISP 2.4.195 - hot summer olympic release We are pleased to announce the immediate availability of MISP v2.4.195, a summer release aiming to introduce new features, fix a long list of reported bugs and deficiencies as well as give your servers a breather in the scorching summer heat by taking a load off your CPUs thanks to a set of impactful performance fixes.
Maltego Integration with MISP
Maltego Integration with MISP Understanding How Maltego Integrates with MISP Data for Enhanced Cyber Threat Analysis Table of contents Introduction About Maltego How Maltego Integrates with MISP Data Requirements Use Cases Introducing Workflows Demonstration Conclusion Introduction Many organizations run MISP instances with other cybersecurity tools and OSINT for data-driven investigations.
Collaborative Threat Intelligence Sharing and Automated Information Exchange - Insights from the JTAN Project Experience
The JTAN (Joint Threat Analysis Network) Project, co-funded by the European Union’s CEF program, addresses the critical need for efficient and effective threat intelligence sharing among cybersecurity teams.
MISP 2.4.194 released with new functionalities and various bugs fixed
MISP 2.4.194 released with new functionalities and various bugs fixed. Sorry, cannot display the video as the video tag is not supported by your browser.
MISP 2.4.193 released with many bugs fixed, API improvements and security fixes
MISP 2.4.193 released with many bugs fixed, API improvements and security fixes New [attributes/enrich] endpoint added. Simply post a list of modules you wish to enrich the attribute by.
MISP 2.4.192 released with many performance improvement, fixes and updates.
New Features Security Enhancements: Ability to disable TOTP/HTOTP when linked to an identity provider with strong authentication. Introduced Fast API Authentication with temporary storage of hashed API keys in Redis to enhance endpoint performance.
MISP 2.4.190 (and 2.4.191) released with new feed improvement, workflows and a new benchmarking suite.
We are excited to announce the release of MISP v2.4.190. This latest version introduces a slew of new features, improvements, and fixes designed to streamline operations and enhance security measures for our users.
Using your MISP IoCs in Kunai (the open source EDR for Linux)
Using your MISP IoCs in Kunai Kunai is an open-source security monitoring tool, specifically designed to address the threat-hunting and threat-detection problematic on Linux.
MISP 2.4.189 released with bug fixes, performance improvements and a new blocklist feature.
We are pleased to announce the immediate release of MISP 2.4.189, released with bug fixes, performance improvements and a new blocklist feature.
MISP - Elastic Stack - Docker Lab
MISP - Elastic Stack - Docker This lab explains how to connect MISP to the Elastic Stack in order to leverage IOCs from MISP and trigger alerts based on user defined rules.
Partnership Collaboration between the MISP Project and the Yeti Platform
The MISP Project, renowned for its threat intelligence sharing platform, and Yeti Platform, the Forensics Intelligence platform supporting CTI and DFIR practitioners, are coming together to create a more robust and interconnected open source landscape.
MISP 2.4.188 released major performance improvements and many bugs fixed.
We are pleased to announce the immediate release of MISP 2.4.188, with major performance improvements and many bugs fixed. New Features Datasource Improvements: Updates to some datasources with the ignoreIndexHint parameter (mysqlExtended, mysqlObserverExtended).
Poppy a new Bloom filter format and open source project
Poppy a new Bloom filter format and open source library Introduction At CIRCL we use regularly bloom filters for some of our use cases especially in digital forensic.
MISP 2.4.187 released with security fixes, new features and bugs fixes.
We are pleased to announce the immediate release of MISP 2.4.187, including security fixes, new features and bugs fixes. New Features CLI Enhancements: Added org list to shell commands.
Introducing Standalone Functionality to MISP Modules - A New Era of Flexibility and Efficiency
Introducing Standalone Functionality to MISP Modules: A New Era of Flexibility and Efficiency In the ever-evolving landscape of information security, the need for adaptable and efficient tools has never been greater.