MISP Project @MISPProject@mastodon.opencloud.lu

We are at #FIC2020 and don't hesitate to visit us (G10) to get some stickers or talk about threat intelligence.pic.twitter.com/aK7lb07fGi

and just across the alley you'll find the @CybersecLux booth (G3), Luxembourg is #strong @FIC_eu in 2020
https://twitter.com/mispproject/status/1222084385840812034 …

Looking to connect #opensource threat intelligence tools? @tenzir_company's Threat Bus is a pub-sub broker for threat intelligence #data which you can seamlessly integrate #MISP intelligence with the @Zeekurity intel framework and much more:
https://github.com/tenzir/threatbus …
#cybersecurity

If you are a new ISAC and want to start a sharing community, don't forget we have a document made with X-ISAC
https://www.x-isac.org/publication.html … "Guidelines to setting up an information sharing community such as an ISAC or ISAO"pic.twitter.com/HqwPG1BSKo

and within the MISP training materials, we have a specific slide-deck with recommendations for setting up your community while using MISP
https://www.misp-project.org/misp-training/a.4-best-practices.pdf … -
https://github.com/MISP/misp-training …. Don't hesitate to reach out to us if you want some support or want to share experiences.

New release: MISP 2.4.120 (Malware Information Sharing Platform) by @MISPProject #detection #infosec #tools
https://linuxsecurity.expert/tools/misp/ 

Check out
https://github.com/tylabs/dovehawk  dovehawk to integrate misp with zeek directly and handle content signatures in addition to indicators

Do you want to know how to use the @MISPProject platform? There is a -free- MISP Training for Analysts and Administrators on 18-Feb
https://www.xing-events.com/UXMOBFA.html 

this has sadly been going on for a long time and still is successful (reference from a year ago
https://twitter.com/MISPProject/status/1086941288807706624?s=20 …)

I will be at @FIC_eu next week if you want to discuss about @MISPProject @cve_search @d4_project @circl_lu open source security or even threat intelligence. Booth G10
https://twitter.com/MISPProject/status/1219909086684336129 …

Threat Bus: a real-time pub/sub broker to get intelligence/indicators from @MISPProject and feed your @Zeekurity in real-time & get sightings from your NIDS to MISP. A clever way to connect efficiently open source security tools. Thanks to @tenzir_company
https://github.com/tenzir/threatbus …pic.twitter.com/vn25bMPix8

Glad to see the @concordiah2020 project using the MISP platform. This could also help us to improve the platform to cover new use-cases. Great news!
https://twitter.com/concordiah2020/status/1220283310817128448 …

"DFSA supports National Cybersecurity Strategy by Launching a Cyber Threat Intelligence Platform" #DFSA

We are delighted to see new ISAC and financial sharing community being created and relying on MISP.

http://www.dfsa.ae/en/MediaRelease/News/DFSA-supports-National-Cybersecurity-Strategy-by-L?newsid=293 …

Quand @MISPProject sort une nouvelle version
https://twitter.com/MISPProject/status/1219287226581950465 …pic.twitter.com/um17TlS3uh

We (@adulau and @chrisred_68) will be at the @FIC_eu (at Booth G10) next week. If you have any question, ideas, bug reports, feature requests about @MISPProject or
http://MISP-standard.org  don't hesitate to visit us (to get stickers too ;-). #ThreatIntel #FIC2020pic.twitter.com/AfTBlgchFW

MISP core format has been updated and published which includes the JSON schema for the new first_seen/last_seen on objects and attributes.
https://www.misp-standard.org/rfc/misp-standard-core.html … -
https://tools.ietf.org/html/draft-dulaunoy-misp-core-format-09 … #CTI

We have also updated the AWS AMI's! Check the project page for more information:
https://github.com/MISP/misp-cloud 

Bugs, FR's or comments, let me know!
https://twitter.com/MISPProject/status/1219596673439223809 …pic.twitter.com/OIozuAHpOt

MISP 2.4.120 has just hit the internet, again an amazing work by the community behind the @MISPProject

One of the biggest things in this update is the timeline feature and improved data-model

https://www.misp-project.org/2020/01/21/MISP.2.4.120.released.html …
#MISP #Threatintelligence #Security #DFIR #ThreatIntel

Ow damn, this is so interesting to get a better view on certain events and to filter your IOC's based on their last_seen date :). Thanks @MISPProject!!
https://twitter.com/MISPProject/status/1219596673439223809 …

MISP 2.4.120 released including the timeline support on attributes and objects in MISP. This release also includes various bugs fixed and improvements.
https://www.misp-project.org/2020/01/21/MISP.2.4.120.released.html … #ThreatIntel #DFIRpic.twitter.com/4wNR1dCEQO