MISP Project @MISPProject@mastodon.opencloud.lu

We added the #MISP Project 'zeek' type for @Zeekurity to actively share NIDS rules for the NIDS formerly known as Bro. The Bro and Zeek type will coexist.
https://github.com/MISP/MISP/commit/e65c2a536c9b37f232ef9edb47323eae50f2a5ca

MISP core standard format and docs are also updated.

Long live #OpenSource

#ThreatIntel #Infosec #intelligence #Security

New object in #MISP to describe
@INTERPOL_HQ notices and share these easily. Thanks to @deltalimasierra @VinceDanjean #intelligence #Infosec #Security

The 5h and 6th February, we ( @adulau and @mokaddem_sami) will be in Sweden to give MISP trainings at SUNET. https://www.misp-project.org/events/#misp-trainings #misp-trainings … #ThreatIntel #Sweden - still some seats left

Don't hesitate to visit us during FIC at E20.

We have stickers but also we welcome any questions or ideas regarding threat intelligence or improvement proposals for MISP, research partnerships... #FIC2019 #MISP #Infosec

#MISP 2.4.101 has been released with three main new features such as tag collections, improved tag/galaxy selector and the long awaited remote MISP instance caching.
And many bugs fixed. #ThreatIntel #DFIR
https://www.misp-project.org/2019/01/20/MISP.2.4.101.released.html

The hassh and hasshserver fingerprint (to easily fingerprint SSH servers and clients) is now a default type (https://www.misp-project.org/datamodels/#types) in @MISPProject and MISP standard.

You can easily share indicators and objects to trace malicious SSH clients/servers.

https://github.com/salesforce/hassh

#Infosec #MISP #Security

If you haven't done it yet hit the Update button on your #MISP instance.

Version 2.4.100 has been released the 01/01/2019 to celebrate the New Year and it comes with lots of new features including a new query builder.

https://www.misp-project.org/2019/01/01/MISP.2.4.100.released.html

Why reinvent the wheel when someone had already made an awesome work?
If @TheHive_Project and @MISPProject don't fit exactly your cybersecurity needs, just contribute!

If you are looking for MISP training material head to the MISP GitHub repository:

https://github.com/MISP/misp-training

Based on the publication "An analysis and classification of public information security data sources used in research and practice" by Clemens Sauerwein and others, we implemented a new @MISPProject taxonomy https://www.misp-project.org/taxonomies.html#_information_security_data_source to describe public information data source.