MISP Project @MISPProject@mastodon.opencloud.lu

Tracking data spills in your SOC? ⁦@MISPProject⁩ has an information leak object based on the AIL framework. #privacy #dataleak
https://github.com/CIRCL/AIL-framework/blob/master/README.md …

Don't forget MISP is a versatile open source platform for information sharing and yes it can be used to share #COVID19 information. If you have additional ideas or object that you would like to see, let us know. cc @JHUSystems
https://twitter.com/rafi0t/status/1233554081920229376 …

Sooo because I know how to party on Friday night, here a quick and dirty importer to @MISPProject format for the #COVID19 data provided by Johns Hopkins CSSE (
https://github.com/CSSEGISandData/COVID-19 …).

MISP Object Template:
https://github.com/MISP/misp-objects/blob/master/objects/covid19-csse-daily-report/definition.json …

Script:
https://github.com/MISP/PyMISP/blob/master/examples/import_csse_covid19_daily.py …pic.twitter.com/Pg35yznmyN

Hello, there is a Gitter for who wants to get in touch with us
https://gitter.im/workshop-materials/ …
#IoT #workshop @MISPProject @DC11331 @adulau

The @MISPProject team was kind enough to make a Docker room under the MISP project on gitter. You can join me in the room here:
https://gitter.im/MISP/Docker  for all your docker needs.

This is a great initiative for @MISPProject users in Greece. Feel free to reach out to @Cyb3rMik3 and get involved. Sharing is caring as always #greece #misp #cti #threatintel
https://twitter.com/cyb3rmik3/status/1233458355542351873 …

I am looking for fellow #InfoSec / #CyberSecurity professionals to start engaging around the @MISPProject in #Greece. Meetups and discussions to build community & share ideas and best practices and all kinds of TLP:WHITE only info. Please reply here or DM if you are interested

MISP 2.4.122 has been released including critical bug fixes and some minor new features. #ThreatIntel #CTI

https://www.misp-project.org/2020/02/18/MISP.2.4.122.released.html …pic.twitter.com/ayLkp23IgG

Thanks all for coming on Tuesday @DC11331 it was great! Thanks @yop_solo for the last min place, @adulau @MISPProject and nice experience talking with you all guys about our little #IoT // #ThreatIntel project. Questions/comments of quality.

OWASP Aarhus workshop, 40 people building @elastic SIEM app detection rules on #sysmon data, enriching them with threat data from @MISPProject and shipping them to @TheHive_Project... Alot packed into 2 hours! But crazy fun! Lesson learned: upgrade lab with more RAM...pic.twitter.com/osXgJE0hJN

TFW your favorite actor, Sagrid (TA543), does not come back from vacationpic.twitter.com/NxXGp6lVNz

misp-maltego is much more advanced nowadays
https://github.com/MISP/misp-maltego … @MISPProject

My Docker for @MISPProject version 2.4.121d will be cooked in about an hour.
- New: Hardening of NGINX
- Fix: PHP settings
- Fix: FAUP for modules
- Fix: ps/kill for workers
- Fix: autogen SSL certs
- Readme updates

Thanks to @SeanTheGeek
https://github.com/coolacid/docker-misp …

If you are in Paris tonight there is a @DC11331 meetup, @adulau from MISP Project will show the use of MISP to build dedicated information sharing communities. Including new models to share information such as IoT device analysis/reversing by @Ko97551819
https://twitter.com/adulau/status/1229517535260946433 …

New object templates added to support the documenting and sharing of IoT devices analysis/reversing. Thanks to @Ko97551819 for the workshop content and the idea to use MISP for sharing. This can benefit projects such as @VARIoT_project and @d4_project
https://www.misp-project.org/objects.html#_iot_device …pic.twitter.com/PiqfCNqWsy

For the folks who handle #IoT threat, I just pushed Event ID 65116 in the @MISPProject for #Linux #Mirai #FBOT attributions. You can remap it into a new object templates for IOT threat classification (see the RT).
Thanks @Ko97551819 for cool workshop
contact: #MISP #MISPproject
https://twitter.com/MISPProject/status/1232252985784307712 …

For the folks who handle #IoT threat, I just pushed Event ID 65116 in the @MISPProject for #Linux #Mirai #FBOT attributions. You can remap it into a new ibject templates for IOT threat classification (see the RT).
Thanks & contact: @Ko97551819 for cook workshop
#MISP #MISPproject
https://twitter.com/MISPProject/status/1232252985784307712 …

You ever consider feeding confirmed hits into @MISPProject even as a paid sub feed?

AIL Framework version 3.0 has been released with full @MISPProject standard format export/import and small improvements. #ThreatIntel

https://github.com/CIRCL/AIL-framework/releases/tag/v3.0 …pic.twitter.com/F96AkHAzDj

Malware Patrol offers an integration with MISP, the open source threat intelligence platform used for sharing, storing and correlating IOCs.

Learn More:
https://www.malwarepatrol.net/malware-patrol-misp-platform-integration/ …pic.twitter.com/h9vT1B3jX9