MISP Project @MISPProject@mastodon.opencloud.lu

[+] import covid19 domain feeds in @MISPProject standard
ref: @dustyfresh
https://github.com/milannshrestha/covid19-domainfeed …

I'm impressed by the creativity of people in these days & especially the creative use of open source tools. E.g. many people rely on @MISPProject to share structured information like we did with a #COVID2019 MISP. Ideas & feedback are really welcome.
https://twitter.com/Ko97551819/status/1240248640515571713 …

Misp project created a dedicated Misp instance to share information:

https://twitter.com/MISPProject/status/1239864641993551873 … ask them by DM the access.

#COVID19 dedicated MISP
https://covid-19.iglocska.eu/users/login 

المنصة الشهيرة MISP تُخصص جزء منها لمتابعة تطور فيروس كورونا حول العالم. يمكنك مراسلتهم على الخاص في تويتر للحصول على الخدمة مجاناً.
#الأمن_السيبراني #أمن_المعلومات
#CONVID19
https://twitter.com/MISPProject/status/1239864641993551873 …

In case somebody is looking for a fun project, how about integrating MalwareBazaar @abuse_ch into @MISPProject as an enrichment module? Or a module to gather data into @TheHive_Project for additional intelligence?

A new malware campaign of #COVID2019 based theme is ongoing with a very low detection rate. Don't hesitate to contact us to get access to our private sector MISP information sharing community and get the IOCs.

51eab875208923d82953fd3492b2efab3dc1d234c555a2db9dcd45e840a9040cpic.twitter.com/f3ja7EMe0J

Way to go

Full IOC's in @MISPProject Priv and here:

https://github.com/Hestat/intel-sharing/blob/master/trickbot-03-08-20/misp.event.35114.json …
https://github.com/Hestat/intel-sharing/blob/master/trickbot-03-08-20/misp.event.35113.json …

We have a dedicated MISP to share information about #COVID2019
https://covid-19.iglocska.eu  - If you want access DM us on Twitter.pic.twitter.com/8KuykC3XE0

Your tweet and the info is now part of the OSINT feed of CIRCL MISP.pic.twitter.com/LfkyTmYpmF

Released a new version of my Ruby gem to interact with @MISPProject API.

https://github.com/ninoseki/misp-rb …
Add Ruby 2.7 support

Right on the heals, Docker @MISPProject Core image 2.4.123b released:
- Ability to disable IPv6 in nginx
- Define sync servers in env for cron

https://github.com/coolacid/docker-misp …

https://hub.docker.com/r/coolacid/misp-docker …

"D4 core client and server - version 1.0 released"

https://github.com/D4-project/d4-core/releases/tag/v1.0 …pic.twitter.com/MHX6tS8iZy

Integrating @MISPProject (objects, module, pymisp) with @cytomic_ Cytomic Orion. Speed up identification during #dfir.
https://www.vanimpe.eu/2020/03/10/integrating-misp-and-cytomic-orion/ …

Listen up, @MISPProject has a new release! Wash your hands and upgrade #misp
https://twitter.com/MISPProject/status/1237769816511037440 …pic.twitter.com/xpOkitaTnQ

'Coronavirus: COVID-19' #MONARC object on #MOSP
https://objects.monarc.lu/object/view/5123 … which is exportable to @MISPProject galaxy ;-)

MISP 2.4.123 released with a new flexible internal dashboard features, various improvements and security fixes. We strongly recommend to wash our hands and do an update of your MISP instance.
https://www.misp-project.org/2020/03/10/MISP.2.4.123.released.html … #ThreatIntel #ThreatIntelligencepic.twitter.com/rEeVfj5d0I

Stand up @MISPProject

Det må man helt sikkert. DCIS-SUND indgår i tre MISP Threat Sharing fælleskaber. I vores MISP fælleskab for aktører i sundhedssektoren, har vi netop lavet et "samlet event" for hændelser relateret til COVID-19/Corona.
#cybersikkerhed @MISPProject @Bodeholtpic.twitter.com/Kr7jnqfAH1

starting from smth like this :
https://www.hse.gov.uk/pubns/misc208.pdf … (it gives ICTV for viruses) and adding a synonyms field (with corresponding ICD names) for all entries be maybe an adequate galaxy. If you ppl think it worth it I can do it ;)