Sonar helps you commit clean code every time. With over 225 unique rules to find Python bugs, code smells & vulnerabilities, Sonar finds the issues while you focus on the work. Learn more →
Top 20 misp Open-Source Projects
MISP (core software) - Open Source Threat Intelligence and Sharing PlatformProject mention: Threat intelligence IOC enrichments? | reddit.com/r/cybersecurity | 2023-02-01
TheHive: a Scalable, Open Source and Free Security Incident Response PlatformProject mention: Software for recording security incidents? | reddit.com/r/cybersecurity | 2023-01-09
i recommend TheHive for creating incident tickets. it is opensource but there is paid one offered by StrangeBee
Build time-series-based applications quickly and at scale.. InfluxDB is the Time Series Platform where developers build real-time applications for analytics, IoT and cloud-native services. Easy to start, it is available in the cloud or on-premises.
Indicators of Compromises (IOC) of our various investigationsProject mention: What are your go-to websites to read cybersecurity news in 2023? | reddit.com/r/cybersecurity | 2023-01-14
ThePhish: an automated phishing email analysis toolProject mention: security alerts management | reddit.com/r/msp | 2022-09-15
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS. (by Felix83000)
Extract and aggregate threat intelligence.Project mention: Building a Threat Intelligence Feed using the Twitter API and a bit of code | reddit.com/r/netsec | 2022-05-28
Clusters and elements to attach to MISP events or attributes (like threat actors)Project mention: Profiling and Tracking Threat Actors | reddit.com/r/OSINT | 2022-09-13
MISP threat actors galaxy may be of interest: https://github.com/MISP/misp-galaxy
Write Clean Python Code. Always.. Sonar helps you commit clean code every time. With over 225 unique rules to find Python bugs, code smells & vulnerabilities, Sonar finds the issues while you focus on the work.
Documentation of TheHive
Warning lists to inform users of MISP about potential false-positives or other information in indicatorsProject mention: Does anyone know what cdn4image.com is? I’ve searched but can’t find anything relevant to why it’s always showing up in my logs. | reddit.com/r/nextdns | 2023-01-09
MSP Threat Intelligence list
Python library using the MISP Rest APIProject mention: Get CrowdSec IOCs feed into MISP | reddit.com/r/CrowdSec | 2022-09-24
You might consider misp feed https://github.com/MISP/PyMISP/tree/main/examples/feed-generator, basically it’s the best way to collect IOCs and import them into a MISP instance. These feeds help to correlate IOCs without manually launching the MISP module every time for each IOC, this also reduce the workload on your API servers as the list is cached locally on the MISP and updated every day.
Modules for expansion services, import and export in MISP (by MISP)Project mention: Showdan and MISP | reddit.com/r/MISP | 2022-10-18
MISP Docker (XME edition)
The official MISP project is providing a containerized version of the MISP where all elements except the SQL database are included in a single container.
🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
A (nearly) production ready Dockered MISP
The project MISP-Docker from Coolacid is providing a containerized version of the MISP solution. This all-in-one solution includes the frontend, background jobs, cronjobs and an HTTP Server (Nginx) all orchestrated by process manager tool called supervisor. External services such as the database and Redis aren’t part of the container but are necessary. We decided that this project is very a good starting point to scale the MISP on Kubernetes.
Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.Project mention: I'm having trouble installing MISP-maltego on Linux. | reddit.com/r/MISP | 2022-09-29
I can't install MISP-maltego (Local Trasform Installation): https://github.com/MISP/misp-maltego
misp-cloud - Cloud-ready images of MISP
The project misp-cloud is providing ready to use AWS AMI containing the MISP platform as well as all other external component on the same image. They may provide images for Azure and DigitalOcean in the future.
The Project can be used to integrate QRadar with MISP Threat Sharing Platform
Lua plugin to extract data from Wireshark and convert it into MISP formatProject mention: Lua plugin to extract data from Wireshark and convert it into MISP format | news.ycombinator.com | 2022-02-20
Golang implementation of PyMISP-feedgenerator
Import CrowdStrike Threat Intelligence into your instance of MISPProject mention: Ingesting IOCs in to CS from MISP | reddit.com/r/crowdstrike | 2022-05-13
I'd start with intel_client.py (most CS interactions happen here) and indicators.py (the logic for the handling of indicators, a lot of this is PyMISP-specific but it will help you identify data elements you want to bring over).
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
misp related posts
Threat intelligence IOC enrichments?
1 project | reddit.com/r/cybersecurity | 1 Feb 2023
What are your go-to websites to read cybersecurity news in 2023?
1 project | reddit.com/r/cybersecurity | 14 Jan 2023
Software for recording security incidents?
1 project | reddit.com/r/cybersecurity | 9 Jan 2023
Does anyone know what cdn4image.com is? I’ve searched but can’t find anything relevant to why it’s always showing up in my logs.
1 project | reddit.com/r/nextdns | 9 Jan 2023
Warning: Do not use Hive Social
1 project | news.ycombinator.com | 1 Dec 2022
MISP at scale on Kubernetes
10 projects | dev.to | 17 Nov 2022
Have you ever tried to create your own module by following the guide in the github repo "misp-modules"?
1 project | reddit.com/r/MISP | 16 Oct 2022
A note from our sponsor - Sonar
www.sonarsource.com | 5 Feb 2023
What are some of the best open-source misp projects? This list will help you: