misp - McHughSecurity

June 18, 2021

[Part 4] Building a Threat Integration and Testing Lab – MISP Threat Intelligence Sharing Platform

MISP is a threat intelligence platform for sharing, storing and correlating Indicators of Compromise of targeted attacks, threat intelligence, financial fraud information, vulnerability information or even counter-terrorism information. Within a…

May 10, 2021

Using the Course of Action Taxonomies in MISP

By A.McHugh in MISP - Open Source Threat Intelligence Platform Tag course-of-action, misp

One of the great aspects of MISP, is the use of tags to give an indication of what needs to be done with an indicator within an event. Whole events…

March 3, 2021

Building TheHive4 (4.0.5) and configuring MISP, Cortex and Webhooks.

By A.McHugh in Digital Forensics & Incident Response Tag cortex, misp, thehive, webhooks

Since the last write up I published on TheHive, there have been some significant changes and updates to TheHive. So for this post I will be walking through the installation…

January 17, 2021

Exporting Maltego Graphs to MISP

By A.McHugh in Intelligence Tag maltego, misp, MISPego, Threat Intelligence

Lately I have been playing with having MISP be the Intelligence Sharing platform for a number of business intelligence functions. However, the main issue with MISP (from a user's perspective)…

Tag misp