Blogs

MISP 2.4.51 released including new features and many bug fixes.

August 29, 2016

A version of MISP has been released: 2.4.51 including many new features, bug fixes and improvements.

  • New Internal MISP sync mode to allow a set of MISP instances belonging to the same organisation to replicate data (useful when a single organisation has multiple MISP instances).
  • Enhanced internal STIX export to better handle bulk exports.
  • Added X.509 certificate authentication for MISP synchronisations.
  • Many fixes and improvement in misp-modules handling.
  • MISP Correlation has been sped-up.
  • warning-list loading improved.
  • Default role option added.
  • Inline screenshot functionality
  • Many other fixes.

We strongly recommend to also update your misp-modules installation.

Continue reading

Building an OCR import module in MISP

August 12, 2016

Building an Optical Character Recognition module in MISP

When collecting information from different places, analysts need sometime to perform OCR on documents (like report, faxes, images) to import and correlate the information in their MISP instance. As MISP 2.4.50 introduced a new modular framework for export and import modules, we decided to build a simple OCR service accessible to MISP user on a local instance. This shows how easy you can extend MISP with the new modules framework.

Continue reading

MISP training, “the Brussels Edition”, CIRCL in collaboration with CERT.EU - September 5th 2016

August 11, 2016

On September 5th 2016 and after 3 successful editions, the MISP (Malware Information and Threat Sharing Platform) training is traveling to Brussels. This workshop is organized by CIRCL in collaboration with CERT-EU and will take place at the European Economic and Social Committee’s premises.

Continue reading

MISP 2.4.50 released including new features, security and bug fixes.

August 10, 2016

A version of MISP has been released: 2.4.50 including many bug fixes, updates and improvements.

  • New export and import MISP module framework in MISP. You can now write your own Python modules for import and export without touching the MISP core software. Samples modules are available in misp-modules repository.
  • A XSS vulnerability has been fixed into the handling of the external feed.
  • New feature to view the public attributes of an event.
  • Multiple fixes in the caching exports (useful for large exports).
  • New SSO plug-in Shibboleth based.
  • Many other fixes.

Thanks to all the contributors and especially the new ones who joined us at our first hackathon.

Continue reading

MISP Hackathon 2016

August 1, 2016

MISP Hackathon 2016

The 4th August 2016, a MISP hackathon will take place in Luxembourg (at the local hackerspace) and also remotely. It’s a great opportunity to meet the team in a friendly atmosphere and work on your favourite information sharing software in order to improve it and make an even better tool.

Continue reading

MISP 2.4.49 released with many improvements and fixes

July 22, 2016

A version of MISP has been released: 2.4.49 including many bug fixes, updates and improvements.

  • Updates to the MISP module interface to allow a timeout on hover modules and allowing to timeout slow modules queries.
  • Tag restriction functionality added to limit the use of tag to a specific organization.
  • Important fixes in the sharing groups functionality including a new roaming setup.

For more details check the Changelog.

Continue reading

Search

Tags