2020-01-14 21:49:32 +01:00
![logo ](https://raw.githubusercontent.com/MISP/MISP-maltego/master/doc/logo.png )
2018-11-12 13:25:53 +01:00
# Quick start guide
2019-03-16 21:23:17 +01:00
This is a [Maltego ](https://www.paterva.com/web7/ ) [MISP ](https://www.misp-project.org ) integration tool allowing you to view (read-only) data from a MISP instance.
2018-11-12 13:28:41 +01:00
2019-03-16 21:00:56 +01:00
It also allows browsing through the [MITRE ATT&CK ](https://attack.mitre.org/ ) entities.
2018-12-01 20:02:15 +01:00
Currently supported MISP elements are : Event, Attribute, Object (incl relations), Tag, Taxonomy, Galaxy (incl relations).
2018-11-12 13:28:41 +01:00
2018-12-11 13:59:50 +01:00
Once installed you can start by creating a `MISPEvent` entity, then load the Machine `EventToAll` or the transform `EventToAttributes` .
2018-11-12 13:28:41 +01:00
Alternatively initiate a transform on an existing Maltego entity.
The currently supported entities are: `AS` , `DNSName` , `Domain` , `EmailAddress` , `File` , `Hash` , `IPv4Address` , `NSRecord` , `Person` , `PhoneNumber` , `URL` , `Website`
2016-02-20 17:09:43 +01:00
2019-02-01 12:15:08 +01:00
## Installation and User Guide:
2019-05-22 10:29:43 +02:00
Installation is fairly easy by using `pip` , just read the steps in the [documentation ](https://github.com/MISP/MISP-maltego/blob/master/doc/README.md ).
2019-01-31 14:53:21 +01:00
2019-02-01 12:15:08 +01:00
The [User Guide ](https://github.com/MISP/MISP-maltego/blob/master/doc/README.md#use-cases ) gives some example use-cases.
2019-01-31 14:53:21 +01:00
2018-11-12 13:28:41 +01:00
## Screenshot
2020-01-14 21:49:32 +01:00
![Screenshot ](https://raw.githubusercontent.com/MISP/MISP-maltego/master/doc/screenshot.png )
2018-11-12 13:25:53 +01:00
2020-01-14 21:49:32 +01:00
![ATT&CK ](https://raw.githubusercontent.com/MISP/MISP-maltego/master/doc/attack.png )
2018-12-16 11:27:32 +01:00
2018-11-12 13:25:53 +01:00
## License
This software is licensed under [GNU Affero General Public License version 3 ](http://www.gnu.org/licenses/agpl-3.0.html )
* Copyright (C) 2018 Christophe Vandeplas
2016-02-20 17:09:43 +01:00
2018-11-12 13:25:53 +01:00
Note: Before being rewritten from scratch this project was maintained by Emmanuel Bouillon. The code is available in the `v1` branch.
2016-02-20 17:09:43 +01:00
2020-01-14 21:49:32 +01:00
The logo is CC-BY-SA and was designed by Françoise Penninckx
2019-03-16 21:00:56 +01:00
The icons in the intelligence-icons folder are from [intelligence-icons ](https://github.com/MISP/intelligence-icons ) licensed CC-BY-SA - Françoise Penninckx, Brett Jordan