mirror of https://github.com/MISP/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform (formely known as Malware Information Sharing Platform)
https://www.misp-project.org/
Alexandre Dulaunoy
de6fc6f6ae
The first version of the XML format is loosely based on the current XML
format used by MISP in commit
|
||
|---|---|---|
| INSTALL | ||
| app | ||
| plugins | ||
| tools | ||
| .gitignore | ||
| .pydevproject | ||
| BUGS.txt | ||
| COPYRIGHT | ||
| LICENSE | ||
| README.md | ||
README.md
MISP - Malware Information Sharing Platform
Copyright: The copyright holders are the Belgian Defence and NATO / NCIRC. License: Affero General Public License v3
Goal
A huge challenge in the Cyber Security domain is the information sharing inside and between organizations. This platform has as goal to facilitate:
- storing technical and non-technical information about seen malwares and attacks
- automatically creating relations between malwares and events
- storing data in a structured format (allowing automated use of the database for various purposes)
- generating IDS rules that can be imported on IDS systems (network, host)
- sharing the information with other parties and trust-groups
- storing locally all information from other instances
To have a better idea what the platform does have a look at the PDF files in the INSTALL directory.
Documentation
Make sure you read the documentation in the INSTALL directory. We are currently consolidating the documentation, so it will be updated often.
This part of the code is a major rewrite of a first version of the codebase.