User guide of MISP https://www.circl.lu/doc/misp/
 
 
 
Go to file
Alexandre Dulaunoy 0a6bb24504
chg: [API] where can I find my API key.
2021-03-01 07:41:31 +01:00
administration chg: fix typo 2021-02-26 12:45:02 +01:00
appendices chg: fix #221 replace blacklist/whitelist by blocklist/allowedlist 2021-02-24 16:31:50 +01:00
automation chg: [API] where can I find my API key. 2021-03-01 07:41:31 +01:00
best-practices new: add best practices section. Fix #92. 2021-02-28 20:18:37 +01:00
book-convention chg: fix #221 replace blacklist/whitelist by blocklist/allowedlist 2021-02-24 16:31:50 +01:00
categories-and-types chg: [types] updated 2021-02-21 07:36:06 +01:00
connectors Update README.md 2019-12-30 16:22:27 -08:00
create-event-report Editorial changes in README.md concerning Freetext Import option 2018-08-17 16:56:22 +02:00
delegation chg: fix #202 - clarify delegation of event design 2021-02-20 23:13:08 +01:00
dev-faq chg: [doc] Updated various aspects of the Book. Added dev-faq (mostly pointing to GH) 2018-11-17 19:30:59 +09:00
extended-events - Added place-holder information on exteended events, notice lists and warning lists 2018-05-14 11:06:15 +02:00
faq chg: [FAQ] updated list of monitoring tools 2021-03-01 07:39:33 +01:00
galaxy remove files 2020-03-02 14:23:02 +01:00
general-concepts fixed two typo 2020-07-01 18:23:30 +02:00
general-layout chg: fix #221 replace blacklist/whitelist by blocklist/allowedlist 2021-02-24 16:31:50 +01:00
get-your-instance chg: [Get instance] close #103 document baseurl in VM part 2021-02-23 00:42:13 +01:00
managing-feeds chg: fix #85 #163 revise managing feeds and figs 2021-02-26 10:32:03 -05:00
misp-object update misp-object chapetr 2019-02-15 15:56:22 +01:00
misp-zmq chg: [ZeroMQ] Add host config param and modify language 2021-02-21 19:09:33 +01:00
modules chg: [doc] Added links to misp-modules installation 2019-04-29 09:37:13 +09:00
noticelist fix various typos in objects 2019-02-15 09:25:48 +01:00
noticelists chg: [doc] noticelists 2020-12-17 10:18:02 +09:00
pymisp chg: [doc] Added more visual examples for pymisp 2018-11-28 15:51:40 +09:00
quick-start chg: [doc] Added logo 2020-01-14 10:43:51 +09:00
requirements chg: [doc] Added ToC 2018-11-01 16:38:48 +09:00
sharing chg: [Synchronisation] add internal instance syncing scenarios 2021-02-23 22:37:02 +01:00
shortcuts Add documentation for shortcuts in MISP. 2018-02-06 10:24:54 -05:00
sightings typo 2018-06-24 16:10:50 -04:00
styles chg: [doc] Added logo 2020-01-14 10:43:51 +09:00
taxonomy chg: fix #141 - 404s found by old linkchecker run 2021-02-20 13:33:54 +01:00
translation chg: fix #221 replace blacklist/whitelist by blocklist/allowedlist 2021-02-24 16:31:50 +01:00
updating-python chg: [python update] new title 2019-11-07 09:38:33 +01:00
user-management Update pages with password guideline 2018-04-11 18:00:46 +02:00
using-the-system chg: fix #221 replace blacklist/whitelist by blocklist/allowedlist 2021-02-24 16:31:50 +01:00
warninglists chg: fix #141 - 404s found by old linkchecker run 2021-02-20 13:33:54 +01:00
.gitignore chg: [GI] Added more details to gitignore 2020-01-07 14:17:48 +09:00
.travis.yml chg: [menu] add epub and mobi 2021-02-28 11:51:11 +01:00
GLOSSARY.md chg: add community to glossary 2021-02-24 00:05:20 +01:00
README.md chg: [readme] MISP is a threat intelligence sharing platform 2021-02-21 09:27:50 +01:00
SUMMARY.md new: add best practices section. Fix #92. 2021-02-28 20:18:37 +01:00
USAGE.md chg: [doc] confirmed working on recent Debian distros. 2020-08-19 16:07:21 +09:00
book.json chg: [menu] add epub and mobi 2021-02-28 11:51:11 +01:00
cover.jpg Cover added 2017-03-30 11:19:33 +02:00
publish.sh chg: [publish] reactivated 2021-02-28 13:37:52 +01:00
serve.sh chg: [tools] Added serve.sh in case gitbook --watch is broken 2018-09-07 15:09:41 +02:00

README.md

description
Introduction to MISP - Open Source Threat Intelligence Sharing Platform

Introduction

Build Status

MISP logo

User guide for MISP - The Open Source Threat Intelligence Sharing Platform. This user guide is intended for ICT professionals such as security analysts, security incident handlers, or malware reverse engineers who share threat intelligence using MISP or integrate MISP into other security monitoring tools. The user guide includes day-to-day usage of the MISP's graphical user interface along with its automated interfaces API, in order to integrate MISP within a security environment and operate one or more MISP instances.

Acknowledgement

The MISP user guide is a collaborative effort between all the contributors to MISP including:

and many other contributors especially the ones during the MISP hackathons.

Contributing

We welcome contributions to the MISP book. If you want to contribute, fork the misp-book repository and pull a request with your changes. You can also open issues if you find any errors or propose changes.

Format

MISP book is available in HTML, PDF, ePub and Kindle mobi format.

License

The MISP user guide is dual-licensed under GNU Affero General Public License version 3 and CC-BY-SA 4.0 international.

  • Copyright C 2012 Christophe Vandeplas
  • Copyright C 2012 Belgian Defence
  • Copyright C 2012 NATO / NCIRC
  • Copyright C 2013-2020 Andras Iklody
  • Copyright C 2015-2020 Alexandre Dulaunoy
  • Copyright C 2014-2020 CIRCL - Computer Incident Response Center Luxembourg
  • Copyright C 2018 Camille Schneider
  • Copyright C 2018-2020 Steve Clement