misp-training/README.md

# MISP Training Materials

This repository includes all the training materials in use such as

- Core MISP (software and standard) trainings
- Threat intelligence and OSINT training
- Building information sharing communities workshop

All the materials are available with the complete LaTeX source code meant to assist in contributing or extending the training materials. A special attention is given to the open source licensing
given to the materials. We welcome contributions in order to improve the training set for threat intelligence, intelligence gathering and analysis along with specific aspect of information sharing/exchange in information and national security.

## Materials

| Slides (PDF) | Source Code |
| ------------ | ----------- |
| [0-misp-introduction-to-information-sharing](https://www.misp-project.org/misp-training/0-misp-introduction-to-information-sharing.pdf) | [source](https://github.com/MISP/misp-training/tree/master/0-misp-introduction-to-information-sharing) |
| [1-misp-usage](https://www.misp-project.org/misp-training/1-misp-usage.pdf) | [source](https://github.com/MISP/misp-training/tree/master/1-misp-usage) |
| [1.2-misp-integration](https://www.misp-project.org/misp-training/1.2-misp-integration.pdf) | [source](https://github.com/MISP/misp-training/tree/master/1.2-misp-integration) |
| [1.1-misp-viper-integration](https://www.misp-project.org/misp-training/1.1-misp-viper-integration.pdf) | [source](https://github.com/MISP/misp-training/tree/master/1.1-misp-viper-integration) |
| [1.2.1-misp-integration-mail2misp](https://www.misp-project.org/misp-training/1.2.1-misp-integration-mail2misp.pdf) | [source](https://github.com/MISP/misp-training/tree/master/1.2.1-misp-integration-mail2misp) |
| [2-misp-administration](https://www.misp-project.org/misp-training/2-misp-administration.pdf) | [source](https://github.com/MISP/misp-training/tree/master/2-misp-administration) |
| [3-misp-taxonomy-tagging](https://www.misp-project.org/misp-training/3-misp-taxonomy-tagging.pdf) | [source](https://github.com/MISP/misp-training/tree/master/3-misp-taxonomy-tagging) |
| [3.1-misp-modules](https://www.misp-project.org/misp-training/3.1-misp-modules.pdf) | [source](https://github.com/MISP/misp-training/tree/master/3.1-misp-modules) |
| [3.2-misp-galaxy](https://www.misp-project.org/misp-training/3.2-misp-galaxy.pdf) | [source](https://github.com/MISP/misp-training/tree/master/3.2-misp-galaxy) |
| [3.3-misp-object-template](https://www.misp-project.org/misp-training/3.3-misp-object-template.pdf) | [source](https://github.com/MISP/misp-training/tree/master/3.3-misp-object-template) |
| [6.0-misp-dashboard](https://www.misp-project.org/misp-training/6.0-misp-dashboard.pdf) | [source](https://github.com/MISP/misp-training/tree/master/6.0-misp-dashboard) |
| [a.0-contributing](https://www.misp-project.org/misp-training/a.0-contributing.pdf) | [source](https://github.com/MISP/misp-training/tree/master/a.0-contributing) |
| [a.1-devintro](https://www.misp-project.org/misp-training/a.1-devintro.pdf) | [source](https://github.com/MISP/misp-training/tree/master/a.1-devintro) |
| [a.2-pymisp](https://www.misp-project.org/misp-training/a.2-pymisp.pdf) | [source](https://github.com/MISP/misp-training/tree/master/a.2-pymisp) |
| [a.3-misp-feed](https://www.misp-project.org/misp-training/a.3-misp-feed.pdf) | [source](https://github.com/MISP/misp-training/tree/master/a.3-misp-feed) |
| [a.4-best-practices](https://www.misp-project.org/misp-training/a.4-best-practices.pdf) | [source](https://github.com/MISP/misp-training/tree/master/a.4-best-practices) |
| [a.5-decaying-indicators](https://www.misp-project.org/misp-training/a.5-decaying-indicators.pdf) | [source](https://github.com/MISP/misp-training/tree/master/a.5-decaying-indicators) |
| [a.6-forensic](https://www.misp-project.org/misp-training/a.6-forensic.pdf) | [source](https://github.com/MISP/misp-training/tree/master/a.6-forensic) |
| [a.7-rest-API](https://www.misp-project.org/misp-training/a.7-rest-API.pdf) | [source](https://github.com/MISP/misp-training/tree/master/a.7-rest-API) |

### Complementary materials

| Slides (PDF) | Source Code |
| ------------ | ----------- |
| [complete slide desk in one PDF](https://www.misp-project.org/misp-training/misp-training.pdf) | [source](https://github.com/MISP/misp-training/) |
| [MISP training cheat-sheet](https://www.misp-project.org/misp-training/cheatsheet.pdf) | [source](https://github.com/MISP/misp-training/tree/master/training-support/compact-cheatsheet) |
| [MISP feature list (for the trainers)](https://www.misp-project.org/misp-training/usage.pdf) | [source](https://github.com/MISP/misp-training/tree/master/training-support/checklist) |

## Source Code

All the source of the trainings are available. You'll need to have an operating system with a recent installation of LaTeX including latex-beamer.

To build the complete set of training materials:

~~~~bash
bash build.sh
~~~~

The output directory will contain all the generated PDF files and the PDF file called `misp-training.pdf` which is the complete handout of all the slides.

## License, Attribution and Funding

All the materials are dual-licensed under GNU Affero General Public License version 3 or later and
the Creative Commons Attribution-ShareAlike 4.0 International. You can use one of the license depending
of your use case of the training materials.

The MISP project training materials are co-financed and resource supported by CIRCL Computer Incident Response Center Luxembourg[](https://www.circl.lu/) and co-financed by a CEF (Connecting Europe Facility) funding under CEF-TC-2016-3 - Cyber Security as *Improving MISP as building blocks for next-generation information sharing*.

![](https://www.misp-project.org/assets/images/en_cef.png)
![](https://www.circl.lu/assets/images/logo.png)

All the source code are available at [https://www.github.com/MISP/misp-training](https://www.github.com/MISP/misp-training).

If you reuse the training materials, don't forget to put the above attribution.
 
## Contributors in alphabetical order

- Steve Clement [:house:](https://github.com/SteveClement)
- Alexandre Dulaunoy [:house:](https://github.com/adulau)
- Andras Iklody [:house:](https://github.com/iglocska)
- Sami Mokaddem [:house:](https://github.com/mokaddem)
- Sascha Rommelfangen [:house:](https://github.com/rommelfs)
- Christian Studer [:house:](https://github.com/chrisr3d)
- Raphaël Vinot [:house:](https://github.com/rafiot)
- Gerard Wagener [:house:](https://github.com/haegardev)
add: [doc] first version of the README 2018-12-27 16:24:00 +01:00			`# MISP Training Materials`

Update README.md 2018-12-30 05:42:24 +01:00			`This repository includes all the training materials in use such as`
chg: [doc] readme updated 2018-12-29 16:48:26 +01:00
			`- Core MISP (software and standard) trainings`
Update README.md 2018-12-30 05:42:24 +01:00			`- Threat intelligence and OSINT training`
			`- Building information sharing communities workshop`
add: [doc] first version of the README 2018-12-27 16:24:00 +01:00
Update README.md 2018-12-30 05:42:24 +01:00			`All the materials are available with the complete LaTeX source code meant to assist in contributing or extending the training materials. A special attention is given to the open source licensing`
add: [doc] first version of the README 2018-12-27 16:24:00 +01:00			`given to the materials. We welcome contributions in order to improve the training set for threat intelligence, intelligence gathering and analysis along with specific aspect of information sharing/exchange in information and national security.`

			`## Materials`

chg: [doc] list of all training materials 2018-12-29 23:02:08 +01:00			`\| Slides (PDF) \| Source Code \|`
chg: [doc] typo fixed 2018-12-29 23:03:22 +01:00			`\| ------------ \| ----------- \|`
chg: [doc] table updated 2018-12-29 23:07:38 +01:00			`\| [0-misp-introduction-to-information-sharing](https://www.misp-project.org/misp-training/0-misp-introduction-to-information-sharing.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/0-misp-introduction-to-information-sharing) \|`
chg: [doc] list of all training materials 2018-12-29 23:02:08 +01:00			`\| [1-misp-usage](https://www.misp-project.org/misp-training/1-misp-usage.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/1-misp-usage) \|`
			`\| [1.2-misp-integration](https://www.misp-project.org/misp-training/1.2-misp-integration.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/1.2-misp-integration) \|`
chg: [doc] table updated 2018-12-29 23:07:38 +01:00			`\| [1.1-misp-viper-integration](https://www.misp-project.org/misp-training/1.1-misp-viper-integration.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/1.1-misp-viper-integration) \|`
			`\| [1.2.1-misp-integration-mail2misp](https://www.misp-project.org/misp-training/1.2.1-misp-integration-mail2misp.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/1.2.1-misp-integration-mail2misp) \|`
chg: [doc] list of all training materials 2018-12-29 23:02:08 +01:00			`\| [2-misp-administration](https://www.misp-project.org/misp-training/2-misp-administration.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/2-misp-administration) \|`
			`\| [3-misp-taxonomy-tagging](https://www.misp-project.org/misp-training/3-misp-taxonomy-tagging.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/3-misp-taxonomy-tagging) \|`
			`\| [3.1-misp-modules](https://www.misp-project.org/misp-training/3.1-misp-modules.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/3.1-misp-modules) \|`
			`\| [3.2-misp-galaxy](https://www.misp-project.org/misp-training/3.2-misp-galaxy.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/3.2-misp-galaxy) \|`
			`\| [3.3-misp-object-template](https://www.misp-project.org/misp-training/3.3-misp-object-template.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/3.3-misp-object-template) \|`
			`\| [6.0-misp-dashboard](https://www.misp-project.org/misp-training/6.0-misp-dashboard.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/6.0-misp-dashboard) \|`
			`\| [a.0-contributing](https://www.misp-project.org/misp-training/a.0-contributing.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/a.0-contributing) \|`
			`\| [a.1-devintro](https://www.misp-project.org/misp-training/a.1-devintro.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/a.1-devintro) \|`
			`\| [a.2-pymisp](https://www.misp-project.org/misp-training/a.2-pymisp.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/a.2-pymisp) \|`
			`\| [a.3-misp-feed](https://www.misp-project.org/misp-training/a.3-misp-feed.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/a.3-misp-feed) \|`
			`\| [a.4-best-practices](https://www.misp-project.org/misp-training/a.4-best-practices.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/a.4-best-practices) \|`
			`\| [a.5-decaying-indicators](https://www.misp-project.org/misp-training/a.5-decaying-indicators.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/a.5-decaying-indicators) \|`
			`\| [a.6-forensic](https://www.misp-project.org/misp-training/a.6-forensic.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/a.6-forensic) \|`
			`\| [a.7-rest-API](https://www.misp-project.org/misp-training/a.7-rest-API.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/a.7-rest-API) \|`

add: [doc] first version of the README 2018-12-27 16:24:00 +01:00			`### Complementary materials`

chg: [doc] complementary materials added 2018-12-29 23:15:35 +01:00			`\| Slides (PDF) \| Source Code \|`
			`\| ------------ \| ----------- \|`
			`\| [complete slide desk in one PDF](https://www.misp-project.org/misp-training/misp-training.pdf) \| [source](https://github.com/MISP/misp-training/) \|`
			`\| [MISP training cheat-sheet](https://www.misp-project.org/misp-training/cheatsheet.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/training-support/compact-cheatsheet) \|`
			`\| [MISP feature list (for the trainers)](https://www.misp-project.org/misp-training/usage.pdf) \| [source](https://github.com/MISP/misp-training/tree/master/training-support/checklist) \|`

add: [doc] first version of the README 2018-12-27 16:24:00 +01:00			`## Source Code`

chg: [doc] how to build the training materials 2018-12-29 17:45:44 +01:00			`All the source of the trainings are available. You'll need to have an operating system with a recent installation of LaTeX including latex-beamer.`

			`To build the complete set of training materials:`

			`~~~~bash`
			`bash build.sh`
			`~~~~`

chg: [doc] typo fixed 2018-12-29 17:46:35 +01:00			The output directory will contain all the generated PDF files and the PDF file called `misp-training.pdf` which is the complete handout of all the slides.
chg: [doc] how to build the training materials 2018-12-29 17:45:44 +01:00
add: [doc] first version of the README 2018-12-27 16:24:00 +01:00			`## License, Attribution and Funding`

			`All the materials are dual-licensed under GNU Affero General Public License version 3 or later and`
			`the Creative Commons Attribution-ShareAlike 4.0 International. You can use one of the license depending`
			`of your use case of the training materials.`

			`The MISP project training materials are co-financed and resource supported by CIRCL Computer Incident Response Center Luxembourg[](https://www.circl.lu/) and co-financed by a CEF (Connecting Europe Facility) funding under CEF-TC-2016-3 - Cyber Security as Improving MISP as building blocks for next-generation information sharing.`

			`![](https://www.misp-project.org/assets/images/en_cef.png)`
			`![](https://www.circl.lu/assets/images/logo.png)`

chg: [doc] url fixed 2018-12-27 16:25:50 +01:00			`All the source code are available at [https://www.github.com/MISP/misp-training](https://www.github.com/MISP/misp-training).`
add: [doc] first version of the README 2018-12-27 16:24:00 +01:00
			`If you reuse the training materials, don't forget to put the above attribution.`

			`## Contributors in alphabetical order`

			`- Steve Clement [:house:](https://github.com/SteveClement)`
			`- Alexandre Dulaunoy [:house:](https://github.com/adulau)`
			`- Andras Iklody [:house:](https://github.com/iglocska)`
			`- Sami Mokaddem [:house:](https://github.com/mokaddem)`
chg: [contributors] add @rommelfs as contributor (mail2misp part) 2018-12-29 17:02:45 +01:00			`- Sascha Rommelfangen [:house:](https://github.com/rommelfs)`
add: [doc] first version of the README 2018-12-27 16:24:00 +01:00			`- Christian Studer [:house:](https://github.com/chrisr3d)`
			`- Raphaël Vinot [:house:](https://github.com/rafiot)`
			`- Gerard Wagener [:house:](https://github.com/haegardev)`