Merge branch 'main' of github.com:MISP/misp-training into main

4-misp-standard/content.aux

@@ -1,42 +0,0 @@
-\relax 
-\providecommand\hyper@newdestlabel[2]{}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{1}{1/1}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {1}{1}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{2}{2/2}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {2}{2}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{3}{3/3}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {3}{3}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{4}{4/4}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {4}{4}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{5}{5/5}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {5}{5}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{6}{6/6}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {6}{6}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{7}{7/7}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {7}{7}}}
-\@setckpt{content}{
-\setcounter{page}{8}
-\setcounter{equation}{0}
-\setcounter{enumi}{0}
-\setcounter{enumii}{0}
-\setcounter{enumiii}{0}
-\setcounter{enumiv}{0}
-\setcounter{footnote}{2}
-\setcounter{mpfootnote}{0}
-\setcounter{beamerpauses}{1}
-\setcounter{bookmark@seq@number}{0}
-\setcounter{lecture}{0}
-\setcounter{part}{0}
-\setcounter{section}{0}
-\setcounter{subsection}{0}
-\setcounter{subsubsection}{0}
-\setcounter{subsectionslide}{7}
-\setcounter{framenumber}{6}
-\setcounter{figure}{0}
-\setcounter{table}{0}
-\setcounter{parentequation}{0}
-\setcounter{theorem}{0}
-\setcounter{lstnumber}{1}
-\setcounter{section@level}{0}
-\setcounter{lstlisting}{0}
-}

4-misp-standard/content.log

@@ -1,36 +0,0 @@
-This is pdfTeX, Version 3.14159265-2.6-1.40.18 (TeX Live 2017/Debian) (preloaded format=pdflatex 2018.10.13)  16 DEC 2020 11:24
-entering extended mode
- restricted \write18 enabled.
- %&-line parsing enabled.
-**content.tex
-(./content.tex
-LaTeX2e <2017-04-15>
-Babel <3.18> and hyphenation patterns for 84 language(s) loaded.
-
-! LaTeX Error: Missing \begin{document}.
-
-See the LaTeX manual or LaTeX Companion for explanation.
-Type  H <return>  for immediate help.
- ...                                              
-                                                  
-l.4 \begin{frame}[
-                  t,plain]
-? 
-! Emergency stop.
- ...                                              
-                                                  
-l.4 \begin{frame}[
-                  t,plain]
-You're in trouble here.  Try typing  <return>  to proceed.
-If that doesn't work, type  X <return>  to quit.
-
- 
-Here is how much of TeX's memory you used:
- 6 strings out of 492982
- 267 string characters out of 6134895
- 53913 words of memory out of 5000000
- 3671 multiletter control sequences out of 15000+600000
- 3640 words of font info for 14 fonts, out of 8000000 for 9000
- 1141 hyphenation exceptions out of 8191
- 7i,0n,5p,57b,20s stack positions out of 5000i,500n,10000p,200000b,80000s
-!  ==> Fatal error occurred, no output PDF file produced!

4-misp-standard/slide.aux

@@ -1,26 +0,0 @@
-\relax 
-\providecommand\hyper@newdestlabel[2]{}
-\providecommand\BKM@entry[2]{}
-\providecommand\HyperFirstAtBeginDocument{\AtBeginDocument}
-\HyperFirstAtBeginDocument{\ifx\hyper@anchor\@undefined
-\global\let\oldcontentsline\contentsline
-\gdef\contentsline#1#2#3#4{\oldcontentsline{#1}{#2}{#3}}
-\global\let\oldnewlabel\newlabel
-\gdef\newlabel#1#2{\newlabelxx{#1}#2}
-\gdef\newlabelxx#1#2#3#4#5#6{\oldnewlabel{#1}{{#2}{#3}}}
-\AtEndDocument{\ifx\hyper@anchor\@undefined
-\let\contentsline\oldcontentsline
-\let\newlabel\oldnewlabel
-\fi}
-\fi}
-\global\let\hyper@last\relax 
-\gdef\HyperFirstAtBeginDocument#1{#1}
-\providecommand\HyField@AuxAddToFields[1]{}
-\providecommand\HyField@AuxAddToCoFields[2]{}
-\@input{content.aux}
-\pgfsyspdfmark {pgfid1}{1398509}{16636717}
-\@writefile{nav}{\headcommand {\beamer@partpages {1}{7}}}
-\@writefile{nav}{\headcommand {\beamer@subsectionpages {1}{7}}}
-\@writefile{nav}{\headcommand {\beamer@sectionpages {1}{7}}}
-\@writefile{nav}{\headcommand {\beamer@documentpages {7}}}
-\@writefile{nav}{\headcommand {\gdef \inserttotalframenumber {6}}}

4-misp-standard/slide.nav

@@ -1,19 +0,0 @@
-\headcommand {\slideentry {0}{0}{1}{1/1}{}{0}}
-\headcommand {\beamer@framepages {1}{1}}
-\headcommand {\slideentry {0}{0}{2}{2/2}{}{0}}
-\headcommand {\beamer@framepages {2}{2}}
-\headcommand {\slideentry {0}{0}{3}{3/3}{}{0}}
-\headcommand {\beamer@framepages {3}{3}}
-\headcommand {\slideentry {0}{0}{4}{4/4}{}{0}}
-\headcommand {\beamer@framepages {4}{4}}
-\headcommand {\slideentry {0}{0}{5}{5/5}{}{0}}
-\headcommand {\beamer@framepages {5}{5}}
-\headcommand {\slideentry {0}{0}{6}{6/6}{}{0}}
-\headcommand {\beamer@framepages {6}{6}}
-\headcommand {\slideentry {0}{0}{7}{7/7}{}{0}}
-\headcommand {\beamer@framepages {7}{7}}
-\headcommand {\beamer@partpages {1}{7}}
-\headcommand {\beamer@subsectionpages {1}{7}}
-\headcommand {\beamer@sectionpages {1}{7}}
-\headcommand {\beamer@documentpages {7}}
-\headcommand {\gdef \inserttotalframenumber {6}}

4-misp-standard/slide.vrb

@@ -1,9 +0,0 @@
-\frametitle{Internet-Draft - IETF for MISP formats and MISP standard}
-\begin{itemize}
-\item If you want to contribute to our IETF Internet-Draft for the MISP standard, misp-rfc\footnote{\url{https://github.com/MISP/misp-rfc}} is the repository where to contribute.
-\item {\bf Update only the markdown file}, the XML and ASCII for the IETF I-D are automatically generated.
-\item If a major release or updates happen in the format, we will publish the I-D to the IETF\footnote{\url{https://datatracker.ietf.org/doc/search/?name=misp&activedrafts=on&rfcs=on}}.
-\item The process is always MISP implementation $\rightarrow$ IETF I-D updates.
-\item Then published standards in misp-standard.org.
-\end{itemize}
-

a.11-misp-data-model/content.tex

@@ -83,6 +83,13 @@
         \end{center}
 \end{frame}
 
+\begin{frame}
+    \frametitle{Data layer: Event building blocks - Base}
+        \begin{center}
+            \includegraphics[scale=0.33]{screenshots/event-building-blocks/event.png}
+        \end{center}
+\end{frame}
+
 \begin{frame}[fragile]
     \frametitle{Data layer: Events}
         \begin{lstlisting}[language=javascript,firstnumber=1]
@@ -113,6 +120,13 @@
         \end{center}
 \end{frame}
 
+\begin{frame}
+    \frametitle{Data layer: Event building blocks - Raw data}
+        \begin{center}
+            \includegraphics[scale=0.33]{screenshots/event-building-blocks/event-attribute.png}
+        \end{center}
+\end{frame}
+
 \begin{frame}[fragile]
     \frametitle{Data layer: Attributes}
         \begin{lstlisting}[language=javascript,firstnumber=1]
@@ -145,6 +159,13 @@
         \end{center}
 \end{frame}
 
+\begin{frame}
+    \frametitle{Data layer: Event building blocks - Data composition}
+        \begin{center}
+            \includegraphics[scale=0.33]{screenshots/event-building-blocks/event-attribute-object.png}
+        \end{center}
+\end{frame}
+
 \begin{frame}[fragile]
     \frametitle{Data layer: MISP Objects}
         \begin{lstlisting}[language=javascript,firstnumber=1]
@@ -191,6 +212,13 @@
 \end{lstlisting}
 \end{frame}
 
+\begin{frame}
+    \frametitle{Data layer: Event building blocks - Context}
+        \begin{center}
+            \includegraphics[scale=0.33]{screenshots/event-building-blocks/event-attribute-object-context.png}
+        \end{center}
+\end{frame}
+
 \begin{frame}[fragile]
     \frametitle{Data layer: Sightings}
     {\bf Sightings} are a means to convey that a data point has been seen
@@ -217,6 +245,13 @@
     \end{center}
 \end{frame}
 
+\begin{frame}
+    \frametitle{Data layer: Event building blocks - Collaboration \& intelligence}
+        \begin{center}
+            \includegraphics[scale=0.33]{screenshots/event-building-blocks/event-attribute-object-proposal.png}
+        \end{center}
+\end{frame}
+
 \begin{frame}[fragile]
     \frametitle{Data layer: Event reports}
     \begin{lstlisting}[language=javascript,firstnumber=1]
@@ -232,6 +267,13 @@
 \end{lstlisting}
 \end{frame}
 
+\begin{frame}
+    \frametitle{Data layer: Event building blocks - Full}
+        \begin{center}
+            \includegraphics[scale=0.30]{screenshots/event-building-blocks/full.png}
+        \end{center}
+\end{frame}
+
 \begin{frame}
     \frametitle{Data layer: Combining the data layer}
     \begin{center}

a.8-dev-hands-on/content.aux

@@ -1,70 +0,0 @@
-\relax 
-\providecommand\hyper@newdestlabel[2]{}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{1}{1/1}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {1}{1}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{2}{2/2}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {2}{2}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{3}{3/3}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {3}{3}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{4}{4/4}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {4}{4}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{5}{5/5}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {5}{5}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{6}{6/6}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {6}{6}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{7}{7/7}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {7}{7}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{8}{8/8}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {8}{8}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{9}{9/9}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {9}{9}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{10}{10/10}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {10}{10}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{11}{11/11}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {11}{11}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{12}{12/12}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {12}{12}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{13}{13/13}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {13}{13}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{14}{14/14}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {14}{14}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{15}{15/15}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {15}{15}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{16}{16/16}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {16}{16}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{17}{17/17}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {17}{17}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{18}{18/18}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {18}{18}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{19}{19/19}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {19}{19}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{20}{20/20}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {20}{20}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{21}{21/21}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {21}{21}}}
-\@setckpt{content}{
-\setcounter{page}{22}
-\setcounter{equation}{0}
-\setcounter{enumi}{0}
-\setcounter{enumii}{0}
-\setcounter{enumiii}{0}
-\setcounter{enumiv}{0}
-\setcounter{footnote}{0}
-\setcounter{mpfootnote}{0}
-\setcounter{beamerpauses}{1}
-\setcounter{bookmark@seq@number}{0}
-\setcounter{lecture}{0}
-\setcounter{part}{0}
-\setcounter{section}{0}
-\setcounter{subsection}{0}
-\setcounter{subsubsection}{0}
-\setcounter{subsectionslide}{21}
-\setcounter{framenumber}{20}
-\setcounter{figure}{0}
-\setcounter{table}{0}
-\setcounter{parentequation}{0}
-\setcounter{theorem}{0}
-\setcounter{lstnumber}{1}
-\setcounter{section@level}{0}
-\setcounter{lstlisting}{0}
-}

a.8-dev-hands-on/slide.aux

@@ -1,27 +0,0 @@
-\relax 
-\providecommand\hyper@newdestlabel[2]{}
-\providecommand\BKM@entry[2]{}
-\providecommand\HyperFirstAtBeginDocument{\AtBeginDocument}
-\HyperFirstAtBeginDocument{\ifx\hyper@anchor\@undefined
-\global\let\oldcontentsline\contentsline
-\gdef\contentsline#1#2#3#4{\oldcontentsline{#1}{#2}{#3}}
-\global\let\oldnewlabel\newlabel
-\gdef\newlabel#1#2{\newlabelxx{#1}#2}
-\gdef\newlabelxx#1#2#3#4#5#6{\oldnewlabel{#1}{{#2}{#3}}}
-\AtEndDocument{\ifx\hyper@anchor\@undefined
-\let\contentsline\oldcontentsline
-\let\newlabel\oldnewlabel
-\fi}
-\fi}
-\global\let\hyper@last\relax 
-\gdef\HyperFirstAtBeginDocument#1{#1}
-\providecommand\HyField@AuxAddToFields[1]{}
-\providecommand\HyField@AuxAddToCoFields[2]{}
-\@input{content.aux}
-\providecommand \oddpage@label [2]{}
-\pgfsyspdfmark {pgfid1}{1398509}{16987808}
-\@writefile{nav}{\headcommand {\beamer@partpages {1}{21}}}
-\@writefile{nav}{\headcommand {\beamer@subsectionpages {1}{21}}}
-\@writefile{nav}{\headcommand {\beamer@sectionpages {1}{21}}}
-\@writefile{nav}{\headcommand {\beamer@documentpages {21}}}
-\@writefile{nav}{\headcommand {\gdef \inserttotalframenumber {20}}}

a.8-dev-hands-on/slide.nav

@@ -1,47 +0,0 @@
-\headcommand {\slideentry {0}{0}{1}{1/1}{}{0}}
-\headcommand {\beamer@framepages {1}{1}}
-\headcommand {\slideentry {0}{0}{2}{2/2}{}{0}}
-\headcommand {\beamer@framepages {2}{2}}
-\headcommand {\slideentry {0}{0}{3}{3/3}{}{0}}
-\headcommand {\beamer@framepages {3}{3}}
-\headcommand {\slideentry {0}{0}{4}{4/4}{}{0}}
-\headcommand {\beamer@framepages {4}{4}}
-\headcommand {\slideentry {0}{0}{5}{5/5}{}{0}}
-\headcommand {\beamer@framepages {5}{5}}
-\headcommand {\slideentry {0}{0}{6}{6/6}{}{0}}
-\headcommand {\beamer@framepages {6}{6}}
-\headcommand {\slideentry {0}{0}{7}{7/7}{}{0}}
-\headcommand {\beamer@framepages {7}{7}}
-\headcommand {\slideentry {0}{0}{8}{8/8}{}{0}}
-\headcommand {\beamer@framepages {8}{8}}
-\headcommand {\slideentry {0}{0}{9}{9/9}{}{0}}
-\headcommand {\beamer@framepages {9}{9}}
-\headcommand {\slideentry {0}{0}{10}{10/10}{}{0}}
-\headcommand {\beamer@framepages {10}{10}}
-\headcommand {\slideentry {0}{0}{11}{11/11}{}{0}}
-\headcommand {\beamer@framepages {11}{11}}
-\headcommand {\slideentry {0}{0}{12}{12/12}{}{0}}
-\headcommand {\beamer@framepages {12}{12}}
-\headcommand {\slideentry {0}{0}{13}{13/13}{}{0}}
-\headcommand {\beamer@framepages {13}{13}}
-\headcommand {\slideentry {0}{0}{14}{14/14}{}{0}}
-\headcommand {\beamer@framepages {14}{14}}
-\headcommand {\slideentry {0}{0}{15}{15/15}{}{0}}
-\headcommand {\beamer@framepages {15}{15}}
-\headcommand {\slideentry {0}{0}{16}{16/16}{}{0}}
-\headcommand {\beamer@framepages {16}{16}}
-\headcommand {\slideentry {0}{0}{17}{17/17}{}{0}}
-\headcommand {\beamer@framepages {17}{17}}
-\headcommand {\slideentry {0}{0}{18}{18/18}{}{0}}
-\headcommand {\beamer@framepages {18}{18}}
-\headcommand {\slideentry {0}{0}{19}{19/19}{}{0}}
-\headcommand {\beamer@framepages {19}{19}}
-\headcommand {\slideentry {0}{0}{20}{20/20}{}{0}}
-\headcommand {\beamer@framepages {20}{20}}
-\headcommand {\slideentry {0}{0}{21}{21/21}{}{0}}
-\headcommand {\beamer@framepages {21}{21}}
-\headcommand {\beamer@partpages {1}{21}}
-\headcommand {\beamer@subsectionpages {1}{21}}
-\headcommand {\beamer@sectionpages {1}{21}}
-\headcommand {\beamer@documentpages {21}}
-\headcommand {\gdef \inserttotalframenumber {20}}

b.1-best-practices-in-threat-intelligence/content.aux

@@ -1,50 +0,0 @@
-\relax 
-\providecommand\hyper@newdestlabel[2]{}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{1}{1/1}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {1}{1}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{2}{2/2}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {2}{2}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{3}{3/3}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {3}{3}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{4}{4/4}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {4}{4}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{5}{5/5}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {5}{5}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{6}{6/6}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {6}{6}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{7}{7/7}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {7}{7}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{8}{8/8}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {8}{8}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{9}{9/9}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {9}{9}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{10}{10/10}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {10}{10}}}
-\@writefile{nav}{\headcommand {\slideentry {0}{0}{11}{11/11}{}{0}}}
-\@writefile{nav}{\headcommand {\beamer@framepages {11}{11}}}
-\@setckpt{content}{
-\setcounter{page}{12}
-\setcounter{equation}{0}
-\setcounter{enumi}{0}
-\setcounter{enumii}{0}
-\setcounter{enumiii}{0}
-\setcounter{enumiv}{0}
-\setcounter{footnote}{4}
-\setcounter{mpfootnote}{0}
-\setcounter{beamerpauses}{1}
-\setcounter{bookmark@seq@number}{0}
-\setcounter{lecture}{0}
-\setcounter{part}{0}
-\setcounter{section}{0}
-\setcounter{subsection}{0}
-\setcounter{subsubsection}{0}
-\setcounter{subsectionslide}{11}
-\setcounter{framenumber}{10}
-\setcounter{figure}{0}
-\setcounter{table}{0}
-\setcounter{parentequation}{0}
-\setcounter{theorem}{0}
-\setcounter{lstnumber}{1}
-\setcounter{section@level}{0}
-\setcounter{lstlisting}{0}
-}

build.sh

@@ -1,7 +1,7 @@
 #!/bin/bash
 #
 
-slidedecks=("0-misp-introduction-to-information-sharing" "1-misp-usage" "1.2-misp-integration" "1.1-misp-viper-integration" "1.2.1-misp-integration-mail2misp" "2-misp-administration" "3-misp-taxonomy-tagging" "3.1-misp-modules" "3.2-misp-galaxy" "3.3-misp-object-template" "6.0-misp-dashboard" "a.0-contributing" "a.1-devintro" "a.2-pymisp" "a.3-misp-feed" "a.4-best-practices" "a.5-decaying-indicators" "a.5-bis-decaying-indicators-light-version" "a.6-forensic" "a.7-rest-API" "b.1-best-practices-in-threat-intelligence" "a.8-dev-hands-on" "a.9-restsearch-dev" "a.10-galaxy-2.0" "a.11-misp-data-model" "a.a-widget-dev" "b.2-turning-data-into-actionable-intelligence" "4-misp-standard")
+slidedecks=("0-misp-introduction-to-information-sharing" "1-misp-usage" "1.2-misp-integration" "1.1-misp-viper-integration" "1.2.1-misp-integration-mail2misp" "2-misp-administration" "3-misp-taxonomy-tagging" "3.1-misp-modules" "3.2-misp-galaxy" "3.3-misp-object-template" "6.0-misp-dashboard" "a.0-contributing" "a.1-devintro" "a.2-pymisp" "a.3-misp-feed" "a.4-best-practices" "a.5-decaying-indicators" "a.5-bis-decaying-indicators-light-version" "a.6-forensic" "a.7-rest-API" "b.1-best-practices-in-threat-intelligence" "a.8-dev-hands-on" "a.9-restsearch-dev" "a.10-galaxy-2.0" "a.11-misp-data-model" "a.a-widget-dev" "b.2-turning-data-into-actionable-intelligence" "4-misp-standard" "x.13-exercise-movie" "a.b-cli")
 mkdir output
 export TEXINPUTS=::`pwd`/themes/
 echo ${TEXINPUTS}

x.13-exercise-movie/content.tex

@@ -0,0 +1,91 @@
+% DO NOT COMPILE THIS FILE DIRECTLY!
+% This is included by the other .tex files.
+
+\begin{frame}[t,plain]
+\titlepage
+\end{frame}
+
+\begin{frame}
+    \frametitle{Building blocks to support movies in MISP}
+    MISP has no structures to express anything related to movie. 
+    Let's fix that!
+    \pause
+
+    \vspace{1em}
+    Tasks for this session:
+    \begin{itemize}
+        \item Movie genres (\texttt{Taxonomy})
+        \item Movie sub-genres matrix (\texttt{Galaxy matrix})
+        \item Movie and its details (\texttt{MISP Object})
+        \item Get IMDB score when hovering (\texttt{hover-enrichment module})
+        \item Get movie details from a title (\texttt{persistent-enrichment module})
+    \end{itemize}
+\end{frame}
+
+\begin{frame}
+    \frametitle{Movie genres - Taxonomy}
+    \url{https://www.imdb.com/feature/genre/}
+    \begin{center}
+        \includegraphics[scale=0.25]{pics/movie-genre}\\
+    \end{center}
+\end{frame}
+
+\begin{frame}
+    \frametitle{Movie subgenres - Galaxy matrix}
+    \url{https://en.wikipedia.org/wiki/List_of_genres}
+    \begin{center}
+        \includegraphics[scale=0.12]{pics/movie-subgenre}
+    \end{center}
+\end{frame}
+
+\begin{frame}
+    \frametitle{Movie \& details - MISP Object}
+    \begin{center}
+        \includegraphics[width=0.70\linewidth]{pics/movie-details}
+    \end{center}
+    Movie fields:
+    \begin{itemize}
+        \item \texttt{title}
+        \item \texttt{plot}
+        \item \texttt{release-date}
+        \item \texttt{duration}
+    \end{itemize}
+\end{frame}
+
+\begin{frame}
+    \frametitle{Movie IMDB score - Hover misp-module}
+    \begin{center}
+        \includegraphics[width=0.3\linewidth]{pics/movie-score}
+    \end{center}
+    \begin{enumerate}
+        \item From a movie title, fetch the associated score from IMDB
+        \item Return the score as is
+    \end{enumerate}
+    \vspace{1em}
+    Useful library: \url{https://imdbpy.github.io/}
+\end{frame}
+
+\begin{frame}
+    \frametitle{Movie details from title - Persistent enrichment misp-module}
+    \begin{center}
+        \includegraphics[width=0.85\linewidth]{pics/movie-details2}
+    \end{center}
+    \begin{enumerate}
+        \item From a movie title, fetch additional information from IMDB
+        \item Create a MISP Object with the details
+        \item Include a reference from the create object to the enriched original attribute
+    \end{enumerate}
+    \vspace{1em}
+    Useful library: \url{https://imdbpy.github.io/}
+\end{frame}
+
+\begin{frame}
+    \frametitle{Example of solutions}
+    \begin{itemize}
+        \item \texttt{Taxonomy}: {\tiny \url{https://github.com/MISP/misp-taxonomies/tree/training}}
+        \item \texttt{Galaxy matrix}: {\tiny \url{https://github.com/MISP/misp-galaxy/tree/training}}
+        \item \texttt{MISP Object}: {\tiny \url{https://github.com/MISP/misp-objects/tree/training}}
+        \item \texttt{Hover module}: {\tiny \url{https://github.com/MISP/misp-modules/tree/training}}
+        \item \texttt{Persistent module}: {\tiny \url{https://github.com/MISP/misp-modules/tree/training}}
+    \end{itemize}
+\end{frame}

x.13-exercise-movie/makefile

@@ -0,0 +1,2 @@
+all:
+	pdflatex -interaction nonstopmode -halt-on-error -file-line-error circl-introduction.tex

x.13-exercise-movie/slide.tex

@@ -0,0 +1,143 @@
+\documentclass{beamer}
+\usetheme[numbering=progressbar]{focus}
+\definecolor{main}{RGB}{47, 161, 219}
+\definecolor{textcolor}{RGB}{128, 128, 128}
+\definecolor{background}{RGB}{240, 247, 255}
+
+\usepackage[utf8x]{inputenc}
+\usepackage{listings}
+\usepackage{soul}
+\usepackage{siunitx}
+\usepackage{booktabs}
+%\lstset{ 
+%  backgroundcolor=\color{white},   % choose the background color; you must add \usepackage{color} or \usepackage{xcolor}
+%  basicstyle=\footnotesize,        % the size of the fonts that are used for the code
+%  breakatwhitespace=false
+%}
+
+\usepackage{tikz}
+\usetikzlibrary{shapes,snakes,automata,positioning}
+
+\usepackage{xcolor}
+\usepackage{colortbl}
+\definecolor{mygreen}{rgb}{0,0.6,0}
+\definecolor{mygreen2}{rgb}{0,0.56,0.16}
+\definecolor{myred}{rgb}{0.6,0.066,0.066}
+\definecolor{redCIRCL}{RGB}{213,43,30}
+\definecolor{mygray}{rgb}{0.5,0.5,0.5}
+\definecolor{mymauve}{rgb}{0.58,0,0.82}
+\definecolor{mygray}{gray}{0.9}
+\definecolor{mywhite}{rgb}{1,1,1}
+\definecolor{myblack}{rgb}{0,0,0}
+\definecolor{mybeige}{HTML}{eeeeee}
+%\usepackage{tcolorbox}
+\usepackage[listings]{tcolorbox}
+\tcbuselibrary{listings}
+
+\lstdefinestyle{code}{ %
+  backgroundcolor=\color{mybeige},   % choose the background color; you must add \usepackage{color} or \usepackage{xcolor}; should come as last argument
+  basicstyle=\footnotesize\ttfamily,        % the size of the fonts that are used for the code
+  breakatwhitespace=false,         % sets if automatic breaks should only happen at whitespace
+  breaklines=true,                 % sets automatic line breaking
+  captionpos=b,                    % sets the caption-position to bottom
+  commentstyle=\color{mygreen},    % comment style
+  deletekeywords={...},            % if you want to delete keywords from the given language
+  escapeinside={\%*}{*)},          % if you want to add LaTeX within your code
+  extendedchars=true,              % lets you use non-ASCII characters; for 8-bits encodings only, does not work with UTF-8
+  frame=single,	                   % adds a frame around the code
+  keepspaces=true,                 % keeps spaces in text, useful for keeping indentation of code (possibly needs columns=flexible)
+  keywordstyle=\color{blue},       % keyword style
+  language=Python,                 % the language of the code
+  morekeywords={*,...},           % if you want to add more keywords to the set
+  numbers=left,                    % where to put the line-numbers; possible values are (none, left, right)
+  numbersep=5pt,                   % how far the line-numbers are from the code
+  numberstyle=\tiny\color{myblack}, % the style that is used for the line-numbers
+  rulecolor=\color{black},         % if not set, the frame-color may be changed on line-breaks within not-black text (e.g. comments (green here))
+  showspaces=false,                % show spaces everywhere adding particular underscores; it overrides 'showstringspaces'
+  showstringspaces=false,          % underline spaces within strings only
+  showtabs=false,                  % show tabs within strings adding particular underscores
+  stepnumber=1,                    % the step between two line-numbers. If it's 1, each line will be numbered
+  stringstyle=\color{mymauve},     % string literal style
+  tabsize=2,	                   % sets default tabsize to 2 spaces
+  title=\lstname                   % show the filename of files included with \lstinputlisting; also try caption instead of title
+}
+\lstdefinestyle{bash}{ %
+  backgroundcolor=\color{black!85},   % choose the background color; you must add \usepackage{color} or \usepackage{xcolor}; should come as last argument
+  basicstyle=\footnotesize\color{mywhite},        % the size of the fonts that are used for the code
+  breakatwhitespace=false,         % sets if automatic breaks should only happen at whitespace
+  breaklines=true,                 % sets automatic line breaking
+  captionpos=b,                    % sets the caption-position to bottom
+  commentstyle=\color{mygreen},    % comment style
+  deletekeywords={...},            % if you want to delete keywords from the given language
+  escapeinside={\%*}{*)},          % if you want to add LaTeX within your code
+  extendedchars=true,              % lets you use non-ASCII characters; for 8-bits encodings only, does not work with UTF-8
+  frame=single	                   % adds a frame around the code
+  keepspaces=true,                 % keeps spaces in text, useful for keeping indentation of code (possibly needs columns=flexible)
+  keywordstyle=\color{white}\bfseries,       % keyword style
+  language=bash,                 % the language of the code
+  morekeywords={*,$,git, clone,... },           % if you want to add more keywords to the set
+  numbers=left,                    % where to put the line-numbers; possible values are (none, left, right)
+  numbersep=5pt,                   % how far the line-numbers are from the code
+  numberstyle=\tiny\color{mywhite}, % the style that is used for the line-numbers
+  rulecolor=\color{black},         % if not set, the frame-color may be changed on line-breaks within not-black text (e.g. comments (green here))
+  showspaces=false,                % show spaces everywhere adding particular underscores; it overrides 'showstringspaces'
+  showstringspaces=false,          % underline spaces within strings only
+  showtabs=false,                  % show tabs within strings adding particular underscores
+  stepnumber=1,                    % the step between two line-numbers. If it's 1, each line will be numbered
+  stringstyle=\color{mymauve},     % string literal style
+  tabsize=2,	                   % sets default tabsize to 2 spaces
+  title=\lstname                   % show the filename of files included with \lstinputlisting; also try caption instead of title
+}
+\lstdefinestyle{default}{ %
+  backgroundcolor=\color{white},   % choose the background color; you must add \usepackage{color} or \usepackage{xcolor}; should come as last argument
+  basicstyle=\footnotesize\color{black},        % the size of the fonts that are used for the code
+  breakatwhitespace=false,         % sets if automatic breaks should only happen at whitespace
+  breaklines=true,                 % sets automatic line breaking
+  captionpos=b,                    % sets the caption-position to bottom
+  commentstyle=\color{mygreen},    % comment style
+  deletekeywords={...},            % if you want to delete keywords from the given language
+  escapeinside={\%*}{*)},          % if you want to add LaTeX within your code
+  extendedchars=true,              % lets you use non-ASCII characters; for 8-bits encodings only, does not work with UTF-8
+  frame=single	                   % adds a frame around the code
+  keepspaces=true,                 % keeps spaces in text, useful for keeping indentation of code (possibly needs columns=flexible)
+  keywordstyle=\color{white}\bfseries,       % keyword style
+  language=bash,                 % the language of the code
+  morekeywords={*,$,git, clone,... },           % if you want to add more keywords to the set
+  numbers=left,                    % where to put the line-numbers; possible values are (none, left, right)
+  numbersep=5pt,                   % how far the line-numbers are from the code
+  numberstyle=\tiny\color{black}, % the style that is used for the line-numbers
+  rulecolor=\color{black},         % if not set, the frame-color may be changed on line-breaks within not-black text (e.g. comments (green here))
+  showspaces=false,                % show spaces everywhere adding particular underscores; it overrides 'showstringspaces'
+  showstringspaces=false,          % underline spaces within strings only
+  showtabs=false,                  % show tabs within strings adding particular underscores
+  stepnumber=1,                    % the step between two line-numbers. If it's 1, each line will be numbered
+  stringstyle=\color{mymauve},     % string literal style
+  tabsize=2,	                   % sets default tabsize to 2 spaces
+  title=\lstname                   % show the filename of files included with \lstinputlisting; also try caption instead of title
+}
+\lstset{style=code}
+
+
+\AtBeginSection[]{
+  \begin{frame}
+  \vfill
+  \centering
+  \begin{beamercolorbox}[sep=8pt,center,shadow=true,rounded=true]{title}
+      {\color{white} \usebeamerfont{title}\insertsectionhead}\par%
+  \end{beamercolorbox}
+  \vfill
+  \end{frame}
+}
+
+\author{\small{\input{../includes/authors.txt}}}
+
+\title{Training exercise: Movie}
+\subtitle{}
+\institute{info@circl.lu}
+\titlegraphic{\includegraphics[scale=0.85]{misp.pdf}}
+\date{\today}
+
+\begin{document}
+\include{content}
+\end{document}
+