Go to file
Sami Mokaddem 198168a697
chg: [a.zz-isacs] Added correct TLP marking
2024-11-19 16:42:26 +01:00
0-intro-shorter fix: [intro] smile to LHC 2024-07-09 23:39:59 +02:00
0-misp-introduction-to-information-sharing Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
0.1-what-is-misp new: [what is misp] intro deck added 2023-09-30 11:10:13 +02:00
1-misp-usage add: spanish version of basic usage slides 2022-10-11 11:29:05 +02:00
1.1-misp-viper-integration add: [1.2.1] mail2misp slides added 2018-12-29 17:31:45 +01:00
1.2-misp-integration chg: [integration] missing logo fixed 2019-03-05 23:02:22 +01:00
1.2.1-misp-integration-mail2misp add: [1.2.1] mail2misp slides added 2018-12-29 17:31:45 +01:00
2-misp-administration new: [2] MISP administration overview added 2018-12-29 17:55:03 +01:00
3-misp-taxonomy-tagging Update content.tex 2019-12-04 16:47:30 +01:00
3.1-misp-modules chg: [misp-modules] web interface 2024-07-08 16:03:26 +02:00
3.2-misp-galaxy chg: [galaxy] Added more info for galaxy-matrix creation 2019-10-09 16:58:34 +02:00
3.3-misp-object-template fix: Typo in a title 2019-02-25 10:49:08 +01:00
4-misp-standard chg: deleted useless files and added new entries in build script 2021-02-10 08:43:47 +01:00
6.0-misp-dashboard chg: [misp-dashboard] recent changes in the misp-dashboard added 2019-11-14 09:44:34 +01:00
202305-NATO-MUG-update chg: [content] updated 2023-05-22 09:05:47 +02:00
20220615-NATO-MUG-UPDATE MUG update added 2023-03-02 08:54:46 +01:00
20221116-NATO-MUG new: [20221116-MUG] Added initial version of workflow-slides 2023-03-02 08:54:46 +01:00
20230930-cakefest cakefest 2023-09-30 13:25:10 +02:00
20241010-libreoffice chg: [libreoffice conf] added 2024-10-09 20:55:03 +02:00
MUG/NATO chg: [MUG] updated 2024-06-03 22:08:58 +02:00
a.0-contributing small changes to the contribution slide deck 2021-02-11 12:34:35 +01:00
a.1-devintro chg: a-1 devintro updated 2021-04-07 09:46:44 +02:00
a.2-pymisp new: [a.2] pymisp slides added 2018-12-29 21:43:09 +01:00
a.3-misp-feed new: [a.3] added 2018-12-29 21:51:56 +01:00
a.4-best-practices chg: [a.4] updated 2024-01-11 21:20:57 +01:00
a.5-bis-decaying-indicators-light-version chg: [decaying-light] Updated slides to fit the current state 2020-09-11 10:24:46 +02:00
a.5-decaying-indicators chg: [misp-training] algorithm typo fixed 2019-10-21 13:52:02 +02:00
a.6-forensic chg: [forensic] mention the famous zoidberg branch 2019-04-13 09:32:37 +02:00
a.7-rest-API add: [a.7-rest-API] Added notebook with a quick introduction to PyMISP 2024-07-10 00:20:47 +02:00
a.8-dev-hands-on chg: deleted useless files and added new entries in build script 2021-02-10 08:43:47 +01:00
a.9-restsearch-dev highlighting done 2019-12-05 09:29:36 +01:00
a.10-galaxy-2.0 fix: [a.10] missing misp logo 2020-12-23 17:37:19 +01:00
a.11-misp-data-model chg: [data-model] Included usecase and purpose on each data model 2022-02-10 16:27:31 +01:00
a.12-misp-workflows chg: [a.12-workflows] Various improvements 2022-08-05 08:35:55 +02:00
a.12-misp-workflows-short new: [a.12-workflow-short] Added a short version (30min) of the workflow feature 2023-10-09 11:28:03 +02:00
a.13-misp-stix chg: [misp-stix] Bumped latest updated slides 2023-09-28 23:50:16 +02:00
a.a-widget-dev front page fixed 2020-03-05 09:01:35 +01:00
a.b-cli Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
a.c-deployment chg: [deployment] clean-up the docker part of MISP and add the LXC 2024-10-02 15:57:18 +02:00
a.d-community-and-cerebrate chg: [a.4,a.d] fix typos 2022-09-14 17:06:15 +02:00
a.z-misp-and-isacs chg: [a-z] MISP/ISAC advantages 2022-09-27 14:13:19 +02:00
a.zz-misp-and-isacs chg: [a.zz-isacs] Added correct TLP marking 2024-11-19 16:42:26 +01:00
attack-2020 Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
b.1-best-practices-in-threat-intelligence chg: deleted useless files and added new entries in build script 2021-02-10 08:43:47 +01:00
b.2-turning-data-into-actionable-intelligence chg: [b.2] Added some bolds 2019-11-13 08:53:50 +01:00
b.4-turning-data-into-actionable-intelligence-short added pdf 2020-02-02 20:10:07 +01:00
b.5-turning-data-into-actionable-intelligence-training chg: [b.5] title renamed 2022-02-09 14:56:38 +01:00
b.5-turning-data-into-actionable-training new revision of actionable intel slides 2021-02-04 11:38:05 +01:00
b.6-automation chg: [b.6-automation] Replaced fourier by fourier-otf 2024-06-18 14:02:36 +02:00
cheatsheets chg: [cheatsheet] Added element collection in data-model 2024-04-12 09:38:05 +02:00
complementary new: [complementary] Added rapid-fire of features and short data model overview 2024-09-06 15:53:17 +02:00
events chg: [Interop] Reprocessed slides with recent fixes 2024-07-10 21:33:36 +01:00
exercises new: [exercise:campaign-isacs] Added first version of the exercise 2024-08-22 15:56:15 +02:00
includes chg: [training] CRI updated 2024-06-27 08:44:08 +02:00
mii.0-security Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
output chg: generate es pdfs 2023-03-02 10:48:47 +01:00
ransomware-exercice add: [exercices] added ransomware exercice from training 25 October 2023 2023-10-27 10:06:56 +02:00
themes chg: [themes] title size fixed 2019-09-23 21:10:26 +02:00
training-support chg: [sample] dirty harry added 2022-04-29 13:28:48 +02:00
x.1-belgomisp fix: added reports 2019-12-13 15:42:05 +01:00
x.2-melicertes Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
x.3-into-short Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
x.4-cansecwest Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
x.4-sharing-going-wild Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
x.5-covid Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
x.6-how-information-sharing-is-saving-us new: [slides] x.6-how-information-sharing-is-saving-us 2020-04-23 09:53:13 +02:00
x.6-isac-intro added isac intro 2020-04-23 14:14:14 +02:00
x.8-first-cti-virtual Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
x.9-covid chg: [covid] uni.lu presentation 2021-06-07 09:06:57 +02:00
x.9-eu-attack-community chg: [slides] EU attack community 2020-05-18 12:40:23 +02:00
x.10-pisax.org Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
x.11-gsma chg: [doc] Added dependencies to doc 2022-05-20 17:26:50 +02:00
x.12-covid-recap covid slides added 2021-02-04 08:49:35 +01:00
x.13-interpol chg: [interpol] remove one slide and various updates/fixes 2021-03-23 07:46:28 +01:00
x.14-covid-first some fixes 2021-06-07 13:07:10 +02:00
x.15-subtitles Completed the subtitles for MISP General Usage Training Part 1 of 2 2022-02-07 00:25:12 +08:00
x.16-misp-military-use-cases chg: [military] updated 2024-05-07 17:22:28 +02:00
x.17-eu-attack-community chg: [attack] final slide pushed 2024-05-20 11:37:57 +02:00
InterNews.tar.gz Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
README.md chg: [doc] dedicated misp-galaxy website added 2024-04-25 09:09:09 +02:00
build.sh fix: [build] remove single list entry added by Sami ;-) 2024-01-11 21:20:15 +01:00
misp-training.pdf Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
sunet.tar.gz Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00
table.md chg: [training-table] updated 2022-04-29 13:27:06 +02:00
table2.md Merge branch 'main' of github.com:MISP/misp-training into main 2021-02-19 14:33:32 +01:00

README.md

MISP Training Materials

This repository includes all the training materials in use such as

  • Core MISP (software and standard) trainings
  • Threat intelligence and OSINT training
  • Building information sharing communities workshop

All the materials are available with the complete LaTeX source code meant to assist in contributing or extending the training materials. A special attention is given to the open source licensing given to the materials. We welcome contributions in order to improve the training set for threat intelligence, intelligence gathering and analysis along with specific aspects of information sharing/exchange in information and national security.

Materials

Slides (PDF) Source Code
0-misp-introduction-to-information-sharing source
MISP Data model overview (quick)
MISP Ten Commandments
1-misp-usage source
1.2-misp-integration source
1.1-misp-viper-integration source
1.2.1-misp-integration-mail2misp source
2-misp-administration source
3-misp-taxonomy-tagging source
3.1-misp-modules source
3.2-misp-galaxy source
3.3-misp-object-template source
6.0-misp-dashboard source
a.0-contributing source
a.1-devintro source
a.2-pymisp source
a.3-misp-feed source
a.4-best-practices source
a.5-decaying-indicators source
a.5-bis-decaying-indicators-light-version source
a.6-forensic source
a.7-rest-API source
b.1-best-practices-in-threat-intelligence source
b.5-turning-data-into-actionable-intelligence-training source
a.8-dev-hands-on source
a.9-restsearch-dev source
a.10-galaxy-2.0 source
a.11-misp-data-model source
a.12-misp-workflows source
a.13-misp-stix source
a.a-widget-dev source
b.2-turning-data-into-actionable-intelligence source
4-misp-standard source
x.13-exercise-movie source
a.b-cli source
a.c-deployment source

Complementary materials

Slides (PDF) Source Code
complete slide desk in one PDF source
MISP training cheat-sheet source
MISP feature list (for the trainers) source

Additional documentation

MISP Training videos

Sample videos which can be used to understand how the training materials are used in companion with a live MISP demo instance.

Passive DNS and MISP - Training videos

MISP Training support videos

Those are videos to support MISP trainings or demonstrations at large:

MISP Training VMs

Pre-built MISP training VMs are available at https://vm.misp-project.org/.

Source Code

The full source code of the training slide decks are available. You'll need to have an operating system with a recent installation of LaTeX including latex-beamer to work with them.

To build the complete set of training materials:

bash build.sh

The output directory will contain all the generated PDF files and the PDF file called misp-training.pdf which is the complete handout of all the slides.

Note: In case the rendering is somewhat broken, it might be related to latex using the styles installed systemwide in /usr/share/texlive/texmf-dist/tex/latex/beamertheme-focus. Removing this directory will solve the problem.

Dependencies

FiraMath Font

XeLaTex, can be parametered in .tex header (works in TeXshop):

% !TEX TS-program = xelatex
% !TEX encoding = UTF-8 Unicode

License, Attribution and Funding

All the materials are dual-licensed under GNU Affero General Public License version 3 or later and the Creative Commons Attribution-ShareAlike 4.0 International. You can use either one of the licenses depending of your use case of the training materials.

The MISP project training materials are co-financed and supported by CIRCL Computer Incident Response Center Luxembourg and co-financed by a CEF (Connecting Europe Facility) funding under CEF-TC-2016-3 - Cyber Security as Improving MISP as building blocks for next-generation information sharing.

All the source code is available at https://www.github.com/MISP/misp-training.

If you reuse the training materials, don't forget to include the above for attribution.

Contributors in alphabetical order

  • Steve Clement 🏠
  • Alexandre Dulaunoy 🏠
  • Andras Iklody 🏠
  • Sami Mokaddem 🏠
  • Sascha Rommelfangen 🏠
  • Christian Studer 🏠
  • Raphaël Vinot 🏠
  • Gerard Wagener 🏠