MISP
/
misp-website
mirror of https://github.com/MISP/misp-website
2
0
Fork 0
Code Issues Releases Wiki Activity

chg: [blog] we are in the future

pull/97/head
Alexandre Dulaunoy 2024-01-12 15:45:00 +01:00
parent b426731835
commit a96494a789
No known key found for this signature in database
GPG Key ID: 09E2CD4944E6CBCD
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
content/blog/MISP-airgap.md
View File

@ -9,7 +9,7 @@ layout: post
# **Bridging the Gap: Introducing MISP Airgap for Secure Environments**
In an era where cybersecurity threats are ever-evolving, the need for robust and secure information sharing platforms is paramount. Enter [MISP (Malware Information Sharing Platform & Threat Sharing)](https://github.com/MISP/MISP), a renowned tool in the cybersecurity arsenal. But how do you deploy such a critical tool in the most secure environments, those that are air-gapped from the outside world? This is where the MISP airgap project comes into play.
In an era where cybersecurity threats are ever-evolving, the need for robust and secure information sharing platforms is paramount. Enter [MISP (Threat Intelligence Sharing Platform)](https://github.com/MISP/MISP), a renowned tool in the cybersecurity arsenal. But how do you deploy such a critical tool in the most secure environments, those that are air-gapped from the outside world? This is where the MISP airgap project comes into play.
### **Understanding Air-Gapped Environments**
@ -25,7 +25,7 @@ LXD is an open-source container management extension of [LXC (Linux Containers)]
LXD is pivotal in MISP airgap for several reasons:
1. **Facilitates Creation and Management of Containers:** LXD allows for the creation and management of isolated MISP instances and their databases in containers, ensuring each instance is self-contained and secure.
2. **Enables Container Image Creation:** LXD's functionality includes the ability to create container images making the movable betwen different systems. This is crucial in air-gapped environments where downloading images directly from the internet is not an option.
2. **Enables Container Image Creation:** LXD's functionality includes the ability to create container images making the movable between different systems. This is crucial in air-gapped environments where downloading images directly from the internet is not an option.
## Using MISP airgap to deploy MISP to air-gapped Environments
@ -35,7 +35,7 @@ MISP airgap is a solution designed to deploy MISP in air-gapped or isolated netw
You can find detailed instructions for everything described in this section in the [README](https://github.com/MISP/misp-airgap/blob/main/README.md) file of the offical [MISP airgap](https://github.com/MISP/misp-airgap) repository.
The overall process of deploying MISP with MISP airgap is fairly straightforward. Basically you just need to clone the MISP-airgap repository and download a couple of conainer images from the [MISP images page](https://images.misp-project.org/) on a system with internet access. Then you can transfer the repository and the images to your air-gapped system and you are ready to go.
The overall process of deploying MISP with MISP airgap is fairly straightforward. Basically you just need to clone the MISP-airgap repository and download a couple of container images from the [MISP images page](https://images.misp-project.org/) on a system with internet access. Then you can transfer the repository and the images to your air-gapped system and you are ready to go.
![MISP airgap download](/img/blog/misp_airgap_download.png)
@ -53,4 +53,4 @@ In the dynamic realm of cybersecurity, maintaining up-to-date systems is imperat
For organizations or users who prefer to build their images on their own, MISP Airgap accommodates this need with its `build.sh` script. This script allows for the creation of all images needed. These images can then be transferred to the air-gapped system and used to deploy MISP instances.
## Conclusion
In conclusion, MISP airgap represents a significant step forward in the deployment of threat intelligence platforms in secure, isolated environments. By overcoming the challenges of air-gapped networks, it ensures that even the most secure organizations can benefit from the collaborative and analytical capabilities of MISP. For more detailed information about the MISP-airgapped project and its implementation, you can visit the [MISP-airgap](https://github.com/MISP/misp-airgap) repository.
In conclusion, MISP airgap represents a significant step forward in the deployment of threat intelligence platforms in secure, isolated environments. By overcoming the challenges of air-gapped networks, it ensures that even the most secure organizations can benefit from the collaborative and analytical capabilities of MISP. For more detailed information about the MISP-airgapped project and its implementation, you can visit the [MISP-airgap](https://github.com/MISP/misp-airgap) repository.