From a96494a789a57fc0d5620bebdea66bf88e7ded38 Mon Sep 17 00:00:00 2001 From: Alexandre Dulaunoy Date: Fri, 12 Jan 2024 15:45:00 +0100 Subject: [PATCH] chg: [blog] we are in the future --- content/blog/MISP-airgap.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/content/blog/MISP-airgap.md b/content/blog/MISP-airgap.md index b845d67..48fd383 100644 --- a/content/blog/MISP-airgap.md +++ b/content/blog/MISP-airgap.md @@ -9,7 +9,7 @@ layout: post # **Bridging the Gap: Introducing MISP Airgap for Secure Environments** -In an era where cybersecurity threats are ever-evolving, the need for robust and secure information sharing platforms is paramount. Enter [MISP (Malware Information Sharing Platform & Threat Sharing)](https://github.com/MISP/MISP), a renowned tool in the cybersecurity arsenal. But how do you deploy such a critical tool in the most secure environments, those that are air-gapped from the outside world? This is where the MISP airgap project comes into play. +In an era where cybersecurity threats are ever-evolving, the need for robust and secure information sharing platforms is paramount. Enter [MISP (Threat Intelligence Sharing Platform)](https://github.com/MISP/MISP), a renowned tool in the cybersecurity arsenal. But how do you deploy such a critical tool in the most secure environments, those that are air-gapped from the outside world? This is where the MISP airgap project comes into play. ### **Understanding Air-Gapped Environments** @@ -25,7 +25,7 @@ LXD is an open-source container management extension of [LXC (Linux Containers)] LXD is pivotal in MISP airgap for several reasons: 1. **Facilitates Creation and Management of Containers:** LXD allows for the creation and management of isolated MISP instances and their databases in containers, ensuring each instance is self-contained and secure. -2. **Enables Container Image Creation:** LXD's functionality includes the ability to create container images making the movable betwen different systems. This is crucial in air-gapped environments where downloading images directly from the internet is not an option. +2. **Enables Container Image Creation:** LXD's functionality includes the ability to create container images making the movable between different systems. This is crucial in air-gapped environments where downloading images directly from the internet is not an option. ## Using MISP airgap to deploy MISP to air-gapped Environments @@ -35,7 +35,7 @@ MISP airgap is a solution designed to deploy MISP in air-gapped or isolated netw You can find detailed instructions for everything described in this section in the [README](https://github.com/MISP/misp-airgap/blob/main/README.md) file of the offical [MISP airgap](https://github.com/MISP/misp-airgap) repository. -The overall process of deploying MISP with MISP airgap is fairly straightforward. Basically you just need to clone the MISP-airgap repository and download a couple of conainer images from the [MISP images page](https://images.misp-project.org/) on a system with internet access. Then you can transfer the repository and the images to your air-gapped system and you are ready to go. +The overall process of deploying MISP with MISP airgap is fairly straightforward. Basically you just need to clone the MISP-airgap repository and download a couple of container images from the [MISP images page](https://images.misp-project.org/) on a system with internet access. Then you can transfer the repository and the images to your air-gapped system and you are ready to go. ![MISP airgap download](/img/blog/misp_airgap_download.png) @@ -53,4 +53,4 @@ In the dynamic realm of cybersecurity, maintaining up-to-date systems is imperat For organizations or users who prefer to build their images on their own, MISP Airgap accommodates this need with its `build.sh` script. This script allows for the creation of all images needed. These images can then be transferred to the air-gapped system and used to deploy MISP instances. ## Conclusion -In conclusion, MISP airgap represents a significant step forward in the deployment of threat intelligence platforms in secure, isolated environments. By overcoming the challenges of air-gapped networks, it ensures that even the most secure organizations can benefit from the collaborative and analytical capabilities of MISP. For more detailed information about the MISP-airgapped project and its implementation, you can visit the [MISP-airgap](https://github.com/MISP/misp-airgap) repository. \ No newline at end of file +In conclusion, MISP airgap represents a significant step forward in the deployment of threat intelligence platforms in secure, isolated environments. By overcoming the challenges of air-gapped networks, it ensures that even the most secure organizations can benefit from the collaborative and analytical capabilities of MISP. For more detailed information about the MISP-airgapped project and its implementation, you can visit the [MISP-airgap](https://github.com/MISP/misp-airgap) repository.