From ae8fba3e90423a3de26d32a40f79c5bbbaaa5aba Mon Sep 17 00:00:00 2001
From: Alexandre Dulaunoy <a@foo.be>
Date: Fri, 25 Oct 2019 11:38:36 +0200
Subject: [PATCH] chg: [tools] elastic.co beat module added

---
 _pages/tools.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/_pages/tools.md b/_pages/tools.md
index 299c398..edc7d0e 100644
--- a/_pages/tools.md
+++ b/_pages/tools.md
@@ -86,6 +86,7 @@ For the additional software created by the MISP project, check our [MISP project
 * [DCSO TIE integration](https://github.com/DCSO/tie2misp) - DCSO integration with MISP.
 * [Dovehawk Bro Module](https://github.com/tylabs/dovehawk) - Bro+MISP for threat hunting.
 * [EclecticIQ Platform Integrations](https://www.eclecticiq.com/platform/integrations) - Intelligence Integration.
+* [Elastic.co - a filebeat module for reading threat intel information from the MISP platform](https://www.elastic.co/guide/en/beats/filebeat/master/filebeat-module-misp.html)
 * [FireMISP](https://github.com/deralexxx/FireMISP) FireEye Alert json files to MISP Malware information sharing platform (Alpha).
 * [Hybrid analysis](https://www.hybrid-analysis.com/) exports in MISP format.
 * [IntelMQ](https://github.com/certtools/intelmq) support MISP to retrieve events and update tags.