mirror of https://github.com/MISP/misp-website
MISP galaxy added
parent
fbe08ea818
commit
c60f13d9d3
|
|
@ -36,6 +36,7 @@ Discover how MISP is used today in multiple organisations. Not only to store, sh
|
|||
<li> <strong>delegating of sharing</strong>: allows a simple pseudo-anonymous mechanism to delegate publication of event/indicators to another organization.
|
||||
<li> Flexible <strong>API</strong> to integrate MISP with your own solutions. MISP is bundled with <a href="https://github.com/MISP/PyMISP">PyMISP</a> which is a flexible Python Library to fetch, add or update events attributes, handle malware samples or search for attributes.
|
||||
<li> <strong>Adjustable taxonomy</strong> to classify and tag events following your own classification schemes or <a href="https://github.com/MISP/misp-taxonomies">existing taxonomies</a>. The taxonomy can be local to your MISP but also shareable among MISP instances.
|
||||
<li> <strong>Intelligence vocabularies</strong> called MISP galaxy and bundled with existing <a href="https://www.misp-project.org/galaxy.org">threat actors, malware, RAT, ransomware or MITRE ATT&CK</a> which can be easily linked with events in MISP.
|
||||
<li> <strong>Expansion modules in Python</strong> to expand MISP with your own services or activate already available <a href="https://github.com/MISP/misp-modules">misp-modules</a>.
|
||||
<li> <strong>Sighting support</strong> to get observations from organizations concerning shared indicators and attributes. Sighting <a href="https://www.circl.lu/doc/misp/automation/index.html#sightings-api">can be contributed</a> via MISP user-interface, API as MISP document or STIX sighting documents. Starting with MISP 2.4.66, <a href="https://www.misp.software/2017/02/16/Sighting-The-Next-Level.html">Sighting has been extended</a> to support false-negative sighting or expiration sighting.</li>
|
||||
<li> <strong>STIX support</strong>: export data in the STIX format (XML and JSON).</li>
|
||||
|
|
|
|||
Loading…
Reference in New Issue