The awesome FluxFingers Capture The Flag (CTF) competition is held prior to the conference, enabling participants to fully enjoy both the conference and its talks. For more details about the CTF: 2023.hack.lu/ctf/ #conference #hacklu #ctf #fluxfingers

Agenda for hack.lu 2023 - slightly updated and new workshops added: 2023.hack.lu/agenda/ #hacklu #conference #infosec

Excited for hack_lu! In addition to my planned talk, I'll conduct a 90-min workshop to introduce Kunai: your new Linux threat-hunting tool (an alternative to #SysmonForLinux). See you there! More info: github.com/0xrawsec/kunai

There's a new MISP (@[email protected]) playbook that shows how to create users and organisations, get user logs and create large number of users at once (fe. for trainings). All with PyMISP. github.com/MISP/misp-play…) , inspired by misp_control from Sascha Rommelfangen github.com/rommelfs/misp_…

Use the "MISP playbook on Kali" documentation to deploy MISP (@[email protected]) playbooks on a Kali VM, for example during an incident investigation. github.com/MISP/misp-play…

MISP 2.4.178 released with many workflow improvements, enhancement and bugs fixed. A huge thank to all the contributors. misp-project.org/2023/10/30/MIS… #opensource #ThreatIntelligence #threatintel #misp #cti

I shared the MISP (@[email protected]) playbook for malware triage that I regularly use for a first assessment on new samples. It uses MISP, VirusTotal , MalwareBazaar, Hashlookup and pefile, uploads to MWDB and alerts to Mattermost. #csirt #ir #dfir github.com/MISP/misp-play…

The companion to MISP - Cerebrate version 1.17 has been released with new community management and orchestration features. #isac #threatintelligence #misp #opensource cerebrate-project.org/2023/11/05/Cer… cerebrate_project @[email protected]

If you liked the previous MISP (@[email protected]) playbook for static malware analysis then you're certainly going to like this one. This playbook extends the results with dynamic malware analysis by the sandboxes from VMRay , Hybrid Analysis and VirusTotal github.com/MISP/misp-play…

misp-project.org/2023/11/26/MIS… MISP 2.4.179 released with a host of improvements a security fix and some new tooling. New steps taken towards LLM integration, Workflow improvements, performance improvements for large edit and many more... #opensource #threatinte #misp

The MISP galaxy is expanding rapidly. To facilitate easier navigation through its diverse clusters, we have developed a dedicated website. misp-galaxy.org/threat-actor/ misp-galaxy.org #threatintel #threatintelligence #misp #opensource

Do you know that CIRCL - @[email protected] create many free #OSINT tools dedicated to the community? One of my favorites is the #AIL (Analysis of Information Leaks) framework. You want to know more about it? Retrieve Alexandre Dulaunoy @[email protected]'s talk recorded at leHACK #OsintVillage. youtu.be/PwxtAWtnoF4?si…

If you haven't used the MISP (@[email protected]) playbooks before then have a look at the InfoSec Jupyterthon presentation I did last week. youtube.com/watch?v=2lqbH1… Great work by all participants in showing how Project Jupyter notebooks can support #infosec

A new MISP (@[email protected]) playbook to help with curation of decayed indicators. Use the custom model of the playbook or one of the MISP build-in models. Decayed indicators are disabled and tagged. #cti github.com/MISP/misp-play…

MISP 2.4.190 (and 2.4.191) released with new feed improvement, workflows and a new benchmarking suite. misp-project.org/2024/04/22/MIS… #cti #opensource #misp #threatintelligence #threatintel

This week, our team had an exciting catch-up with the CIRCL Luxembourg team! Check out the highlights from our meeting and other updates from AUSCERT! 💖 Week in Review available now for 17.05.24! 💥 auscert.org.au/week-in-review…

The MISP galaxy evolved into a complete set of knowledge base freely accessible to many projects including MISP. At the EU ATT&CK community workshop, we presented the recommendations for models creator: Slides: raw.githubusercontent.com/MISP/misp-trai… #threatintelligence Christophe Vandeplas Alexandre Dulaunoy @[email protected]

MISP 2.4.194 released with new functionalities and various bugs fixed. misp-project.org/2024/06/21/MIS… #opensource #threatintel #threatintelligence #misp #infosec

Kick off the week with a new MISP (@[email protected]) playbook! Query Elasticsearch Elastic for threat intelligence from custom MISP searches, plot the results in a graph, report sightings in MISP, and send a summary to Mattermost. #cti #automation #playbooks github.com/MISP/misp-play…

New MISP (@[email protected]) playbook! Tackle the week with JARM fingerprint investigations to track threat actor infrastructure using Censys, Shodan, and MISP. Boost your #cti game with #automation and #infrastructure insights. github.com/MISP/misp-play…