MISP v MISP Malware Information Sharing Platform v
- Slides: 22
MISP 介� v MISP: Malware Information Sharing Platform v 主� : http: //www. misp-project. org/ 3
MISP 代�与文档 v v v Github: l 核心代�: https: //github. com/MISP l 外��目: https: //github. com/MISP 文档: l 官网文档� : http: //www. misp-project. org/documentation/ l github 文档�目 : https: //github. com/MISP/misp-book 各种格式的文档下�: l HTML: https: //www. circl. lu/doc/misp/ l PDF: https: //www. circl. lu/doc/misp/book. pdf l Kindle MOBI: https: //www. circl. lu/doc/misp/book. mobi l EPUB: https: //www. circl. lu/doc/misp/book. epub 5
WLCG: Worldwide LHC Computing Grid 42 个国家 170+ 个站点,每年处理 50 -70 PB 数据 7
WLCG MISP Community 8
数据存�与交� v 数据模型:MISP 以事件(event)及其属性(attributes)来��情�数据 v 数据存�:�构化数据,存�于 My. SQL 和 Redis 数据� v 数据交�格式: JSON v 支持多种数据�入�出格式: v l �出格式: IDS, Open. IOC, Plain text, CSV, MISP XML, JSON, Cache format, STIX, NIDS export, RPZ zone, etc. l �入格式: bulk-import, batch-import, import from Open. IOC, GFI sandbox, Threat. Connect CSV, STIX 1. 1/2. 0, etc l 可通� misp-modules 支持更多数据交�格式 互相信任的 MISP �例之�可以自�交�和同步数据 9
外��目: MISP Dashboard 16
MISP 安装部署 v 安装部署流程指南: l v 从源代�安装: l v v https: //github. com/MISP/tree/2. 4/INSTALL 使用 Puppet/Ansible 自�化安装部署: l https: //github. com/voxpupuli/puppet-misp l https: //github. com/juju 4/ansible-MISP 使用 VM 方式部署 l v http: //www. misp-project. org/download/ https: //www. circl. lu/doc/misp/get-your-instance/ 使用 Container 方式部署 l https: //github. com/misp-docker l https: //github. com/misp/docker-misp 17
misp. ihep. ac. cn 19
- Malware information sharing platform
- Misp event
- Cuckoo sandbox vm
- Collective intelligence framework
- Misp college fair
- Csec golden rules
- Folksonomy allows user to categorize and locate information
- 7 golden rules of information sharing
- Diverse information sharing through universal web access *
- Secure information sharing
- Sharing
- Common information sharing environment
- Viruset kompjuterike dhe menyrat e mbrojtjes
- Rhmd: evasion-resilient hardware malware detectors
- Malware radar
- Malware tabletop exercise
- Bad guys mdl
- Advanced malware analysis course
- Wat is malware
- Best adlist for pihole
- Malware, nella sicurezza informatica indica
- Ollyscript
- Bomb cryptor