Cyber Threat Intelligence
Besides making a risk analysis and creating a security policy, organisations should also have a cyber threat intelligence (CTI) capability to address cyber threats effectively. Cyber threat intelligence is any type of information an organisation may use to understand the threats targeting or may target the organisation in the future.
A group of developers from CIRCL, with the help of many other contributors, has developed a threat intelligence sharing platform as free software/open source.
MISP - Open Source Threat Intelligence and Sharing Platform
MISP allows organisations to share information such as threat intelligence, indicators, threat actor information or any kind of threat which can be structured in MISP. MISP users benefit from the collaborative knowledge about existing malware or threats. The aim of this trusted platform is to help improving the counter-measures used against targeted attacks and set-up preventive actions and and improve automated detection.
Go further:
- All details about MISP here.
- Private organisations, organisations, private researchers or CERTs can request access to their respective MISP community.