Awesome

misp-osint-collection

This repository describes a process/best-practices to gather OSINT information (such as public report, blog posts, twitter, information, notes) into a MISP event. The goal is to ensure that the majority of OSINT gathered information in MISP information sharing communities used similar techniques.

A process with best practices to add OSINT gathered information into MISP

The document is available in draw.io format and the source is available).

TODO

• Add the steps in a simple JSON/Markdown (to generate the graph/mindmap from the text)
• Add improved workflow taxonomy
• Add the other source such as MISP information sharing communities where similar information can be found
• Add the workflow in MISP core software

How to contribute?

Fork the project, download the drawio format document, edit the document with drawio, commit and do a pull-request.

License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.

Copyright (c) 2017-2019 Alexandre Dulaunoy
Copyright (c) 2019 Vincent Falconieri