MISP Import CDF
Overview
The MISP threat sharing platform is free and open source software that enables sharing of threat intelligence represented in the MISP data model format. The MISP Import integration ingests published MISP events from a user-provided, self-hosted MISP server instance via its POST {{user_fields.domain_name}}/events/restSearch endpoint (note: {{user_fields.domain_name}} must contain the protocol, like https://).
The integration will fetch MIPS events and return the following system objects:
- Events
- Indicators
- Attachments
- Signatures
- Adversaries
- Attack Patterns
- Course of actions
- Malware
- Tools