misp-book
misp-book copied to clipboard
MISP
User guide of MISP
In the Documentation there are [references](https://github.com/MISP/misp-book/search?q=bro) to "Bro" however the project was renamed to zeek. https://zeek.org/2018/10/11/renaming-the-bro-project/ Those references should be renamed. There are also attributes of events called bro. I'm...
Might be worth to have an example with cron or something similar
Rest client and OpenAPI were moved to "API" in top menu in v2.4.144 Screenshots should be updated to reflect this
Idea is to add a section going over the key / basic topics and usage. A text based version of part of the trainings if you will. Creating this issue...
See https://www.misp-project.org/2020/10/08/Event-Reports.html Also might be worth mentioning https://gitter.im/MISP/MISP?at=609186fa31d2306a0e8eb1d0
Number of widgets is starting to grow, it's also not very clear what each of them do and in what situation you can use them. Probably makes sense to add...
Document ways to see what the MISP PHP code is doing. All of the following require modifying php files: (1) Change MISP server setting Security.debug from 0 to 1 or...
The misp-book refers to the "correlation engine". For example, in using-the-system/README.md: > **Value**: The value or value-pair of the attribute. This is the main payload of the attribute, which is...
See https://www.misp-project.org/2018/03/23/MISP.2.4.89.released.html
See https://www.misp-project.org/misp-training/a.a-widget-dev.pdf Add checkPermissions -> see example in https://github.com/MISP/MISP/blob/2.4/app/Lib/Dashboard/RecentSightingsWidget.php Other reference: https://github.com/MISP/MISP/blob/2.4/app/Model/Dashboard.php And for the views / different widget renders: https://github.com/MISP/MISP/tree/2.4/app/View/Elements/dashboard/Widgets scoped-css: https://gitter.im/MISP/MISP?at=605ca93d33346c162776a2b9 https://github.com/MISP/MISP/blob/2.4/app/View/Helper/ScopedCSSHelper.php