Open Source Platform & Standards For Threat Intelligence
MISP is a threat intelligence platform for sharing, storing and correlating Indicators of Compromise of targeted attacks, threat intelligence, financial fraud information, vulnerability information or even counter-terrorism information. MISP allows the identification of particular threat artefacts, and the correlation with available threat information.
EE-ISAC members use the platform for the detection analysis and subsequent phases of incidents handling. MISP is used to identify information about ongoing threats and helps determine malicious activities, by supporting the decision making-process in a highly interconnected, member and partner driven environment. Thus, members also benefit from contributions and feedback provided by the national and supranational entities.
The EE-ISAC information sharing platform on Nextcloud is a new solution that has just been implemented in July 2022. This software solution is developed and hosted by the Empowering EU-ISACs Consortium, a project funded by the European Commission to improve the maturity and legitimacy of the ISACs by developing a uniform digital service infrastructure. On Nextcloud, EE-ISAC Members and Partners share:
» Real-time security data & analysis
» Reports on security incidents and cyber breaches
» Technical & operational experiences with applied security solutions
» Lessons learned from past security issues
» Future challenges, security outlooks & warnings