The course aims to teach attendees how to set up a MISP ecosystem supported by automation scripts for curating and contextualizing threat intelligence data. Participants will learn to utilize MISP instances, ZeroMQ scripts, tagging features, and workflow procedures to establish an efficient curation process. The teaching method involves demonstrating a functional MISP architecture and operational curation process, enabling attendees to replicate the setup in their organizations for an effective threat intelligence feedback loop. The course is intended for individuals interested in enhancing their threat intelligence curation and contextualization skills.
In Curation We Trust - Generating Contextual and Actionable Threat Intelligence
BruCON Security Conference via YouTube
Overview
Syllabus
12-BruCON 0x0E-In Curation We Trust Generating Contextual&Actionable Threat Intelligence-Coene&Nixon
Taught by
BruCON Security Conference