-
**Is your feature request related to a problem?**
OpenSearch users want an easy way to enrich the data they have stored in OpenSearch and external data sources using content from an OpenSearch index.…
-
I am integrating gglsbl as a backend for checking of URLs that are sent in our customers' messaging. This library has been extremely helpful in doing so - props for that.
A question I have is wheth…
-
**Describe the feature:**
In the new ES|QL feature for `8.11`, in Timelines (Security App) the expanded row view for Table lacks the ability to copy data, Filter In, Filter Out, Toggle column, etc.…
-
Hi, community. I like to use feeds in csv format for importing to MISP - it simple and easy to use and managment, I think.
Some time ago I recognized interesting threat intelligence community - Threa…
-
**Is your feature request related to a problem?**
Customers have constant streams of threat intel feeds which contain millions of malicious IPs or DNS or other Indicators of Compromise (IoCs).
They …
-
### Support Questions
Hello,
I am wondering why some of my feeds are cached but not fetched.
For example, if I take the _Malware Bazar by abuse.ch_ feed, we can see that it's well cached, the m…
-
Hi,
You can add Karma to your list.
Karma is a free web solution that can be used to add the organization assets (domains, websites, networks, etc), and Karma periodically search this assets on vari…
-
**Describe the feature:**
Within the Security solution's Intelligence tab there should be a way to manually upload indicators to be added to the Threat Intel index pattern.
- The upload solution sh…
-
Currently setting default values for newly created events from feeds is quite limited.
It would be cool to be able to set e.g. the Threat Level. Also, the attribute categorization should be set in …
-
https://uncoder.io/
https://github.com/SigmaHQ/sigma
https://github.com/bradleyjkemp/sigma-go
A few free sigma feeds..
While common in siem land , these are more raw threat detections.…