fzipi
commented
5 years ago Latest merge provided forwarding for threat intelligence based on modsecurity detection.
Closed fzipi closed 5 years ago
fzipi
commented
5 years ago Latest merge provided forwarding for threat intelligence based on modsecurity detection.
We need to provide a mechanism to forward honest output into threat intelligence format such as STIX using something like the MISP project to share Threat data coming from the Honeypots making it easy to export/import data from formats such as STIX and TAXII., may require use of concurrent logs in a format that MISP can deal with.