OpenDXL ATD MISP 1.0.0

mohl1
Jul 20th 2017
1.1k Downloads
0 Comments

Website: https://github.com/mohl1/OpenDXL-ATD-MISP

This solution focuses on automated threat intelligence collection with McAfee ATD, OpenDXL and MISP.

McAfee Advanced Threat Defense (ATD) produces local threat intelligence that is published via DXL. An OpenDXL wrapper subscribes and parses indicators that ATD produces and imports indicators into a threat intelligence management platform (MISP).

McAfee Advanced Threat Defense (ATD) is a malware analytics solution combining signatures and behavioral analysis techniques to rapidly identify malicious content and provides local threat intelligence. ATD exports IOC data in STIX format in several ways including DXL.

MISP threat sharing platform is a free and open source software helping information sharing of threat and cyber security indicators.

Version 1.0.0
- Jul 20th 2017
- 1.1k Downloads

OpenDXL ATD MISP 1.0.0

Version 1.0.0

OpenDXL ATD Infoblox

OpenDXL ATD Cisco ASA

MISP MAR

OpenDXL Phantom

OpenDXL ATD Fortinet

Share