MISP is an open source software solution for collecting, storing, distributing and sharing about network security event analysis and malware threats to network security metrics and analysis. MISP designed by an event analyst, security and ICT professionals or malware is reversed in order to support their daily operations, in order to efficiently share structured information.
2.4.116 version is as follows:
decaying indicators
MISP 2.4.116 includes a wide range of new properties Decaying Indicators , according to custom and sharing model, use the advanced model expired indicators.
This feature allows users to have a simple but MISP customizable system, automatically (or in some cases semi-manual) the metric marked as expired. This feature is not designed to change the property itself, but to expand on the attributes of the meta-information. MISP and all the contents of the same, this new feature can be accessed either through the user interface, can be accessed through the API, in order to attribute to filter based on Decaying model.
ATT&CK sighting
MiSP 2.4.116 has a new output format, allows users to export information MITRE ATT & CK sighting format, and share with the community directly or MITRE.
New sync priority
In 2.4.116, we introduced the ability to sort between synchronization priority MISP instances.
Release Notes: