Skip to main content

MISP MISP

MISP is a collaborative effort for sharing cyber threat intelligence. It provides a free, open-source platform for organizations to collect, store, and disseminate information about threats, vulnerabilities, and indicators of compromise (IOCs).

Creating a MISP connection

Using API Token

To create the connection you need:

  • An API Address
  • An API Token

Obtaining the credentials

As an Administrator:

  1. Go to the administration page by clicking on Administration.
  2. Then go to List Users.
  3. Click on View on the user you want to create an API token for.
  4. Click on Add authentication key.

As a User:

  1. In the MISP dashboard go to My Profile > Auth Keys.
  2. Click on Add authentication key.

Creating your connection

  1. In the Blink platform, navigate to the Connections page > Add connection. A New Connection dialog box opens displaying icons of external service providers available.
  2. Select the MISP icon. A dialog box with name of the connection and connection methods appear.
  3. (Optional) Edit the name of the connection. At a later stage you cannot edit the name.
  4. Select API Token as the method to create the connection.
  5. Fill in the parameters:
    • The API Address
    • The API Token
  6. (Optional) Click Test Connection to test it.
  7. Click Create connection. The new connection appears on the Connections page.