Independence and Threat Intelligence Platforms

Posted 16 Nov 2016

After the recent news of a Threat Intelligence Platform vendor stopping its activities, we have received some questions about our strategies as a Threat Intelligence Platform.

MISP is open-source and free software released some years ago in the interest of the community. The MISP Threat Sharing project became a significant undertaking allowing people to freely and openly contribute. Our objective is not to lock-down users. On the contrary, we want a large and diverse community to gather valuable feedback on how information sharing is done and how MISP could support these respective use-cases. As an example, the financial sector was taken into consideration when extending the datamodel because many of our users decided to support financial indicators in addition to cyber security indicators.

Our social contract is simple: MISP is open-source software (licensed under the AGPL) and MISP is secured to remain open-source forever.

When joining and contributing to the MISP project, it’s a reciprocal model. While contributing to MISP, you bring value into the MISP project and this value is shared among the community and not captured in the sole benefit of one user or organisation.

How can you contribute to MISP?

  • Devoting some time and resources on the development of the MISP core or any of the associated projects.
  • Taking the time to report bugs or sharing ideas via GitHub issues.
  • Helping us improve the documentation of MISP.
  • Creating trusted communities of threat and information sharing.
  • and if you want to support us financially you can also get in touch with us at info@misp-project.org.

Our work is public and transparent. Each contribution is a seed to improve MISP and information sharing. We are always enthusiastic to get contributions as this is a vital part of how we build the MISP Threat Sharing project.