dfir-iris / iris-misp-module

IRIS module interfacing MISP with IRIS

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

IrisMISPModule

An interface module for MISP and Iris to automatically enrich IOCs with MISP insight.
Module type : Processor
Min IRIS version required : > 1.4.0

The module is preinstalled and registered by default on IRIS. For a manual installation please see the Installation section of this readme.

Configuration

Please refer to the IRIS documentation.

Installation

The installation can however be done manually if required, either from sources or existing packages (go to step 3.)

  1. Git clone this repository git clone https://github.com/dfir-iris/iris-misp-module.git && cd iris-misp-module
  2. Build the wheel : python3 setup.py bdist_wheel
  3. Copy the wheel into the IRIS app docker container docker cp iris_misp_module-XX-py3-none-any.whl container:/iriswebapp/dependencies/
  4. Get an interactive shell on the docker : docker exec -it container /bin/sh
  5. Install the new package pip3 install dependencies/iris_misp_module-XX-py3-none-any.whl

About

IRIS module interfacing MISP with IRIS

License:Other


Languages

Language:Python 100.0%