OSINT Systems and Integration

This page keeps all original information and links. Japanese page

OSINT4	Course code: OSINT-4 MISP OpenCTI construction and utilization

Seminar name/code	Date/time	Overview
MISP OpenCTI Construction and Utilization (Code:OSINT-4)	3 days (10:00-18:00)	We will build a threat intelligence platform (TIP) that integrates the latest threat and malware information by searching the database based on IOC information such as IP addresses, domain names, hash values, vulnerability and malware information, threat names and products.
Textbook and equipment used	Lecturer	Purpose
★Equipment used ESXi Virtualization environment VPN environment Customized virtual machine ★Distributed materials ・Resume material ・CD-ROM ・USB memory ・Ikeriri bag ・Ikeriri magnet	Megumi Takeshita Ikeriri★Network Service Co., Ltd.	Build a threat intelligence platform by automating the collection of threat information using OSINT (open source intelligence). Creates a database of threat information and malware information and makes it searchable
Seminar details
Gathering threat information using OSINT Aggregating threat/malware information Building an integrated system Building MISP (virtual machines and containers) Initial settings of MISP Event registration/server synchronization Setting up and ingesting external feeds Update and management		Building OpenCTI (container) Overview of initial settings and operations of OpenCTI Configuring and ingesting connectors Update and management Installing MISP from scratch Installing OpenCTI from scratch Synchronization of specified server/specific event (PUSH/PULL synchronization)