MISP
Open Source Threat Intelligence and Sharing Platform

MISP is an open source platform for collecting, storing, correlating, and sharing cyber threat intelligence and indicators of compromise (IOCs). It is designed for incident analysts, security professionals, and malware researchers to streamline structured information sharing. The project also includes open taxonomies, galaxy clusters, Python libraries, and extensible modules to support a wide range of threat intelligence workflows.
MISP stores IOCs in a structured format and enables automated correlation, export to IDS/SIEM tools, and synchronization across MISP communities and trusted partners.
Security analysts, incident responders, CSIRTs, and cybersecurity professionals
Background.
- Status
- launched
- Business model
- open-source
- Company
- CIRCL
Similar projects.
Editorial take on the space this project sits in — momentum signals, adjacent moves, our call on whether the wedge is real. Get pinged when we publish a new read or when the landscape shifts.
Have a take on this space?
Tell us what you’d build differently, where you think the incumbents miss, or what we’ve gotten wrong about this project. Comments + reactions are coming soon.