MISP Threat Intelligence Packages

Bronze

3.650,00

  • One MISP server ()
  • Ubuntu server on-prem or cloud
  • Indicators in CSV, text or JSON format
  • STIX, Netfilter, Snort and Suricata
  • Three OSINT feeds
  • CIRCL, Botvrij.eu and Cybercrimetracker
  • Three enrichment modules
  • DNS, VirusTotal and URLScan
  • Contextualisation
  • Taxonomies, galaxies and objects
  • Logging, monitoring and backup configuration
  • Installation documentation

Silver

Contact Us!

  • One MISP server ()
  • Ubuntu server on-prem or cloud
  • Connect with external threat provider()
  • MISP synchronization with CIRCL, FIRST, national CSIRTs or ISACs
  • Five enrichment modules
  • DNS, VirusTotal, URLScan, RiskIQ and CVE
  • Best practices threat intelligence
  • Documentation on best practices for using threat intelligence and MISP
  • Indicators in CSV, text or JSON format
  • Three OSINT feeds
  • Contextualisation
  • Logging, monitoring and backup configuration
  • Installation documentation

Gold

Contact Us!

  • Two MISP servers ()
  • One server connected to external threat providers and one for internal events. Includes synchronisation between servers
  • Push indicators to SIEM
  • Elastic, Splunk, QRadar, ...
  • MISP system updates and maintenance review ()
  • 12 months after installation
  • Connect with external threat provider()
  • Five enrichment modules
  • Best practices threat intelligence
  • Three OSINT feeds
  • Contextualisation
  • Logging, monitoring and backup configuration
  • Installation documentation

Platinum

Contact Us!

  • Multiple synchronised MISP servers ()
  • Hands-on training
  • MISP training tuned to your needs
  • Remote support ()
  • Custom integration with your security, EDR or asset management tools
  • Customised MISP module development
  • Tailored threat ingestion
  • Customised ingestion of threat intelligence from different sources
  • Integration in ICS environment
  • All of Bronze, Silver and Gold

  • Is threat intelligence and MISP new to you? Have a look at the presentation MISP and threat intelligence.
  • All prices are ex. VAT.
  • () Installed on a Linux server (LAMP stack) meeting the minimal MISP requirements. Linux installation needs to be done by you. Installation can be done remotely (fe. via screensharing).
  • () Accounts at the external threat providers need to be foreseen by you.
  • () Includes 4 MISP updates installed via remote access, review of MISP logs and fine-tuning of MISP performance.
  • () Remote support via screensharing (Teams, Webex, ...).

Let's Get In Touch!

Ready to use our service?
Send us an email and we will get back to you!

Koude Keukenstraat 34
B-8200 Brugge
Belgium

VAT 0656.480.558
BE45 9731 5678 6689

+32 476 981210

info(at)cudeso(dot)be


RFC2350