MISP
Threat intelligence sharing platform: IOCs, galaxies, taxonomies, sync between communities, and API automation.
Why it is included
Standard open hub for ISAC-style collaboration and SOC enrichment.
Best for
CERTs, ISACs, and internal TI teams normalizing indicators.
Strengths
- Sharing model
- Taxonomies
- Huge community
Limitations
- Data governance and classification are on you
Good alternatives
OpenCTI · commercial TIP
Related tools
Security & Privacy
OpenCTI
Open cyber threat intelligence platform with knowledge graph, connectors (MISP, STIX/TAXII), and investigation UI.
Security & Privacy
TheHive
Security incident response platform: cases, tasks, observables, MISP sync, and timeline collaboration.
Security & Privacy
Cortex
Observable analysis engine powering TheHive: run analyzers and responders against IOCs via a unified API.
Security & Privacy
Shuffle
Open-source security automation (SOAR) with visual workflows, webhooks, and app integrations for SOC glue code.
Security & Privacy
Wazuh
Open security platform combining SIEM, XDR, file integrity monitoring, and compliance checks across endpoints and cloud.
Security & Privacy
Suricata
High-performance IDS/IPS and network security monitoring with multi-threading, TLS inspection options, and Lua scripting.