MISP

Open Source

Open source platform for sharing and analyzing cyber threat intelligence

About MISP

MISP is an open source threat intelligence platform designed to collect, store, distribute, and share structured cyber security indicators and threat information. It is built primarily for incident analysts, security professionals, and malware researchers to support their daily operations in efficiently sharing and analyzing threat data. The platform enables organizations to automate the correlation and export of indicators of compromise (IOCs) to various security tools such as IDS and SIEM systems, enhancing threat detection and response capabilities.

MISP emphasizes simplicity and collaboration, allowing users to share threat intelligence within trusted communities to improve collective defense against targeted attacks, financial fraud, and counter-terrorism. It supports rich metadata tagging, visualization dashboards, and integration with open standards like STIX and OpenIOC. The platform also includes extensive taxonomies and galaxy clusters such as MITRE ATT&CK, enabling contextual threat analysis. MISP’s open standards and community-driven approach make it a valuable resource for enterprises seeking to leverage threat intelligence for proactive security operations.

Key Capabilities

✓Structured storage and sharing of threat intelligence
✓Automated correlation and export of IOCs
✓Integration with IDS, SIEM, and other security tools
✓Rich visualization and dashboard options
✓Support for open standards and taxonomies

Integrations

STIXOpenIOCIDS and SIEM systems

Other Cybersecurity Vendors

View all

ANY.RUN

Interactive malware analysis and threat intelligence platform for enterprises

Anomali

Unified AI-driven threat intelligence and SOC platform for faster incident response

Cuckoo Sandbox

Open source automated malware analysis and threat intelligence platform

Hybrid Analysis

Automated malware analysis and threat intelligence powered by Falcon Sandbox.

Joe Sandbox

Advanced AI-driven malware and phishing analysis for enterprise security teams

OpenCTI

Open-source platform unifying threat intelligence and cyber risk management

Related Buyer Guides

Independent evaluation frameworks for this category.

Cloud Access Security Broker (CASB)

Evaluate Netskope, Microsoft Defender for Cloud Apps, Zscaler, and Palo Alto for SaaS security, shadow IT discovery, and data protection.

Cloud Security Posture Management (CSPM)

Evaluate Wiz, Prisma Cloud, Orca Security, and Lacework for cloud misconfiguration detection, compliance monitoring, and attack path analysis.

Data Loss Prevention (DLP)

Compare Symantec DLP, Microsoft Purview DLP, Forcepoint, and Digital Guardian for data classification, exfiltration prevention, and compliance enforcement.

This profile was compiled by CIOPages from public sources with AI assistance, and may be incomplete or out of date. It is informational only and not an endorsement. Represent this vendor? or .