Do you know if there is a way to sync between Wallabag instances? I’m sure we are all archiving very similar pages.
A
adulau@infosec.exchange
@adulau@infosec.exchange
Posts
-
I maintain two pages of resources through my company, Paralus, one on CTI the other on ICS/OT: https://paralus.co/resources/ -
I maintain two pages of resources through my company, Paralus, one on CTI the other on ICS/OT: https://paralus.co/resources/@jfslowik This is driving me nuts. I often end up by adding @internetarchive links too. All our materials are sand castle.
-
I still don’t understand why some bots try to enumerate everything via the Vulnerability-Lookup API when full dumps, including all metadata, are available in one shot:I still don’t understand why some bots try to enumerate everything via the Vulnerability-Lookup API when full dumps, including all metadata, are available in one shot:
We currently don’t rate-limit bots, but we’re close to doing so.
-
Does anyone know how to report errors to https://db.gcve.eu/?It’s indeed a problem and we are working on a cpe editor at GCVE to propose links to vulnerabilities towards vendor, product, version. And people can query that for correcting potential wrong attribution to vendor, product.
GitHub - gcve-eu/cpe-editor: A collaborative CPE editor
A collaborative CPE editor. Contribute to gcve-eu/cpe-editor development by creating an account on GitHub.
GitHub (github.com)
We plan to release it online in the next weeks.
-
Plum, for Proactive Land Uncovering & Monitoring, is an orchestration tool to learn, monitor, and document an exposure surface.Plum, for Proactive Land Uncovering & Monitoring, is an orchestration tool to learn, monitor, and document an exposure surface. It coordinates work between scanning agents, keeps historical results, and makes observations searchable over time.
This project, part of D4 which was initially co-funded by the European Union, is still young, but it already addresses a concrete need: helping CIRCL to keep a global view of Luxembourg’s IP space, especially in the context of NIS2-related activities. The goal is not only to scan, but to maintain actionable knowledge of the national perimeter, its visible exposures and allows vulnerability discovery in the context of incident response.
#plum #scanning #networkscanning #cybersecurity #recon #csirt
-
Does anyone know how to report errors to https://db.gcve.eu/?https://vulnerability.circl.lu/dumps/ contains the full dump of all the sources. I feel your pain but we are trying to provide at minima the correlation among the different sources. We don’t actually modify the source but if you see a way to actually get proposal in an automatic way and extend it via GCVE records. I’m interested.
-
Drone and UAV ForensicDrone and UAV Forensic
This repository is designed to accelerate the forensic analysis of DIY FPV drones and to help automate technical reporting from seized or recovered artifacts.
The goal is pragmatic: extract useful evidence faster, normalize outputs, and produce data that can be reused in reports or shared into investigative platforms such as MISP.
https://github.com/CIRCL/Drone-Forensic#drone #uav #opensource #dfir #threatintelligence #threatintel #misp #digitalforensics
-
Does anyone know how to report errors to https://db.gcve.eu/?I think there is a confusion between the messenger (GCVE database which is correlating more than 70 sources) and the source of the CVE records.
The two CVEs mentioned are coming from the official cvelistv5 source. We (GCVE) don't change the records from the different sources. The origin is the actual CVE program database.
The contact email is in the GCVE about page -> https://db.gcve.eu/about
You can also put comments on the records on the https://vulnerability.circl.lu/ which is also synced to the DB GCVE.
We feel your pain with incorrect data from the sources. Ideas are more than welcome.
-
We are cleaning various code base including MISP.We are cleaning various code base including MISP. I'm wondering if someone still uses OpenIOC format in someways?
-
Some updates on the MISP Galaxy website:Some updates on the MISP Galaxy website:
MITRE Fight Fraud Framework - MISP galaxy
MITRE Fight Fraud Framework (F3) matrix of fraud techniques.
(www.misp-galaxy.org)
It now includes a matrix-like view of the galaxy for @misp
-
I hate Discord.@eragon At least you can pull-requests on the discourse repository to fix your issues
-
I hate Discord.I hate Discord. The platform is proprietary, the U/X is just completely confusing and it's difficult to find anything.
If you run a project, I love @Discourse - it's open source, the U/X is great and you can archive everything in markdown (and much more).
https://github.com/discourse/discourse
and we run it for GCVE https://discourse.ossbase.org/c/gcve/14
