intelmq

IntelMQ is a solution for CERTs to process data feeds, pastebins, tweets throught a message queue.

These details have not been verified by PyPI

Project links

Homepage

Project description

Welcome to IntelMQ!
===================

.. figure:: https://raw.githubusercontent.com/certtools/intelmq/master/docs/images/Logo_Intel_MQ.png
:alt: IntelMQ

IntelMQ
|Build Status| |Coverage Status| |codecov.io|

**IntelMQ** is a solution for CERTs for collecting and processing
security feeds, pastebins, tweets and log files using a message queuing
protocol. It's a community driven initiative called **IHAP** (Incident
Handling Automation Project) which was conceptually designed by European
CERTs during several InfoSec events. Its main goal is to give to
incident responders an easy way to collect & process threat intelligence
thus improving the incident handling processes of CERTs.

IntelMQ's design was influenced by
`AbuseHelper <https://bitbucket.org/clarifiednetworks/abusehelper>`__,
however it was re-written from scratch and aims at:

- Reduce the complexity of system administration
- Reduce the complexity of writing new bots for new data feeds
- Reduce the probability of events lost in all process with persistence
functionality (even system crash)
- Use and improve the existing Data Harmonization Ontology
- Use JSON format for all messages
- Integration of the existing tools (AbuseHelper, CIF)
- Provide easy way to store data into Log Collectors like
ElasticSearch, Splunk
- Provide easy way to create your own black-lists
- Provide easy communication with other systems via HTTP RESTFUL API

It follows the following basic meta-guidelines:

- Don't break simplicity - KISS
- Keep it open source - forever
- Strive for perfection while keeping a deadline
- Reduce complexity/avoid feature bloat
- Embrace unit testing
- Code readability: test with unexperienced programmers
- Communicate clearly

Table of Contents
-----------------

1. `How to Install <#how-to-install>`__
2. `Developers Guide <#dev-guide>`__
3. `IntelMQ Manager <#control-platform>`__
4. `Incident Handling Automation
Project <#incident-handling-automation-project>`__
5. `Data Harmonization <#data-harmonization>`__
6. `Licence <#licence>`__

## How to Install

See `UserGuide <docs/User-Guide.md>`__.

## Developers Guide

See `Developers Guide <docs/Developers-Guide.md>`__.

## IntelMQ Manager

Check the `tool <https://github.com/certtools/intelmq-manager>`__ and
manage easily IntelMQ system.

## Incident Handling Automation Project

- **URL:**
http://www.enisa.europa.eu/activities/cert/support/incident-handling-automation
- **Mailing-list:** ihap@lists.trusted-introducer.org

## Data Harmonization

IntelMQ use the Data Harmonization. Check the following
`document <docs/Data-Harmonization.md>`__.

## Licence

This software is licensed under GNU Affero General Public License
version 3

.. |Build Status| image:: https://travis-ci.org/certtools/intelmq.svg?branch=master
:target: https://travis-ci.org/certtools/intelmq
.. |Coverage Status| image:: https://coveralls.io/repos/github/certtools/intelmq/badge.svg?branch=master
:target: https://coveralls.io/github/certtools/intelmq?branch=master
.. |codecov.io| image:: https://codecov.io/github/certtools/intelmq/coverage.svg?branch=master
:target: https://codecov.io/github/certtools/intelmq?branch=master

Project details

These details have not been verified by PyPI

Project links

Homepage

Release history Release notifications | RSS feed

3.3.1

Sep 3, 2024

3.3.0

Mar 1, 2024

3.2.1

Aug 28, 2023

3.2.0

Jul 18, 2023

3.1.0

Feb 10, 2023

3.1.0rc1.post1 pre-release

Aug 8, 2022

3.0.2

Sep 10, 2021

3.0.1

Sep 2, 2021

3.0.0

Jul 2, 2021

3.0.0rc1 pre-release

Jun 26, 2021

3.0.0b1 pre-release

Jun 21, 2021

2.3.3

May 31, 2021

2.3.2

Apr 27, 2021

2.3.1

Mar 25, 2021

2.3.0

Mar 4, 2021

2.3.0rc1 pre-release

Feb 19, 2021

2.2.3

Dec 23, 2020

2.2.2

Oct 29, 2020

2.2.1

Jul 30, 2020

2.2.0

Jun 18, 2020

2.2.0rc1 pre-release

May 30, 2020

2.1.3

May 26, 2020

2.1.2

Jan 28, 2020

2.1.1

Nov 11, 2019

2.1.0

Oct 15, 2019

2.0.2

Oct 14, 2019

2.0.1

Aug 23, 2019

2.0.0

May 22, 2019

2.0.0b1 pre-release

Apr 10, 2019

1.1.2

Mar 25, 2019

1.1.1

Jan 15, 2019

1.1.0

Sep 5, 2018

1.1.0rc2 pre-release

Aug 14, 2018

1.1.0rc1 pre-release

Jun 28, 2018

1.0.6a1 pre-release

Sep 3, 2018

1.0.5

Jun 22, 2018

1.0.4

Apr 20, 2018

1.0.3

Feb 5, 2018

1.0.2

Nov 9, 2017

1.0.1

Aug 30, 2017

1.0.1rc1 pre-release

Aug 23, 2017

1.0.0

Aug 7, 2017

1.0.0rc1 pre-release

Jul 5, 2017

1.0.0.dev8 pre-release

Jun 14, 2017

1.0.0.dev7 pre-release

May 9, 2017

1.0.0.dev6 pre-release

Jan 11, 2017

1.0.0.dev5 pre-release

Sep 20, 2016

1.0.0.dev4 pre-release

Feb 23, 2016

1.0.0.dev3 pre-release

Feb 16, 2016

This version

1.0.0.dev2 pre-release

Feb 16, 2016

intelmq 1.0.0.dev2

Navigation

Verified details

Maintainers

Unverified details

Project links

Meta

Classifiers

Project description

Project details

Verified details

Maintainers

Unverified details

Project links

Meta

Classifiers

Release history Release notifications | RSS feed