Hi everyone, I was wondering how I can ingest MISP data to chronicle for enrichment. I would like to ingest the data with a forwarder that I use to ingest other data already. My question is: how I should define the collector section of my configuration file?
Page 1 / 1
This comment was originally sent by Gal Polak
Hi
@Antonino_La2
have you seen this post?
https://secopscommunity.com/discussion/515/can-i-integrate-chronicle-siem-with-misp-or-a-similar-platform-like-opencti
You might find it helpful.
Hi
@Tomtomfridman
I've read that post already but I can't find anything about how to send MISP data to the forwarder. How I should write the collector section for MISP data?
Could always send MISP to OpenCTI, then use the OpenCTI STIX.
Reply
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.