Hi everyone, I was wondering how I can ingest MISP data to chronicle for enrichment. I would like to ingest the data with a forwarder that I use to ingest other data already. My question is: how I should define the collector section of my configuration file?
How I can ingest MISP data to chronicle for enrichment
+5
+13
This comment was originally sent by Gal Polak
Hi
@Antonino_La2
have you seen this post?
https://secopscommunity.com/discussion/515/can-i-integrate-chronicle-siem-with-misp-or-a-similar-platform-like-opencti
You might find it helpful.
+5Hi @Tomtomfridman I've read that post already but I can't find anything about how to send MISP data to the forwarder. How I should write the collector section for MISP data?
Login to the community
Login with SSO
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.