Threat intelligence platformOpen SourceFeatured

MISP

Open-source threat intelligence sharing.

Threat intelligence platform for storing, correlating, sharing, and operationalizing indicators, sightings, and event context.

Threat IntelligenceOpen SourceOfficial site listedCommunity voting
Visit site

Overview

What MISP is good for

Threat intelligence platform for storing, correlating, sharing, and operationalizing indicators, sightings, and event context.

Built for threat intelligence workflows.

Useful when evaluating threat intelligence platform capabilities.

Helpful for sharing, ioc, correlation investigations and triage.

Evaluation guide

Quick decision notes

Best fit

Threat intelligence analysts enriching indicators, checking reputation, and pivoting from weak signals into stronger context.

Check before using

Confirm current pricing, data limits, account requirements, and licensing on the official site before production use.

Typical inputs

#sharing · #ioc · #correlation

Discovery path

Use the categories, source links, and similar tools below to compare it with nearby options.

Use cases

Where it fits

Threat intelligence analysts enriching indicators, checking reputation, and pivoting from weak signals into stronger context.

Classification

Categories and tags

Threat Intelligence#sharing#ioc#correlation

Sources

Official links and checks

Use these links to verify current plans, access requirements, documentation, releases, and support status.

Reviews

Community reviews and comments

Community reviews

Comment provider is not configured yet. This placeholder keeps the review area visible while setup is completed.

Suggest a review

FAQ

Questions about MISP

What is MISP used for?

MISP is used for threat intelligence platform workflows. Threat intelligence platform for storing, correlating, sharing, and operationalizing indicators, sightings, and event context.

Is MISP free?

The listed pricing model is Open Source. Check the official site for exact plan limits, usage restrictions, and current commercial terms.

Which teams should evaluate MISP?

It is most relevant to teams working across threat intelligence workflows.

What are alternatives to MISP?

Start with the similar tools section on this page. It highlights tools with overlapping categories, tags, and operational use cases.