Skip to content

misp-galaxy released version (2025110500) with many updates and improvements

Latest
Latest

Choose a tag to compare

View all tags
@adulau adulau released this 05 Nov 08:16
· 255 commits to main since this release
2025110500
This tag was signed with the committer’s verified signature.
adulau Alexandre Dulaunoy
GPG key ID: 09E2CD4944E6CBCD
Verified
Learn about vigilant mode.
34bddc9
This commit was signed with the committer’s verified signature.
adulau Alexandre Dulaunoy
GPG key ID: 09E2CD4944E6CBCD
Verified
Learn about vigilant mode.

MISP Galaxy Release Notes (2025110500)

This release introduces major updates in the drones galaxy, threat actor galaxy, updates ransomware, and documentation data, improves formatting and cleanup across datasets, and includes contributions from multiple developers.

Release Date: 2025-11-05

🎉 New Features

  • [threat-actor] Added new Threat Actor UNK from Proofpoint.
    Issue #1097

📝 Changes

  • [ransomware] Multiple updates to ransomware data.
  • [threat-actor] Updated version and added RedNovember as an alias.
    Fix #1098
  • [doc] Updated documentation and TA numbers.
  • [sigma] Updated Sigma rules.
  • [threat-actor] Updated references for Sharp Dragon (country code corrected from KR to KP).
    Daniel Plohmann
  • [threat-actor] Added new Threat Actor Crimson Collective.
    Edouard Mehlman

🧹 Cleanup and Improvements

  • [doc] Fixed empty fields, links, and duplicates.
  • [sigma] Cleaned up and formatted JSON files.
  • [ransomware] Removed duplicate URLs and fixed JSON formatting.
  • [uavs] Updated UAVs galaxy data.
  • [README] Improved generation, uppercasing, and fixed issues.

🛠 Merge Requests

  • Merge #1109 from Th4nat0s/main: Updated UAVs galaxy.
  • Merge #1108 from semelnyk/main: Added new surveillance vendors from surveillancewatch[.]io.
  • Merge #1103 from danielplohmann/patch-43: Fixed country code and references for Sharp Dragon.
  • Merge #1100 from feedly/threat-actors/crimson-collective-group: Added Crimson Collective.

🧑‍💻 Contributors

  • Alexandre Dulaunoy
    • Updated ransomware, threat-actors, docs, and sigma.
    • Merged PRs and fixed issues.
  • Paul Jung (Thanat0s)
    • Cleaned titles, fixed duplicates, empty fields, and URLs.
    • Improved README and JSON formatting.
  • semelnyk
    • Fixed duplicates, nulls, and JSON validation for surveillance vendors.
    • Added new surveillance vendors.
  • Daniel Plohmann
    • Corrected country code for Sharp Dragon (from KR to KP).
  • Edouard Mehlman
    • Added Crimson Collective threat actor.
Assets 2
Loading