Skip to content

Commit f00eee7

Browse files
prmerger-automator[bot]prmerger-automator[bot]
authored
Merge pull request #249515 from austinmccollum/patch-3
Update threat-intelligence-integration.md
2 parents 1273be3 + 4fbe073 commit f00eee7

File tree

2 files changed

+11
-1
lines changed

2 files changed

+11
-1
lines changed

articles/sentinel/threat-intelligence-integration.md

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -105,7 +105,8 @@ To connect to Threat Intelligence Platform (TIP) feeds, follow the instructions
105105

106106
### MISP Open Source Threat Intelligence Platform
107107

108-
- For a sample script that provides clients with MISP instances to migrate threat indicators to the Microsoft Graph Security API, see the [MISP to Microsoft Graph Security Script](https://github.com/microsoftgraph/security-api-solutions/tree/master/Samples/MISP).
108+
- Push threat indicators from MISP to Microsoft Sentinel using the TI upload indicators API with [MISP2Sentinel](https://www.misp-project.org/2023/08/26/MISP-Sentinel-UploadIndicatorsAPI.html/).
109+
- Azure Marketplace link for [MISP2Sentinel](https://azuremarketplace.microsoft.com/en-us/marketplace/apps/microsoftsentinelcommunity.azure-sentinel-solution-misp2sentinel?tab=Overview).
109110
- [Learn more about the MISP Project](https://www.misp-project.org/).
110111

111112
### Palo Alto Networks MineMeld

articles/sentinel/whats-new.md

Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -22,6 +22,15 @@ See these [important announcements](#announcements) about recent changes to feat
2222
2323
[!INCLUDE [reference-to-feature-availability](includes/reference-to-feature-availability.md)]
2424

25+
## August 2023
26+
27+
- [Updated MISP2Sentinel solution utilizes the new upload indicators API.](#updated-misp2sentinel-solution)
28+
29+
### Updated MISP2Sentinel solution
30+
The open source threat intelligence sharing platform, MISP, has an updated solution to push indicators to Microsoft Sentinel. This notable solution utilizes the new [upload indicators API](#connect-threat-intelligence-with-the-upload-indicators-api) to take advantage of workspace granularity and align the MISP ingested TI to STIX-based properties.
31+
32+
Learn more about the implementation details from the [MISP blog entry for MISP2Sentinel](https://www.misp-project.org/2023/08/26/MISP-Sentinel-UploadIndicatorsAPI.html/).
33+
2534
## July 2023
2635

2736
- [Higher limits for entities in alerts and entity mappings in analytics rules](#higher-limits-for-entities-in-alerts-and-entity-mappings-in-analytics-rules)

0 commit comments

Comments
 (0)