github MISP/misp-modules v3.0.5
misp-modules v3.0.5 — Modernized Web Interface, Cleaner Mappings, and New Enrichment Capabilities such as Reversing Labs and Sentinel
on GitHub

9 hours ago

misp-modules v3.0.5 — Release Notes

Release date: 2025-12-23

Web interface to misp-modules without using MISP

Changes

  • [release] Version 3.0.5 released. (Alexandre Dulaunoy)

Fixes

  • Limit input types to supported hash types (md5, sha1, sha256). (Paul Venne)
  • Update User-Agent format and version in rl_enrichment.py. (Paul Venne)
  • Add repository and support information to rl_enrichment.py. (Paul Venne)
  • Remove unused IOC-specific metadata from summary formatting. (Paul Venne)
  • Update MAPPING_RULES for domain consistency and disable deterministic UUID computation. (Paul Venne)
  • Update MISP_TYPE_MAPPING and response handling for improved data normalization. (Paul Venne)
  • Update comment order in MAPPING_RULES for file-object and file-analysis:
    • Prioritize SHA1 over SHA256 and MD5 in object comments.
    • Ensure MD5 references are correctly formatted in file-object mappings. (Paul Venne)
  • [website] Poetry and main adjustments. (David Cruciani)

Other

  • Merge PR #754: Add ReversingLabs Enrichment module. (Alexandre Dulaunoy)

    • Comprehensive IOC enrichment for file hashes, domains, IPs, and URLs
    • Declarative JSON mappings for flexible MISP object creation
    • Support for nested objects and relationships
    • Automatic MISP type detection and validation
    • Built-in error handling and SSL verification options

  • Rename tests to match renamed module. (Paul Venne)

  • Update module description and name for clarity. (Paul Venne)

  • Optimized and verified with ruff and flake8. (Paul Venne)

  • Refactor code structure for improved readability and maintainability. (Paul Venne)

  • Fix documentation: correct supported hash types. (Paul Venne)

  • Add ReversingLabs logo and enrichment module documentation. (Paul Venne)

  • Add unit tests for ReversingLabs module functionality. (Paul Venne)

  • Remove unneeded folders. (Paul Venne)

  • Merge PR #753: Refactor Rapid7 AttackerKB module version and details. (Alexandre Dulaunoy / jrecinsky-r7)

    • Updated module version and improved documentation.

  • Merge PR #728: Reorganize and manage assets with Vite. (David Cruciani / Cormac Doherty)

    • Introduce Vite-based asset management
    • Rebuild/replace vendor assets and JavaScript bundles
    • Remove unused Bootstrap and FontAwesome assets
    • Update templates and asset paths
    • Standardize asset structure

  • Merge PR #751: Migrate website to Poetry and simplify architecture. (David Cruciani / Cormac Doherty)

    • BREAKING CHANGE: Configuration moved to .env
    • Replace requirements.txt with pyproject.toml and Poetry
    • Consolidate website entrypoint to website/main.py
    • Add Gunicorn WSGI support and systemd service templates
    • Improve configuration handling, logging, and linting
    • Remove legacy configuration and launcher files

  • Merge PR #750: Synchronize with Microsoft Sentinel or Defender. (Alexandre Dulaunoy / Koen Van Impe)

    • Add and update export_sentinel.py
    • Wrapper support for existing MISP2Sentinel and MISP2Defender setups
Check out latest releases or
releases around MISP/misp-modules v3.0.5

Don't miss a new misp-modules release

NewReleases is sending notifications on new releases.

Get notifications