Our colleague righelx did a first version of a nmap nse script to properly guess the version of SharePoint. It's still in development but it might already useful for some of you.
And maybe Microsoft is listening, to improve the mapping of CPE with their vulnerability publication...
Curious about all the open source and projects developed by @circl ?
CIRCL Open Source tools powering SOC & CSIRT teams.
#opensource #cybersecurity #soc #csirt #threatintel #threatintelligence
Today at the @firstdotorg conference, we’re presenting Draugnet, an open-source, lightweight submission tool designed to make sharing cyber threat intelligence easier.
🔗 https://github.com/draugnet/draugnet
#misp #threatintel #anonymity #informationsharing #cybersecurity
I hope Wikipedia has a backup plan for their foundation. If a prosecutor wants to get rid of your Tax-Exempt Status. The next step might be the dissolution…
#wikipedia #wikimedia #us #freedom
🔗 https://www.thefp.com/p/trump-prosecutor-threatens-wikipedia
Just a reminder: Vulnerability Lookup isn’t just about finding CVEs. It supports the full chain, collection from multiple sources, continuous distribution, and allocation within a coordinated vulnerability disclosure (CVD) process. 100% open source.
🔗 An online version maintained by @circl https://vulnerability.circl.lu/
🔗 https://www.vulnerability-lookup.org/
🔗 https://github.com/vulnerability-lookup/vulnerability-lookup
MISP v2.4.206 and v2.5.8 introduces new workflow modules, enhanced object relationship management and significant improvements to the event synchronisation mechanism. Key highlights include improved a reworked attribute search functionality, better handling of event reports, and various security fixes. Additionally, numerous optimizations and bug fixes enhance stability and performance.
#opensource #threatintel #misp
🔗 Release notes https://www.misp-project.org/2025/03/19/MISP.2.5.8.and.2.4.206.released.html/
For quick setup the misp-docker is pretty good https://github.com/MISP/misp-docker or the LXC images https://images.misp-project.org/
So, we know that X has been abusing its algorithms to push far-right content for years. The DSA procedure started in 2023, and now we’re seeing fascist content being amplified during the German elections…
We have a fundamental problem in enforcing regulations, and it's working against us.
🚀 New Kunai Patch Release! 🔥
This update brings important fixes:
✅ Fix probe tripping the eBPF verifier affecting Linux v5 (only on AArch64)
✅ Improved compatibility with kernels ≥ 6.11
🔗 check it out: https://github.com/kunai-project/kunai/releases/tag/v0.5.4
This 2-day physical Hackathon, held in Luxembourg on April 8th and 9th, 2025, focuses on the development of free and open-source software for cybersecurity. We aim to convene diverse developer groups to collaborate on complex programming challenges within key cybersecurity areas, such as information sharing, threat intelligence, network and system forensics, data mining, network and computer exploitation, and defense techniques.
Don’t hesitate to join us. We are open to any ideas or proposals.
@circl @misp @kunai_project @suricata @vulnerability_lookup @ail_project
#hackathon #opensource #cybersecurity #threatintel #luxembourg
circl
Alexandre Dulaunoy
Alexandre Dulaunoy
MISP
Kunai Project
OS-SCI
Joost De Cock