Default URL and (username/password) How to upgrade MISP to the latest version?

• MISP web interface - http://127.0.0.1 (NAT: Log in via SSH or terminal and type the following commands (your
http://127.0.0.1:8080) (admin@admin.test/admin) VM must have an Internet access):
• MISP-modules - http://127.0.0.1:6666 1. cd /var/www/MISP
• MISP-dashboard - http://127.0.0.1:8001
2. git pull origin 2.4
• Viper-web - http://127.0.0.1:8888 (admin/Password1234)
3. git submodule update ––init ––recursive
• jupyter-notebook - http://127.0.0.1:8889
• system credentials via ssh/terminal - (misp/Password1234) Getting OSINT information into your MISP
How to get the API key of my user? By default, a fresh installation of MISP is empty as we prefer to leave
it up to the users to store, gather, and share the information they
Go to the MISP web interface, and simply click your username in the

Threat Sharing
need. If you would like to populate your MISP with some real-life
right upper corner to see your user profile which includes your API
data, simply enable the CIRCL OSINT feed, which contains
key.
cybersecurity threat-related information. In order to enable the
How to reset a password in MISP? OSINT feed, go to → Sync Actions then → List Feeds. Then
MISP Training Cheat Sheet If you did any specific mistake while setting up your password at the
select the checkbox next to the first feed (called CIRCL OSINT
Feed) and click on top Enable Selected. To fetch all events from
first login. You can reset the password by logging in on the system
the selected feed, scroll to the right side of the CIRCL OSINT Feed
(via SSH or terminal) and typing the following command:
row and simply click the icon depicting a downward pointing arrow
/var/www/MISP/app/Console/cake Password
Virtual Machine (MISP Training VM) admin@admin.test YourTemporaryPasssword
in a circle. Once you go back to the Event Index, the events will start
appearing gradually.
How to reset the bruteforce login
The MISP Training VM is available at the following location : Training materials and documentation
https://www.circl.lu/misp-images/. protection? MISP training materials are available at the following location
The VM can be imported into VirtualBox or VMWare as an appliance While trying to log into MISP multiple times unsuccessfuly, the https:
(OVA). bruteforce protection might be triggered. You can reset the bruteforce //www.circl.lu/services/misp-training-materials/
The MISP training VM includes multiple applications and packages login protection’s state by logging into the system (via SSH or and are freely licensed under CC-BY-SA. MISP book is available at the
which are configured by default without production-ready secure terminal) and typing the following command: following location https://www.circl.lu/doc/misp/.
settings. We strongly recommend to not use this VM for production /var/www/MISP/app/Console/cake Admin
and/or for storing sensitive information. clearBruteforce Copyright
c 2018 MISP Project licensed under CC-BY-SA