Skip to content

flowintel/flowintel

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

654 Commits
.github/workflows
.github/workflows
 
 
app
app
 
 
bin
bin
 
 
conf
conf
 
 
doc
doc
 
 
migrations
migrations
 
 
modules
modules
 
 
tests
tests
 
 
.dockerignore
.dockerignore
 
 
.gitchangelog.rc
.gitchangelog.rc
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
PRODUCTION.md
PRODUCTION.md
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
app.py
app.py
 
 
clean_database.py
clean_database.py
 
 
docker-compose.yml
docker-compose.yml
 
 
install.safe.sh
install.safe.sh
 
 
install.sh
install.sh
 
 
install_macos.sh
install_macos.sh
 
 
launch.sh
launch.sh
 
 
launch_macos.sh
launch_macos.sh
 
 
migrate.sh
migrate.sh
 
 
pyproject.toml
pyproject.toml
 
 
requirements.txt
requirements.txt
 
 
startNotif.py
startNotif.py
 
 
template.env
template.env
 
 
update.sh
update.sh
 
 
version
version
 
 

Repository files navigation

Flowintel is an open-source platform designed to assist analysts in organizing their cases and tasks. It features a range of tools and functionalities to enhance workflow efficiency.

Features

  • Case and Task Management: Tailored for security analysts, enabling efficient tracking and organization.

  • Rich Documentation Tools: Includes Markdown and Mermaid integration for detailed notes, with export options like PDF.

  • Integration with MISP standard: Seamless connection with MISP taxonomies and MISP galaxy.

  • Calendar and Notifications: Features an efficient calendar view and notifications for timely task management.

  • Templating System: Provides templates for cases and tasks, creating a playbook and process repository for cybersecurity.

  • Flexible Data Export: Offers modules for exporting data to platforms like MISP, AIL, and more.

  • Accessible API: Exposes an API for easy interaction with FlowIntel's functionalities.

  • Advanced Analysis Modules: Leverages MISP modules for automated enrichment, threat intelligence, and data correlation.

  • User and Workflow Management: Supports organizational structuring, task assignments, and a queueing system for efficient workload distribution.

  • Comprehensive Audit Logging: Maintains a full audit trail of all actions, ensuring transparency and compliance.

task-management

Quick start

Copy the default configuration:

cd flowintel
cp conf/config.py.default conf/config.py
cp conf/config_module.py.default conf/config_module.py

Change the configuration in conf/config.py

Run the installation script ./install.sh

Start the application with ./launch.sh -l

Account

  • email: admin@admin.admin

  • password: admin

Documentation

A more detailed documentation can be found here: https://flowintel.github.io/flowintel-doc

There is also a recorded training available on YouTube

License

This software is licensed under GNU Affero General Public License version 3

Copyright (C) 2022-2023 CIRCL - Computer Incident Response Center Luxembourg
Copyright (C) 2022-2023 David Cruciani

Funding

Flowintel is co-funded by CIRCL and by the European Union under FETTA (Federated European Team for Threat Analysis) project.

EU logo

About

An open source platform to support analysts to organise their case and tasks

flowintel.github.io/flowintel-doc

Topics

incident-response case-management threatintel flowintel

Resources

Readme

License

AGPL-3.0 license

Security policy

Security policy
Activity
Custom properties

Stars

116 stars

Watchers

14 watching

Forks

19 forks
Report repository

Releases 22

Flowintel v2.3.0 with computer-assisted reports, compliance and governance documentation, and more. Latest
Dec 15, 2025
+ 21 releases

Packages

 
 
 

Contributors 13

Languages