Hi @Bo_Wyatt , Would you please mention the use case you are interested in? to make sure it is covered when we create the node. Don’t forget to upvote your feature request. Thanks.
For example, creating events based on a list of IPs. There should be an option to create Attributes and add those attributes to the Event. Attributes could be a Network activity, Payload delivery, Antivirus detection, etc. Also there has to be a way to tag attributes and events based on a list of tags (provided by MISP and it’s API).
Basically since there is support for TheHive and Cortex Nodes, we can creates events based on the results from a Cortex analyzer for example and create attributes based on that.
I’ve been using the integration and I have some issues.
I can only create attributes with this 3 types Text, URL or Comment but I need more types in order to MISP to clearly identify the attribute.
For example, the MISP documentation lists more types: MISP data models - MISP core format - MISP taxonomies