TryHackMe | MISP

This room explores the (Malware & Threat Sharing Platform) through its core objective to foster the sharing of structured threat information among security analysts, malware researchers, and IT professionals. In this room, you will pivot from a single hash into a full campaign picture using a pre-populated instance, and learn how to integrate into your processes.

Learning Objectives

Learn the purpose of for small and large security teams
Extract attributes, objects, tags, and galaxies from events
Investigate a threat based on a high-severity event

Room Prerequisites

Threat Analysis Tools module
General familiarity with security concepts

Lab Access

For this lab, we will be using a live instance with pre-ingested events.
Click Start Machine, wait a few minutes, and open in your browser by following this link:

https://LAB_WEB_URL.p.thmlabs.com (opens in new tab)

Set up your virtual environment

To successfully complete this room, you'll need to set up your virtual environment. This involves starting the Target Machine, ensuring you're equipped with the necessary tools and access to tackle the challenges ahead.

Lab machine

Status:Off

Credentials

Use these credentials to access the interface

Username

admin@tryhackme.

Password

nTt21qO8\C.JDrZZ

Connection via

Web Browser

Answer the questions below

Continue to the next task.

MISP

Task 1IntroductionTask includes a deployable machine

Learning Objectives

Room Prerequisites

Lab Access

Set up your virtual environment

Task 2MISP PurposePremium

Task 3Using MISPPremium

Task 4Feeds and TaxonomiesPremium

Task 5Scenario EventPremium

Task 6ConclusionPremium

Ready to learn Cyber Security?