These instructions are for connecting the PrecisionSec MISP Feed to your existing MISP Threat Sharing Platform installation.

Credentials required. If you have not yet received evaluation credentials, please request access.

  1. Log in to your MISP instance.

  2. Navigate to Sync Actions → List Feeds and click Add Feed in the left sidebar to reach the Add MISP Feed page.

  3. Click the Enabled check box.

  4. In the Name field type “psec Malware Intel” or a name of your choosing.

  5. In the Provider field type “PrecisionSec”.

  6. Leave the Input Source as default “Network”.

  7. Enter the MISP feed URL in the Url box: https://trial.precisionsec.com/misp/

    • Do not attempt to visit the above URL directly. You will receive a 403 Forbidden error, which is expected.

  8. Leave the Source Format as default “MISP Feed”.

  9. Leave the Any headers… text box blank.

  10. Click the Add Basic Auth button.

  11. Enter the credentials you were provided in the Username and Password fields that appear.

  12. Click Add basic auth header. An Authorization: Basic header should appear in the text box above.

  13. You can leave the Distribution and Default Tag fields as default or set them as appropriate to your organization.

  14. Click the Add button.

  15. You will be returned to the Feeds page. If you click the Enabled Feeds tab you should now see the feed in the list.

  16. You can explore the events remotely by clicking the magnifying glass under the Actions column, or fetch the feed by clicking the circle icon with the down arrow.

MISP Add Feed page with PrecisionSec feed configured

← Back to MISP integration overview

Ready to see all of our data?

Start your 15-day free trial and get live, curated threat intelligence feeds.

Start a free trial