10.23721/100/17351
External Data Source
intelmq
IMPACT
2018
en
intelmq, 1291, inferlink, external, source, external data source, corporation, inferlink corporation, security, queuing, teams, feeds, message, solution, protocol, processing, collecting, incident, certs, csirts, handling, process, designed, departments, processes, initiative, socs, threat, driven, log, european, called, conceptually, project, main, responders, automation, events, info, goal, abuse, community, easy, intelligence, improving, files, collect, ihap, other
17351
1291
IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
IntelMQ is a solution for IT security teams (CERTs & CSIRTs, SOCs, abuse departments, etc.) for collecting and processing security feeds (such as log files) using a message queuing protocol. It's a community driven initiative called
IHAP (Incident Handling Automation Project) which was conceptually designed by European CERTs/CSIRTs during several Info Sec events. Its main goal is to give to incident responders an easy way to collect & process threat intelligence thus improving the incident handling processes of CERTs.