Loading...
FL
AI Insights & Achievements
28/ 100
Quality
Avg 14.3 stars per repo.
Veteran
Coding for 5 years.
Profile README
Flowintel is an open-source platform designed to assist analysts in organizing their cases and tasks. It features a range of tools and functionalities to enhance workflow efficiency.
Features
-
Case and Task Management: Tailored for security analysts, enabling efficient tracking and organization.
-
Rich Documentation Tools: Includes Markdown and Mermaid integration for detailed notes, with export options like PDF.
-
Integration with MISP standard: Seamless connection with MISP taxonomies and MISP galaxy.
-
Calendar and Notifications: Features an efficient calendar view and notifications for timely task management.
-
Templating System: Provides templates for cases and tasks, creating a playbook and process repository for cybersecurity.
-
Flexible Data Export: Offers modules for exporting data to platforms like MISP, AIL, and more.
-
Accessible API: Exposes an API for easy interaction with FlowIntel's functionalities.
-
Advanced Analysis Modules: Leverages MISP modules for automated enrichment, threat intelligence, and data correlation.
-
User and Workflow Management: Supports organizational structuring, task assignments, and a queueing system for efficient workload distribution.
-
Comprehensive Audit Logging: Maintains a full audit trail of all actions, ensuring transparency and compliance.
Quick start
Copy the default configuration:
cd flowintel
cp conf/config.py.default conf/config.py
cp conf/config_module.py.default conf/config_module.py
Change the configuration in conf/config.py
Run the installation script ./install.sh
Start the application with ./launch.sh -l
Account
-
email:
admin@admin.admin -
password:
admin
Documentation
A more detailed documentation can be found here: https://flowintel.github.io/flowintel-doc
There is also a recorded training available on YouTube
Using vite
To build assets using vite:
cd app/assets
npm run build:static
Adding Custom Taxonomies/Galaxies
If you would like to add your own galaxies and taxonomies to Flowintel, add it to:
-
flowintel/modules/custom_taxonomies/ -
flowintel/modules/custom_galaxies/
Just keep in mind that for taxonomies a MANIFEST.json is required and for galaxies two folders clusters and galaxies
See: misp-galaxy, misp-taxonomies
Roadmap
Overview of features currently under development. https://github.com/orgs/flowintel/projects/5
License
This software is licensed under GNU Affero General Public License version 3
Copyright (C) 2022-2023 CIRCL - Computer Incident Response Center Luxembourg
Copyright (C) 2022-2023 David Cruciani
Funding
Flowintel is co-funded by CIRCL and by the European Union under FETTA (Federated European Team for Threat Analysis) project.
Public Repos
12
Total Stars
172
Total Forks
29
Public Gists
0
Top Languages
Based on primary language of repositories