The RH-ISAC is pleased to offer a free two-day Malware Information Sharing Platform (MISP) training event for all RH-ISAC Core members on Sept. 26-27 at the AT&T facility in Englewood, CO. The training will take place during the week of the Retail Cyber Intelligence Summit (Sept. 24-25) in Denver so if you are planning to attend the Summit, consider staying a couple of days for high-quality, hands-on training for this emerging technology. MISP is a community-driven, open-source threat intelligence platform that enables sharing, storing and correlation of Indicators of Compromise of targeted attacks, threat intelligence, financial fraud, and vulnerability information.

MISP developers, Christian Studer and Raphaël Vinot from the Computer Incident Response Center Luxembourg (CIRCL), will provide the training, which will have two distinct focus areas for threat intel analysts and administrators, and developers. Seats are limited so please register as soon as possible.


Participation is open to RH-ISAC Core members and select non-members eligible for Core membership. To learn more about Core membership, please visit For questions on eligibility and ticket information, please email


Day One:

MISP Training – Threat Intelligence Analysts and Administrators Session

  • Date: Thursday, September 26, 2019
  • Time: 9 a.m. – 5 p.m. MT
  • Duration: 8 hours
  • Targeted audience: Everyone interested in the concepts, administration, maintenance, and API usage of MISP.

Day Two

: MISP Training – Developers Session

  • Date: Friday, September 27, 2019
  • Time: 9 a.m. – 5 p.m. MT
  • Duration: 8 hours
  • Targeted audience: Integrators of MISP and contributors whose goal is to integrate MISP into the workflow of other tools.



Christian Studer

joined CIRCL in 2017 after he graduated as Master in computer science. During his master thesis at CIRCL he unveiled his capacity to lead existing CIRCL software such as the Potiron framework. He mainly works on MISP, contributing to the core development and leading the STIX implementation of the project. He also develops and maintains many MISP modules.

Raphaël Vinot, MISP Developer from the Computer Incident Response Center Luxembourg (CIRCL)Raphaël Vinot joined CIRCL in 2012 and his main activity is developing or participating to the development of a bunch of tools to improve and ease the day-to-day incident response capabilities of the team itself. He’s also involved with CiviCERT, a CSIRT supporting NGO for incident response and information sharing. Within the MISP team, he’s the main developer of PyMISP and developed most of continuous integration tests.