Task: Scope the official MISP training for reproduction as a range42 scenario
Description
Research the official MISP training material and produce a structured breakdown so we can plan its reproduction as a hands-on scenario inside range42. Goal is not to build the lab yet, but to deliver everything needed to scope and plan it: ordered list of training steps, required files (datasets, sample events, IOCs, PCAPs, etc.), libraries, CLI tools, and any external dependencies. Output should be actionable enough to feed directly into a range42 exercise design.
Working branch
feature/misp-training-scoping
Files / locations
range42/range42-catalog/03_container_layer/docker/admin/misp-training/training-breakdown.md - full breakdown (steps, learning objectives, prerequisites)range42/range42-catalog/03_container_layer/docker/admin/misp-training/assets-inventory.md - list of required files, datasets, sample events, IOCsrange42/range42-catalog/03_container_layer/docker/admin/misp-training/tooling.md - required libs, CLI tools, MISP modules, versionsrange42/range42-catalog/03_container_layer/docker/admin/misp-training/sources.md - links to official MISP training repos, slides, videos, docs
Note: paths above are workspace-level for now and may be adjusted later.
Requirements
- Identify and list official MISP training sources (MISP-Project training repo, ENISA material, CIRCL training, etc.)
- For each training module/chapter:
- Title and learning objective
- Step-by-step actions performed by the trainee
- Required input files (sample events, attributes, feeds, PCAPs, malware samples if any)
- Required tools (PyMISP, misp-modules, misp-stix, Viper, etc.) with versions
- Expected outcome / validation criteria
- Flag any assets that need to be pre-staged in the range42 lab (datasets to mirror, feeds to mock, external APIs to stub)
- Flag licensing / redistribution constraints on any training material
- Highlight gaps where the official training assumes manual setup we’ll need to automate for range42
- Deliverable should be detailed enough to plan the next task: building the actual range42 MISP scenario
Task: Scope the official MISP training for reproduction as a range42 scenario
Description
Research the official MISP training material and produce a structured breakdown so we can plan its reproduction as a hands-on scenario inside range42. Goal is not to build the lab yet, but to deliver everything needed to scope and plan it: ordered list of training steps, required files (datasets, sample events, IOCs, PCAPs, etc.), libraries, CLI tools, and any external dependencies. Output should be actionable enough to feed directly into a range42 exercise design.
Working branch
feature/misp-training-scopingFiles / locations
range42/range42-catalog/03_container_layer/docker/admin/misp-training/training-breakdown.md- full breakdown (steps, learning objectives, prerequisites)range42/range42-catalog/03_container_layer/docker/admin/misp-training/assets-inventory.md- list of required files, datasets, sample events, IOCsrange42/range42-catalog/03_container_layer/docker/admin/misp-training/tooling.md- required libs, CLI tools, MISP modules, versionsrange42/range42-catalog/03_container_layer/docker/admin/misp-training/sources.md- links to official MISP training repos, slides, videos, docsRequirements