From e505338831e5a11df143c47a17d4eea44ca1383c Mon Sep 17 00:00:00 2001
From: Alexandre Dulaunoy <a@foo.be>
Date: Sat, 22 Apr 2023 10:36:37 +0200
Subject: [PATCH] new: [doc] basic README added

---
 README.md | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100644 README.md

diff --git a/README.md b/README.md
new file mode 100644
index 0000000..a29b52d
--- /dev/null
+++ b/README.md
@@ -0,0 +1,15 @@
+# CIRCL MISP CTI OSINT feed in different standard format
+
+[CIRCL](https://www.circl.lu/), the Computer Incident Response Center Luxembourg, provides a reliable and up-to-date OSINT feed that includes valuable cyber threat intelligence such as indicators of compromise, contextualization, and information about threat actors. The feed is available in the MISP standard format, which is a widely adopted open-source format for threat intelligence sharing. Additionally, in this repository, the feed is converted into various other formats using [misp-stix](https://github.com/misp/misp-stix), a tool developed by CIRCL.
+
+This comprehensive dataset can be utilized by other security tools for testing the import and conversion of both the [MISP standard format](https://www.misp-standard.org/) and the [OASIS STIX](https://www.oasis-open.org/committees/tc_home.php?wg_abbrev=cti) format, which allows for better integration and sharing of cyber threat intelligence.
+
+## Available formats
+
+- [MISP standard format](https://codeberg.org/adulau/misp-circl-feed/src/branch/main/feeds/circl/misp)
+- [OASIS STIX 2.1 format](https://codeberg.org/adulau/misp-circl-feed/src/branch/main/feeds/circl/stix-2.1)
+
+## Classification
+
+TLP:CLEAR - Recipients can spread this to the world, there is no limit on disclosure. Sources may use TLP:CLEAR when information carries minimal or no foreseeable risk of misuse, in accordance with applicable rules and procedures for public release. Subject to standard copyright rules, TLP:CLEAR information may be shared without restriction.
+