FlowIntel CM is an open-source platform designed to assist analysts in organizing their cases and tasks. It features a range of tools and functionalities to enhance workflow efficiency.
- Case and Task Management: Tailored for security analysts, enabling efficient tracking and organization.
- Rich Documentation Tools: Includes Markdown and Mermaid integration for detailed notes, with export options like PDF.
- Integration with MISP standard: Seamless connection with MISP taxonomies and MISP galaxy.
- Calendar and Notifications: Features an efficient calendar view and notifications for timely task management.
- Templating System: Provides templates for cases and tasks, creating a playbook and process repository for cybersecurity.
- Flexible Data Export: Offers modules for exporting data to platforms like MISP, AIL, and more.
- Accessible API: Exposes an API for easy interaction with FlowIntel CM's functionalities.
./install.sh
./launch.sh -i # To init the db\
./launch.sh -l
Go to config.py and change just like you want to.
-
email:
admin@admin.admin -
password:
admin
After login go to Users->New User and create a new user with admin right. Then go back to Users and delete admin user
A screen is created to notify recurrent case. To access it:
screen -r fcmImport a case and its tasks:
{
"title": "Super Case",
"description": "My super case for the documentation",
"uuid": "0b1f9a85-0d38-46a1-b9dd-1eeea1608308",
"deadline": null,
"recurring_date": null,
"recurring_type": null,
"tasks": [
{
"title": "Prepare a super tea",
"description": "Keep it as hot as possible",
"uuid": "ddd271b4-d7f8-4af0-a9b3-46ad52aca1bf",
"notes": "# Preparation\n- add one sugar\n",
"url": "",
"deadline": null
}
]
}
/api/case/doc
/api/admin/doc
/api/template/doc
/api/importer/doc
This software is licensed under GNU Affero General Public License version 3
Copyright (C) 2022-2023 CIRCL - Computer Incident Response Center Luxembourg Copyright (C) 2022-2023 David Cruciani