The latest maintenance release for the incident-management toolbox IntelMQ brings few changes, but notable performance increases for high-load data collection processes.

The IntelMQ 3.0.1 release batch fixes some issues in IntelMQ, the API and the Manager.

"Tuency" is a new Open-Source constituency management portal with capabilities for self-management and managing abuse-contacts for network objects. With Keycloak, the database can be used for authenticating users on other applications. Nowadays, managing your own constituency in terms of security incidents is very important and challenging, but with Tuency you are able to do so with ease. Tuency has been built from scratch to address this issue and furthermore you're able query data via the Tuency API. Additionally, Tuency offers a special API to query the correct abuse contact for a network object (ASN, IP-Address, Domain) including hierarchical inheritance and notification rules!

IntelMQ 3.0 provides more possibilities to process domain-based data. For this purpose, we developed new "expert" bots - building blocks written in Python - which extend or filter events based on their URL- or Domain-properties. In addition we've introduced so-called IEPs (IntelMQ Enhancement Proposals), for a better way to discuss major changes within the community. The first IEP concerned a revamped configuration system for IntelMQ, which is part of IntelMQ 3.0.