CTI STIX Subcommittee

  • 1.  MISP OSINT feed export in STIX 2.0 format

    Posted 11-30-2017 08:02
    Hi All, In addition to MISP format OSINT feed available at the following location: https://www.circl.lu/doc/misp/feed-osint/ We did an experimental export of the OSINT feed in STIX 2.0 format: https://www.circl.lu/doc/misp/feed-osint-stix2/ The code for STIX 2.0 export is included by default in MISP and for your information the code is available there: https://github.com/MISP/MISP/tree/2.4/app/files/scripts/stix2 We hope this helps. Cheers. -- Alexandre Dulaunoy CIRCL - Computer Incident Response Center Luxembourg 41, avenue de la gare L-1611 Luxembourg info@circl.lu - www.circl.lu - (+352) 247 88444


  • 2.  Re: [cti-stix] MISP OSINT feed export in STIX 2.0 format

    Posted 11-30-2017 08:14
    On 30.11.2017 09:01:46, Alexandre Dulaunoy wrote: > > We did an experimental export of the OSINT feed in STIX 2.0 format: > > https://www.circl.lu/doc/misp/feed-osint-stix2/ > > The code for STIX 2.0 export is included by default in MISP and for > your information the code is available there: > > https://github.com/MISP/MISP/tree/2.4/app/files/scripts/stix2 > > We hope this helps. > Nice work, y'all! Thanks for this! ^_^ -- Cheers, Trey ++--------------------------------------------------------------------------++ Director of Standards Development, New Context gpg fingerprint: 3918 9D7E 50F5 088F 823F 018A 831A 270A 6C4F C338 ++--------------------------------------------------------------------------++ -- "In theory there is no difference between theory and practice; in practice there is." --anonymous Attachment: signature.asc Description: Digital signature


  • 3.  Re: [cti-stix] MISP OSINT feed export in STIX 2.0 format

    Posted 11-30-2017 21:37
      |   view attached
    Yeah  - that is so awesome Alexandre and team! It's great to have this initial ability to generate STIX 2.0 output. Cheers Terry MacDonald   Chief Product Officer M:   +64 211 918 814 E:   terry.macdonald@cosive.com W:   www.cosive.com On Thu, Nov 30, 2017 at 9:13 PM, Trey Darley < trey@newcontext.com > wrote: On 30.11.2017 09:01:46, Alexandre Dulaunoy wrote: > > We did an experimental export of the OSINT feed in STIX 2.0 format: > > https://www.circl.lu/doc/misp/ feed-osint-stix2/ > > The code for STIX 2.0 export is included by default in MISP and for > your information the code is available there: > > https://github.com/MISP/MISP/ tree/2.4/app/files/scripts/ stix2 > > We hope this helps. > Nice work, y'all! Thanks for this! ^_^ -- Cheers, Trey ++---------------------------- ------------------------------ ----------------++ Director of Standards Development, New Context gpg fingerprint: 3918 9D7E 50F5 088F 823F  018A 831A 270A 6C4F C338 ++---------------------------- ------------------------------ ----------------++ -- "In theory there is no difference between theory and practice; in practice there is." --anonymous