Merge pull request #1 from hslatman/hs_some_standards

Adding CybOX, STIX, TAXII & MAEC
This commit is contained in:
Herman Slatman 2015-12-25 15:55:13 +01:00
commit 8adfa38e2d

View File

@ -14,6 +14,13 @@ A curated list of Awesome Threat Intelligence resources
## Standards
* [CybOX](https://cyboxproject.github.io/) - The Cyber Observable eXpression (CybOX) language provides a common structure for representing cyber observables across and among the operational areas of enterprise cyber security that improves the consistency, efficiency, and interoperability of deployed tools and processes, as well as increases overall situational awareness by enabling the potential for detailed automatable sharing, mapping, detection, and analysis heuristics.
* [STIX](https://stixproject.github.io/) - The Structured Threat Information eXpression (STIX) language is a standardized construct to represent cyber threat information.
The STIX Language intends to convey the full range of potential cyber threat information and strives to be fully expressive, flexible, extensible, and automatable.
* [TAXII](https://taxiiproject.github.io/) - The Trusted Automated eXchange of Indicator Information (TAXII) standard defines a set of services and message exchanges that, when implemented, enable sharing of actionable cyber threat information across organization and product/service boundaries.
TAXII defines concepts, protocols, and message exchanges to exchange cyber threat information for the detection, prevention, and mitigation of cyber threats.
* [MAEC](https://maecproject.github.io/) - The Malware Attribute Enumeration and Characterization (MAEC) projects is aimed at creating and providing a standardized language for sharing structured information about malware based upon attributes such as behaviors, artifacts, and attack patterns.
## Frameworks
## Research