-
Notifications
You must be signed in to change notification settings - Fork 21
November 2014 Community Meeting
Around 50 community members joined the call for some portion.
The STIX team gave a quick status update on:
- Tooling, including python-stix
- Documentation
- The Report Object: Rich Struse (DHS Project Lead) explained that while there was some feedback on the proposal there was not really as much as expected or desired. He encouraged everyone to comment if possible to help arrive at a decision.
John went over recent updates to the documentation site. A complete sitemap can be found in the Documentation Sitemap, that will cover everything that was discussed in the call.
Aharon Chernin presented work that Soltra has done on standing up http://hailataxii.com. It contains mappings of open source threat intelligence feeds into STIX/CybOX made accessible via TAXII.
John showed a few commands for how to access that content via libtaxii. The commands are reproduced on the Hailataxii and Libtaxii Demo page.
John gave a quick tutorial on how to use data markings, including common pitfalls and suggested practices. He also showed the marking_parser script that parses the markings in a STIX document and tells you what they apply to.
The bundle of content that was demonstrated to show the pitfalls and corrections are here or via download.
The community discussed the indicator sharing profiles and the features that they need to support. That discussion will be continued on the list as a separate thread.