updating generation searches

muchdogesec · Aug 25, 2024 · e5acf41 · e5acf41
1 parent 6c789a1
commit e5acf41
Show file tree

Hide file tree

Showing 2 changed files with 13 additions and 2 deletions.
diff --git a/README.md b/README.md
@@ -20,6 +20,8 @@ In short txt2stix;
 
 [![txt2stix](https://img.youtube.com/vi/TWVGCou9oGk/0.jpg)](https://www.youtube.com/watch?v=TWVGCou9oGk)
 
+[Watch the demo](https://www.youtube.com/watch?v=TWVGCou9oGk).
+
 ## The problem
 
 More-and-more organisations are standardising the way the represent threat intelligence using the STIX 2.1 data model.

diff --git a/includes/aliases/_README.md b/includes/aliases/_README.md
@@ -4,20 +4,27 @@ Generate `mitre_cwe_name_to_id.csv`:
 
 ```sql
 FOR doc IN mitre_cwe_vertex_collection
-  FILTER IS_ARRAY(doc.external_references)
+  FILTER doc._is_latest == true
+  AND doc._stix2arango_note == "v4.15"
+  AND IS_ARRAY(doc.external_references)
   FOR reference IN doc.external_references
     FILTER reference.source_name == "cwe"
+    SORT reference.external_id ASC
     RETURN {
       name: doc.name,
       external_id: reference.external_id
     }
 ```
 
+(964 results in v4.15)
+
 Generate `mitre_capec_name_to_id.csv`:
 
 ```sql
 FOR doc IN mitre_capec_vertex_collection
-  FILTER IS_ARRAY(doc.external_references)
+  FILTER doc._is_latest == true
+  AND doc._stix2arango_note == "v3.9"
+  AND IS_ARRAY(doc.external_references)
   FOR reference IN doc.external_references
     FILTER reference.source_name == "capec"
     RETURN {
@@ -26,6 +33,8 @@ FOR doc IN mitre_capec_vertex_collection
     }
 ```
 
+(615 results in v3.9)
+
 Generate `mitre_attack_enterprise_name_to_id.csv` (also include x_mitre_aliases):
 
 ```sql