Structured Threat Information Expression (STIX™) 2.0 and Trusted Automated eXchange of Indicator Information (TAXII™) 2.0 have a new website. The STIX 1.x and TAXII 1.x websites have been archived.
Visit this new website for the most recent information about STIX and TAXII:
Please join us on Wednesday, November 30, 2016 for our next bi-weekly community call about the next version of MAEC Language, Version 5.0.
Each bi-weekly call focuses on one or so aspects of “Malware Attribute Enumeration and Characterization (MAEC™) 5.0, with this week’s specific topic(s) noted below on the agenda. But feel free to bring up any other MAEC-related topics at any time.
Wednesday, November 30, 2016
11:00 a.m. – 12:00 p.m. EST
Phone: +1 (781) 271-2020 / +1 (703) 983-2020
Link: https://meet.mitre.org/ikirillov/7F073TTD
Conference ID: 9326128
maec@mitre.org
Our next 1-hour, bi-weekly Working Session Call for Malware Attribute Enumeration and Characterization (MAEC™) Version 5.0 will be held on November 30, 2016.
Call details will be posted on the MAEC Working Call page on the MAEC website, and announced here and on the MAEC Community Email Discussion List, closer to the meeting date.
Please join us on Wednesday, November 9, 2016 for our next bi-weekly community call about the next version of MAEC Language, Version 5.0.
Each bi-weekly call focuses on one or so aspects of “Malware Attribute Enumeration and Characterization (MAEC™) 5.0, with this week’s specific topic(s) noted below on the agenda. But feel free to bring up any other MAEC-related topics at any time.
Wednesday, November 9, 2016
11:00 a.m. – 12:00 p.m. EST
Phone: +1 (781) 271-2020 / +1 (703) 983-2020
Link: https://meet.mitre.org/ikirillov/7F073TTD
Conference ID: 9326128
maec@mitre.org
python-stix Version 1.2.0.2 is now available for download from PyPI, and to view the source code in the STIXProject repository on GitHub.com. Documentation for this release is hosted on ReadTheDocs.org.
A complete list of changes from the previous version is available in this report.
Our next 1-hour, bi-weekly Working Session Call for Malware Attribute Enumeration and Characterization (MAEC™) Version 5.0 will be held on November 9, 2016.
Call details will be posted on the MAEC Working Call page on the MAEC website, and announced here and on the MAEC Community Email Discussion List, closer to the meeting date.
Questions: maec@mitre.org
Please join us on Wednesday, October 26, 2016 for our next bi-weekly community call about the next version of MAEC Language, Version 5.0.
Each bi-weekly call focuses on one or so aspects of “Malware Attribute Enumeration and Characterization (MAEC™) 5.0, with this week’s specific topic(s) noted below on the agenda. But feel free to bring up any other MAEC-related topics at any time.
Wednesday, October 26, 2016
11:00 a.m. – 12:00 p.m. EDT
Phone: +1 (781) 271-2020 / +1 (703) 983-2020
Link: https://meet.mitre.org/ikirillov/7F073TTD
Conference ID: 9326128
maec@mitre.org
Due to scheduling issues the call on October 12 needed to be cancelled. Our next 1-hour, bi-weekly Working Session Call for Malware Attribute Enumeration and Characterization (MAEC™) Version 5.0 will be held on October 26, 2016.
Call details will be posted on the MAEC Working Call page on the MAEC website, and announced here and on the MAEC Community Email Discussion List, closer to the meeting date.
Questions: maec@mitre.org
Structured Threat Information Expression (STIX™) is cited in an October 4, 2016 press release entitled “Arbor Networks Spectrum Introduces Virtualized Internal Network Traffic Analysis to Accelerate Advanced Threat Defenses.”
The main topic of the press release is Arbor Networks Inc.’s release of version 2.2 of its Arbor Networks Spectrum product, a “high performance network traffic analysis platform integrating Netflow, packet and threat intelligence data for real-time and retrospective investigation of advanced threats.”
STIX is cited as product feature for importing STIX feeds to apply shared threat intelligence in bullet number three of five, as follows: “Support for third party intelligence use in STIX formats.”
Read the full Arbor press release at: https://www.arbornetworks.com/arbor-networks-spectrum™-introduces-virtualized-internal-network-traffic-analysis-to-accelerate-advanced-threat-defenses
The OASIS Cyber Threat Intelligence (CTI) technical committee (TC) has released the Committee Specification Draft (CSD) of the upcoming version of Cyber Observable eXpression (CybOX™) for public review and comment. The review period ends on October 28, 2016.
“This is an open invitation to comment. OASIS solicits feedback from potential users, developers and others, whether OASIS members or not, for the sake of improving the interoperability and quality of its technical work.”
CybOX Version 2.1.1
Committee Specification Draft 01 / Public Review Draft 01
20 June 2016
“Cyber Observable Expression (CybOX) is a standardized language for encoding and communicating high-fidelity information about cyber observables, whether dynamic events or stateful measures that are observable in the operational cyber domain. By specifying a common structured schematic mechanism for these cyber observables, the intent is to enable the potential for detailed automatable sharing, mapping, detection and analysis heuristics.”
See the OASIS announcement for details.
STIX Project Home
Related Projects:
TAXII CybOX MAEC