Jason Maurath
Jason Maurath
## Description When updating a Course of Action entity, there is no option to update the external ID. ## Environment 1. OS (where OpenCTI server runs): AWS Linux 2. OpenCTI...
## Use case Current, the OpenCTI platform only supports feeds from Crowdstrike and not enrichment. As a cyber threat analyst, I require an automation that can enrich a given indicator...
## Use case In order to provide a consistent and standardized Tools SDOs, an automated connector that pulls in this kind of data set is needed. A consistent list is...
## Use case As an Analyst, I would like the ability to set default expiration/'Valid to' dates based on observable/indicator type. This should also extend into any relationships that are...
## Use case As an Analyst, I require the ability to specify the various Infrastructure fields when creating a new Object in the Frontend. ## Current Workaround Create Object, then...
## Use case As an Analyst, I require the ability to customize/define Infrastructure Types in order to better classify Infrastructure Objects. ## Current Workaround There is currently no work around...
## Description The current implementation of the CISA Known Exploited Vulnerabilities only extracts Vulnerability data from the data feed. As a Threat Intelligence Analyst, I require that the software/platform, and...
## Use case As a Cyber Threat Analyst, I would like an automation/connector that will take an identified Domain Name observable and pass it to DNSTwist to enumerate and find...
## Use case As a cyber threat analyst, I require the ability to easily identify which lists a given observable is on. This would allow me to analyze/filter observables that...