laciKE

The TAXII and STIX bots are currently tested with the ESET Threat Intelligence (ETI) feeds. Recently, ETI added several new feeds which are available only via TAXII/STIX 2.1, and older...

Hello, I have a question regarding the proposal from the last commit. I created ESETExpertBot which can add the proper classification.type and malware.name (if possible) to the events produced by...

Thank you for your answer. You are right, that expert bot fixes the classification and it is ESET-specific. I will change it to parser bot, which will inherit from the...

This StixParserBot yes, it should work for any source which provide Threat Intelligence data in STIX 2.1 format. I created it from scratch by reading [STIX 2.1 documentation](https://docs.oasis-open.org/cti/stix/v2.1/os/stix-v2.1-os.html), and it...

I will try to do better parsing for STIX2 patterns. Also, in ESET Threat Intelligence there are sometimes domains reported in URL feed and IP addresses in Domain feed, and...

Better parsing for STIX2 patterns ready, now the STIX parser bot can extract also hashes. Above-mentioned issues with ESET Threat Intelligence fixed. From my side, the PR is ready for...