cti-python-stix2

cti-python-stix2 copied to clipboard

Opinion/Note API

3

This one should be relatively simple. Given an arbitrary number of SDO/SROs, create helpers that would allow the creation of Opinions or Note. The helper needs to accept `identifier` strings...

emmanvg

The transformations from different Confidence scales have been implemented. It would be nice to have higher level methods that could, filter objects based on: - A confidence integer value or...

emmanvg

Language API

1

`lang` is a highly-suggested property for objects that contain strings meant for humans. Investigate automatic language detection, and build high level helpers. Some libraries (If you find a better candidate,...

emmanvg

When manually creating pattern objects using the classes in https://github.com/oasis-open/cti-python-stix2/blob/master/stix2/patterns.py, it is possible to create invalid STIX 2.1 patterns that use a StringConstant where they should use a TimestampConstant. This...

clenk

Consider adding a `translate()` method to easily generate a `language-content` object with the correct `object_ref` and ensure the keys and values in `contents` match the original object.

clenk

Semantic Equivalence: Consider how to change comparison function across all objects;

2

We should consider how to alter how a given data type is compared across all objects. For example, if I want to use a string comparison algorithm other than Jaro-Winkler,...

clenk

Invalid Object Reference Error

2

Hello, I am currently experiencing issues with creating observables for an email and then linking them together. I have included an example of the data, the error and the code...

SecJesus

Very slow Bundle creation

2

I have a script which interfaces between various systems in our infrastructure. I takes a malware activity report from one tool, converts it to STIX and then feeds it to...

mkrsfcmp

[Question] any plans to publish STIX Library as part of Conda packages i.e. conda-forge

2

hey team, just had a quick question regarding STIX 2.0 python library, any chance we can have it as a Conda package so thats easier to integrate with more tools...

de0bfs

Error occured when make indicator object with QualifiedObservationExpression

1

Refering to stix2 API document(https://stix2.readthedocs.io/en/latest/guide/patterns.html#Attaching-patterns-to-STIX2-Domain-objects) the usage of START, STOP expression like this ``` ece14 = ObservationExpression(EqualityComparisonExpression(ObjectPath("file", ["name"]), "foo.dll")) ssq = StartStopQualifier(TimestampConstant('2016-06-01T00:00:00Z'), TimestampConstant('2016-07-01T00:00:00Z')) qoe2 = QualifiedObservationExpression(ece14, ssq) print("(START-STOP)\n{}\n".format(qoe2)) ``` So...

KimSangpil