OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

cti message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: STIX 2.1 Extension Examples

I wanted to share with the community some of the various examples of using the proposed STIX Extensions.


Attached is a sample that illustrates:

  • extend the STIX Vulnerability object with both CVSS scoring using the JSONscheme directly from FIRST
  • extend the STIX Marking Definition object to create new data marking for IEP
  • convert a couple of MITRE ATT&CK as STIX Attack Patterns representing the current MITRE custom extension using STIX Extensions



Paul Patrick


Attachment: attack-pattern-extension-example.json
Description: attack-pattern-extension-example.json

Attachment: data-marking-extension-example.json
Description: data-marking-extension-example.json

Attachment: vulnerability-extension-example.json
Description: vulnerability-extension-example.json

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]