Scribd Logo
Upload

Welcome to Scribd!

  • STIX TAXII Validations 2015-May15

    Uploaded by

    damtek
    28 views1 page
    This document lists companies that have validated STIX & TAXII capabilities as of May 15, 2015. It includes intelligence providers, security tools, and the specific products or services they offer that support STIX & TAXII standards. For each product, it indicates whether they support feed pull/publish capabilities and/or inbox capabilities for exchanging STIX data via TAXII, and what types of high-level STIX objects the product supports.

    Original Description:

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document lists companies that have validated STIX & TAXII capabilities as of May 15, 2015. It includes intelligence providers, security tools, and the specific products or services they offer that support STIX & TAXII standards. For each product, it indicates whether they support feed pull/publish capabilities and/or inbox capabilities for exchanging STIX data via TAXII, and what types of high-level STIX objects the product supports.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    28 views1 page

    STIX TAXII Validations 2015-May15

    Uploaded by

    damtek
    This document lists companies that have validated STIX & TAXII capabilities as of May 15, 2015. It includes intelligence providers, security tools, and the specific products or services they offer that support STIX & TAXII standards. For each product, it indicates whether they support feed pull/publish capabilities and/or inbox capabilities for exchanging STIX data via TAXII, and what types of high-level STIX objects the product supports.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 1

    STIX & TAXII Verification

    List of companies that Soltra has verified to have validated STIX & TAXII capablitiy
    Date: 5/15/2015

    STIX & TAXII Security Standards Integration


    Company Name
    Intelligence Providers
    Fox-IT
    FS-ISAC
    HAILaTAXII.com
    iSight
    NH-ISAC
    Red Sky Alliance
    ReversingLabs
    Soltra Edge CSV Adaptor
    Wapack Labs
    Secuity Tools
    Centripetal Networks
    Confer
    Cybersponse
    HP
    IBM
    Invincea
    Intel Security
    Lastline
    Swimlane
    Soltra Edge Snort Adaptor
    Splunk
    Tanium
    Tripwire
    Vorstack

    Service / Product Name(s)

    Central Intellgence Repo (CIR)


    OSINT Feeds
    ThreatScape
    Threat Intellgence Platform (TIP)

    Quick Threat

    Threat Central
    Qradar
    McAfee ESM

    STIX to Snort Rules


    Splice
    IOC Funnel
    Enterprise

    Feed Pull
    "Ingest"

    Feed Publish
    "Share Out"

    Inbox
    "Share Back"

    STIX
    Validation

    NA

    NA
    NA
    NA
    NA

    X
    X
    X
    X

    X
    X

    X
    X
    X
    X

    Observable, Indicator, Campaign, TTP, Threat Actor


    Observable, Indicator, Campaign, TTP, Threat Actor
    Observable, Indicator, Campaign, TTP, Threat Actor
    Observable, Indicator, Campaign, TTP, Threat Actor
    Observable, Indicator, Campaign, TTP, Threat Actor
    Observable, Indicator, Campaign, TTP, Threat Actor
    Observable, Indicator
    Observable, Indicator
    Observable, Indicator, Campaign, TTP, Threat Actor

    X
    X
    X
    X
    X
    X
    X
    X
    X
    X
    X
    X
    X
    X

    X
    X
    X
    X
    X
    X
    X
    X
    X
    X
    X
    X
    X
    X

    NA
    NA
    NA

    Observable, Indicator
    Observable, Indicator
    Observable, Indicator
    Observable, Indicator
    Observable, Indicator
    Observable, Indicator
    Observable, Indicator
    Observable, Indicator
    Observable, Indicator
    Observable, Indicator
    Observable, Indicator, Incident, CoA, Exploit Target, TTP, Campaign, Threat Actor
    Observable, Indicator
    Observable, Indicator
    Observable, Indicator

    NA

    High Level Objects Supported: Observable, Indicator, Incident, CoA, Exploit


    Target, TTP, Campaign, Threat Actor

    NA

    NA

    NA

    NA
    NA
    NA
    NA

    TAXII Detailed Description


    Feed Capable - Product can ingest/pull STIX via a TAXII Feed and/ or has pulished Feeds available for others to pull from
    Inbox Capable - Can receive/ send STIX pushed to a TAXII Inbox

    `
    `

    You might also like