Difference between revisions of "Cyber Threat Intelligence"

From ForensicsWiki
Jump to: navigation, search
(OpenIOC)
(OpenIOC)
Line 12: Line 12:
 
=== OpenIOC ===
 
=== OpenIOC ===
 
Cons:
 
Cons:
* Very [[Mandiant]] product centric standard
+
* Highly [[Mandiant]] product centric standard
  
 
=== Stix/Cybox ===
 
=== Stix/Cybox ===

Revision as of 03:20, 25 June 2014

Information icon.png

Please help to improve this article by expanding it.
Further information might be found on the discussion page.

Note that the term cyber is arguable misused in the context of "Cyber Threat Intelligence" [1] and should be considered more as an equivalent for "Digital Threat Intelligence" or "Internet Threat Intelligence".

Standards

  • IODEF
  • OpenIOC
  • Stix/Cybox

IODEF

OpenIOC

Cons:

  • Highly Mandiant product centric standard

Stix/Cybox

External Links

IODEF

OpenIOC

Stix/Cybox

Tools