OpenSTIX is an unofficial STIX 2.1 library and toolkit built upon the foundations of the STIX2 library, aimed at enhancing the efficiency and productivity of cybersecurity professionals. It's developed and maintained by AbuseTotal, a startup committed to delivering high-quality software solutions in the cybersecurity domain.
- Modular Design: Organizes the functionalities provided by STIX2 library into modules for easy consumption and extension.
- Workspace Class: Extends the
Environmentclass into aWorkspaceclass to facilitate seamless creation, removal, and management of STIX SDOs (Structured Data Objects) based on contributing properties. - Built-in Datasets: Provides ready-to-use datasets including MITRE frameworks, geolocations, custom TLP markings, and industries to expedite the analytical process.
- Custom Objects and Extensions: Offers custom objects and extensions to assist analysts with additional informational resources such as Whois and DNS-Records.
pip install openstixDocumentation is available here
We welcome contributions to OpenSTIX! Whether you're reporting bugs, proposing new features, or contributing code, we appreciate your help. Please make sure to read our Contributing Guidelines before making a contribution.
OpenSTIX is licensed under the Apache 2.0.
For any inquiries, issues, or support related to OpenSTIX, feel free to create an issue.
OpenSTIX is an initiative by AbuseTotal to foster the development of cybersecurity tools and libraries. We thank the OASIS Cyber Threat Intelligence Technical Committee and all STIX community for laying down the robust foundation upon which OpenSTIX is built.