Skip to main content

The right way to organize the world's cyber intelligence

STIX Wiki is a community portal that teaches about the Structured Threat Information Expression (STIX™) language and serialization format used to exchange cyber threat intelligence (CTI)

IntroductionStart building

Why use STIX?

Collaboration
Foster collaboration and information sharing within your security community, facilitating collective defense efforts against cyber adversaries
Automation
Automate threat intelligence workflows and response processes, reducing manual overhead and enhancing operational efficiency
Scalability
Scale your threat intelligence operations effortlessly, accommodating the evolving needs and complexities of modern cybersecurity landscapes

What FOSS is available?

OpenTAXII
TAXII server implementation in Python from EclecticIQ.
View project
stix-shifter
Connect to data repositories using STIX Patterning, and return results as STIX Observations.
View project
stixview
Create embeddable and interactive STIX2 graphs.
View project
MISP-STIX
Handle the conversion between MISP and STIX formats.
View project
notion-stix
Integrate Threat Intelligence into your Notion workspace.
View project

What is the purpose of this website?

Put quite simply, this website aims to be a portal into the current state of STIX, namely the spec and open source software built around it. We believe that STIX is an amazing standard but it is severely lacking in terms of community and core tooling, there are few STIX open source projects around, and the ones being actively maintained... are even fewer.

We want to change this by:

  1. Indexing all the available knowledge about STIX
  2. Showcasing all the great stuff the community is building
  3. Incentivizing more people to build with it
  4. Building a community of like minded invididuals