OpenCTI – Open Cyber Risk Intelligence Platform

OpenCTI is an open supply platform permitting organizations to control their cyber danger intelligence wisdom and observables. It’s been created as a way to construction, retailer, arrange and visualize technical and non-technical details about cyber threats.
The structuration of the information is carried out the use of an information schema in response to the STIX2 requirements. It’s been designed as a contemporary internet utility together with a GraphQL API and an UX orientated frontend. Additionally, OpenCTI may also be built-in with different equipment and packages corresponding to MISP, TheHive, MITRE ATT&CK, and so forth.
MITRE ATT&CK framework (thru a devoted connector) to lend a hand construction the information. The consumer too can selected to put into effect its personal datasets.
As soon as information has been capitalized and processed through the analysts inside of OpenCTI, new members of the family could also be inferred from present ones to facilitate the figuring out and the illustration of this knowledge. This permit the consumer to extract and leverage significant wisdom from the uncooked information.
OpenCTI now not simplest permits imports but in addition exports of information beneath other codecs (CSV, STIX2 bundles, and so forth.). Connectors are recently developped to boost up interactions between the device and different platforms.

Documentation and demonstration
If you wish to know extra on OpenCTI, you’ll be able to learn the documentation at the device. If you want to uncover how the OpenCTI platform is operating, a demonstration example is to be had and open to everybody. This example is reset each evening and is in response to reference information maintened through the OpenCTI builders.

Releases obtain
The releases are to be had at the Github releases web page. You’ll be able to additionally get entry to to the rolling liberate bundle generated from the mater department of the repository.

Set up
All you want to put in the OpenCTI platform may also be discovered within the authentic documentation. For set up, you’ll be able to:

  • Use Docker (really helpful)
  • Set up manually

About
OpenCTI is a product powered through the collaboration of the French nationwide cybersecurity company (ANSSI), the CERT-EU and the Luatix non-profit group.

Obtain Opencti