Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Most Active Malware Widget #992

Closed
PandaLyfe opened this issue Jan 12, 2021 · 1 comment
Closed

Most Active Malware Widget #992

PandaLyfe opened this issue Jan 12, 2021 · 1 comment
Labels
feature use for describing a new feature to develop solved use to identify issue that has been solved (must be linked to the solving PR)
Milestone
Release 4.1.0

Comments

@PandaLyfe
Copy link

Problem to Solve

Our organization would like to add a "Top 5 Active Malware" section on some of our reporting within a specific timeframe. A widget with this capability would be extremely helpful.

Current Workaround

No workaround exists

Proposed Solution

To add a widget that displays most active malware in a specific timeframe. It can be set to a month by default but the user can use specific dates.

Additional Information

Below are images from Mandiant. Having this capability in OpenCTI would be extremely useful. It would also be helpful if this feature does not require a subscription, but calculates the top 10 with data ingested in OpenCTI or from an Open Source.

MostActiveMalware

The Most Active Malware Widget with date modifications. This only allows the user to select time frames by weeks, months or quarters. Allowing the user to specify a start date and an end date is preferred.

MalwareDateMod

After dates are specified and malware results are populated, the user can click on a malware and OpenCTI would provide CVE information, associated actors, external references and any additional information related to the specific CVE.
@richard-julien
Copy link
Member

Related to #307

@richard-julien richard-julien added the feature use for describing a new feature to develop label Jan 12, 2021
@richard-julien richard-julien added this to the Release 4.1.0 milestone Jan 12, 2021
@SamuelHassine SamuelHassine added the solved use to identify issue that has been solved (must be linked to the solving PR) label Jan 29, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature use for describing a new feature to develop solved use to identify issue that has been solved (must be linked to the solving PR)
Projects
None yet
Milestone
Release 4.1.0
Development

No branches or pull requests
3 participants
@richard-julien @SamuelHassine @PandaLyfe