Feature -Request integration with OpenCTI #57
Assignees
Labels
enhancement
New feature or request
needs-triage
Indicates that issue is not yet triaged and assigned
Comments
alnash28
added
enhancement
alnash28
changed the title
|
@ramanan-ravi Yes, this is correct. The goal would be to enhance vulnerability prioritization between both solutions. DeepFence would benefit as well, matching CVEs to Threat Actor Profiles created within OpenCTI. Sorry for the delayed response. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Additional context
ThreatMapper is missing features used to connect to an open-source Cyber Threat Intelligence Platform, such as OpenCTI. This feature request can be used used to map vulnerabilities exploited by known malicious actors (i.e APT). Additionally,
Is your feature request related to a problem? Please describe.
Similar to Anomali, or ThreatConnect, a novice CTI analyst will have difficulties mapping CRITICAL/HIGH vulnerabilities to a malicious actor (i.e. APT, or UNC) without integration between ThreatMapper and a CTI platform.
Describe the solution you'd like
This feature enhancement would allow CTI analysts to prioritize and rank vulnerabilities exploited, and security advisories warning to patch vulnerabilities commonly propagated by malicious actors
Describe alternatives you've considered
MITRE ATT&CK
ThreatConnect
Anomali ThreatStrem
Securonix
Components/Services
Additional context
https://www.opencti.io/en/
https://github.com/OpenCTI-Platform
https://github.com/OpenCTI-Platform/connectors
The text was updated successfully, but these errors were encountered: