CharlesLR-sekoia
commented
3 years ago Dear @P01s0nV
Thank you for this request. This is indeed an interesting point.
This is an open source feature, we would be please to review your code for:
- MITTRE ATT&CK phase
- The reputation (confidence notion)
I think that information collection related to Threats is much more complex than it may seems to be.
Should you have other questions, feel free to contact support@sekoia.io
Best regards,
We would like to have additional fields for iocs in the SEKOIA lookups. More precisely, we would like to have the name of the threat and the mitre attack phase, which seem to be available in the SEKOIA.IO API.
We were also wondering if there was a reputation attached to iocs, and if so, if it could be added as well ?