Consider adding new identifiers / artifacts from STIX/OCSF Observables

d3fend / d3fend-ontology

This repository holds the necessary content to produce the D3FEND ontology distribution.

https://d3fend.mitre.org

MIT License

59 stars 27 forks source link

Consider adding new identifiers / artifacts from STIX/OCSF Observables #316

Open aamedina opened 2 weeks ago

aamedina commented 2 weeks ago

https://docs.oasis-open.org/cti/stix/v2.1/csprd01/stix-v2.1-csprd01.html#_Toc16070680

aamedina commented 2 weeks ago

I'm thinking d3f:EmailAddress, d3f:MACAddress, d3f:RasterImageFile, and maybe subclasses of d3f:IPAddress (d3f:IPV4Address and d3f:IPV6Address) might make sense to me. Any others?

aamedina commented 1 week ago

https://schema.ocsf.io/1.3.0/objects/observable