Closed treyka closed 6 years ago
I believe we already have some slides we can use for (at least as a starting point):
Also, we can probably create some slides based on the examples in https://oasis-open.github.io/cti-documentation/stix/examples
For the python-stix2
stuff, we can probably reuse much of the content on RTD: https://stix2.readthedocs.io/en/latest/
We should also try to break down each topic by time, to give us a rough idea of how much content we'll need - I took a stab at doing so in the top comment
I'm working on updating the Jupyter notebook...
As a secondary modeling exercise/presentation, we may want to think about incorporating the work done by Palo Alto on Oilrig: https://researchcenter.paloaltonetworks.com/2017/12/unit42-introducing-the-adversary-playbook-first-up-oilrig/
Trey and I talked through an agenda for a 1hr developer session (to follow the modeling stuff).
TAXII 2.0 (20 minutes)
STIX 2.0 (20 minutes)
STIX 2.1 (20 minutes)