GitHub - OpenCTI-Platform/opencti: Open Cyber Threat Intelligence Platform
8 days ago
- #threat-intelligence
- #cyber-security
- #open-source
- OpenCTI is an open-source platform for managing cyber threat intelligence.
- It structures data using STIX2 standards and offers a modern web interface with GraphQL API.
- Supports integration with tools like MISP, TheHive, and MITRE ATT&CK.
- Allows capitalization of technical (TTPs, observables) and non-technical (attribution, victimology) information.
- Features include data linking, first/last seen dates, confidence levels, and MITRE ATT&CK framework integration.
- Offers data import/export in formats like CSV and STIX2 bundles.
- Two editions: Community (CE) under Apache 2.0 and Enterprise (EE) with additional features.
- Documentation, demo instance, and GitHub releases available for users.
- Encourages community contributions with beginner-friendly issues and development guides.
- Provides support via Slack, email, and GitHub issues.
- Developed by Filigran, collects anonymous usage data for improvement.
- Uses OpenStreetMap for cartography, with options for self-deployment.
- Users can request data access, rectification, or deletion via [email protected].