STIX and TAXII based Cyber Threat Intelligence Sharing Parser and Intrusion Detection System Rules Generator
Abstract
There is a high focus in cyber threats, and cyber crime avoidance in the IT industry. StructuredThreat Information Expression (STIX) is a standardized language and file format that is used tostore and share safety treat information. A lot of work has been conducted making machine learningmodels and data learning models to collect and share STIX files. The number of STIX files generatedin real-time is high, and it is time consuming for computer safety advisers to read through thesefiles. In this project the goal is to create a software that gather STIX files use Natural LanguageProcessing (NLP) to gather relevant information, and generate alerts in a intrusion preventionsystem. There is a high focus in cyber threats, and cyber crime avoidance in the IT industry. StructuredThreat Information Expression (STIX) is a standardized language and file format that is used tostore and share safety treat information. A lot of work has been conducted making machine learningmodels and data learning models to collect and share STIX files. The number of STIX files generatedin real-time is high, and it is time consuming for computer safety advisers to read through thesefiles. In this project the goal is to create a software that gather STIX files use Natural LanguageProcessing (NLP) to gather relevant information, and generate alerts in a intrusion preventionsystem.