Open Cyber Threat Intelligence Platform
Full Changelog: https://github.com/OpenCTI-Platform/opencti/compare/6.0.0...6.0.1
Dear community, after several intense months of work, we're thrilled to announce the release of OpenCTI version 6.0 🥳! This version transforms the OpenCTI platform in so many ways! Let’s dig into it!
Welcome to OpenCTI 6.0, where we're thrilled to introduce the transformative capabilities of Generative AI to elevate your daily analyst workflow! ✨ Now, you can harness the power of Generative AI to assist in crafting textual content, explaining report descriptions, summarizing file contents, and even generating STIX-structured knowledge seamlessly. Whether in our cloud or on-premise, any Enterprise Edition customer can leverage our custom AI endpoint, use its own or integrate with native OpenAI or Mistral AI services using their tokens. 🚀
In this release, we've fully revamped the platform's design, including a modification to the left menu. The former top menu is now integrated into the left menu, simplifying navigation throughout the platform. Additionally, a new breadcrumb feature allows you to effortlessly track your position in the platform, particularly when the left menu is collapsed! 🧭
⚠️ Breaking change in the confidence level system for connectors, feeds, and streams
OpenCTI 6.0 also introduces an important change about the confidence level system. From now on, Users and Groups get a “Max Confidence level” playing the role of a threshold for their capacity to modify existing data. Fine-tune users' impact on your meticulously crafted Knowledge base by managing these max confidence levels. External Connectors, Feeds, and Streams now use the max confidence level of their associated user, making ACL in OpenCTI nearly limitless! 🛡️ Please read carefully the dedicated blog post about this breaking change! 👁️🗨️
Indicator Lifecycle management is paramount in CTI teams, and we're excited to introduce a decay algorithm to enhance the existing score and revoking system. Create your decay rules, depreciate indicator scores over time based on their main observable type, lifetime, acceleration factor, and define crucial scores to trigger reactions! 🔃 We value your feedback to further improve this feature! 🤝
Another addition with the 6.0 is the CSV feed ingester! You can now automatically ingest data from URL-exposed CSV files! Like with uploaded CSV files, build a CSV mapper, link it to your new CSV Feed, and it’s done! 🪄 Talking about CSV Mappers, multiple improvements have been shipped into OpenCTI 6.0, and it is now possible to define default values in a mapper, to ingest incomplete CSV files!
Amid these groundbreaking features, extensive improvements have been made, particularly in filters! The new UI is now deployed almost everywhere in the platform! 💅 But more importantly, you can now filter on any object's attributes on lists and dashboards! 🎉 Of course, the system takes into account the context of the view you are navigating on. Improvement on the filtering system also comes with new operators! “In regards of” allows you to filter Objects based on their relationship with a specific Entity. “Contains” and “Search” allow you to operate any filtering you want on short and long texts!
On the connectors side, the Recorded Future connector has been improved even further, now handling the import of Malwares and Threat Actors into OpenCTI! Some work has also been done on Greynoise, Shodan, and Malbeacon enrichment connectors to make them compatible with our automation playbooks. 🤖
Last but not least, the complete documentation for OpenCTI is now accessible at docs.opencti.io! 📘 Feel free to refer to it for assistance, and remember, we're always available in the Community Slack for any questions or support!
⚠️ Other breaking changes:
⚠️ This release includes a security fix, we advise all organizations to upgrade their platform as soon as possible.
Full Changelog: https://github.com/OpenCTI-Platform/opencti/compare/5.12.27...6.0.0
Full Changelog: https://github.com/OpenCTI-Platform/opencti/compare/5.12.32...5.12.33
Full Changelog: https://github.com/OpenCTI-Platform/opencti/compare/5.12.31...5.12.32
Full Changelog: https://github.com/OpenCTI-Platform/opencti/compare/5.12.29...5.12.30
Full Changelog: https://github.com/OpenCTI-Platform/opencti/compare/5.12.28...5.12.29
Full Changelog: https://github.com/OpenCTI-Platform/opencti/compare/5.12.27...5.12.28
Full Changelog: https://github.com/OpenCTI-Platform/opencti/compare/5.12.26...5.12.27
Full Changelog: https://github.com/OpenCTI-Platform/opencti/compare/5.12.25...5.12.26