Language
TypeScript, Javascript, Python, CSS, Shell
Tool Type
Web app
License
Apache License, Version 2.0
Version
6.7.2009
Open-Source Cyber-Threat Intelligence Platform
OpenCTI is a platform that allows organizations to manage their cyber threat knowledge and information. It facilitates the structuring, storage, organization and visualization of technical and non-technical data related to cyber threats, such as TTPs, observables, suggested attributions and victimology. The tool allows you to link each piece of information to its primary source and use the MITER ATT&CK framework to structure the data. In addition, OpenCTI makes it easy to infer new relationships from existing data and allows you to import and export information in various formats, such as CSV and STIX2.
OpenCTI solves the problem of managing and organizing knowledge about cyber threats, allowing organizations to structure, store and visualize technical and non-technical information. It facilitates the understanding and representation of data, improving the ability to extract and leverage meaningful knowledge from raw information.
OpenCTI is an open source platform that enables organizations to manage their cyber threat intelligence knowledge. It structures, stores, and visualizes technical and non-technical threat information, linking each piece of information to its primary source. It uses the MITRE ATT&CK framework to structure data and allows importing and exporting information in various formats.
OpenCTI models all its objects as STIX 2 and exposes them through a GraphQL API; it also generates CSV feeds. Developers only need to understand STIX 2 to create connectors, reducing coupling with commercial sources and maintaining a coherent and open knowledge graph.
Connect with the Development Code team and discover how our carefully curated open source tools can support your institution in Latin America and the Caribbean. Contact us to explore solutions, resolve implementation issues, share reuse successes or present a new tool. Write to [email protected]
OpenCTI dashboard showing global data on actors, campaigns, malware, tools, sectors, and vulnerabilities with interactive visualizations.
Diagram showing inputs like incidents, vulnerabilities, and assets processed via AI and automation to produce threat intelligence, detection, and risk analysis.
OpenCTI dashboard view showing real-time stats on malware, indicators, reports, and geographic distributions.
Visit the first Security and Justice Evidence Bank available in Spanish and Portuguese, with systematized evidence of nearly 100 types of solutions and 700 cases evaluated to prevent crime and violence.