Skip to content

STIX to HTML Releases

Jump to bottom Edit New page
bworrell edited this page Oct 21, 2014 · 12 revisions

stix-to-html v1.0.1

Goals

This was primarily a bugfix release for v1.0 in response to the newly released Saxon HE 9.6. Testing stix-to-html v1.0 against Saxon HE 9.6 raised errors with parameter tunneling.

What's Changed

  • [#71] Fixed issues with parameter tunneling in Saxon HE 9.6.

  • Added Java Maven project for a simple binary executable version of stix-to-html. This will be included in future releases of stix-to-html.

stix-to-html 1.0 beta 4

Goals

The main goal of this release is to have more consistent display of data, make it easier to read, and fix a lot of small bugs that crept up.

Known Issues

issue #54 (bug in beta4; will be fixed in beta5). Some duplicate labels were introduced, particularly on incident (the Victim and Affected Assets rows).

What's Changed

  • [#17] the columns in the top level tables and other expandable links now have their fields generated by a set of functions, so data will be consistent across all data elements. In general the three columns are title/type/id, but for some items, other elements are more appropriate.

  • [#18] the left and right of the page are now set to have small margins/padding and the page will expand to take advantage of horizontal real estate available to the browser window.

  • [#19] set the base font size to "smaller" and fixed problem with tables not inheriting font size from parent content.

  • [#20] fixed problems related to display of descriptions, particularly the stix header description.

  • [#25] traffic light protocol information (and other marking instructions) now show up if a document has more then one set of marking instructions. additionally, the marking control structure is now displayed a a human readable label ("whole document") if the controlled structure xpath is "//node()"

  • [#26] indicator handling information is now displayed correctly.

  • [#27] fixed problem where indicator had suggested COA that wouldn't expand.

  • [#28] ttp with inline exploit target without id is now given an autogenerated id and made expandable

  • [#30] support new/updated stix 1.1 relationships

  • [#32] deemphasize less important data and highlight key data

    • table headings are unbolded and table data elements are bolded
    • cybox properties style hierarchical data elements now have the name unbolded and the value bolded

  • [#33] duplicate labels and data elements have been cleaned up

  • [#35] data elements in expandable links now match up with the top level tables (see also issue #17)

  • [#36] under incidents, attributed threat actors are now displaying correctly.

  • [#37] all html5 descriptions should now display correctly.

  • [#38] inline indicators inside an indicator composition are now expandable.

  • [#39] many small formatting changes to improve presentation

  • [#40] links that show up in "references" are now clickable

  • [#41] cleaned up the xslt logging so it gives a better sense of progress in the execution (previously it did not give progress message and spit out debugging information about the type of cybox objects that were processed)

  • [#43] added a placeholder when maec content shows up to say that this content is not yet supported.

  • [#44] fixed labeling of relationships in cybox:Related_Objects

  • [#48] fixed "expandable links" that refer to ids for objects that are not in the current document.

  • [#50] restored the display of cybox properties elements that use ##comma## lists displayed as bulleted lists.

  • [#51] simplification of object templates (uri, port, and windows registry key object templates were removed). some other minor tweaks to the templates including the display of the constraints (assorted attribute values) were also needed with these changes.

  • [#53] some properties of incident were not displaying correctly (either missing data or skipped). In particular: identity, victim, time, external id, and affected assets

stix-to-html 1.0 beta 3

Goals

The main goal of this release is to have broader coverage of the child elements, more consistent display of data, and fix known bugs.

What's Changed:

  • [#1] fixed command handling where ##comma## delimited fields were used inside cybox:Properties

  • [#2] added customization example of how to add a customize stix-to-html output

  • [#4] added an example simplified object template (email object)

  • [#5] Top level Threat_Actor list shows each entry as [Threat Actor, no Title] even when there is a Title

  • [#6] Top level Campaign list should use Title fields rather than just "Other"

  • [#7] Campaign display needs to support the Attribution field for linking to related Threat_Actor entries

  • [#8] Threat Actor display needs to support the Associated_Actors and Associated_Campaigns fields for linking to related Threat Actor and Campaign entries

  • [#9] Broken expand link on Victim_Targeting/Identity

  • [#10] id links not expanding on a document with one main TTP with nested related TTPs

  • #11: add support for missing fields on incidents

  • [#12] Ensure all of the children of top level items are supported

  • [#13] enable the assorted descriptions on the top level items to be displayed as pre-formatted text

  • [#14] couple minor UI issues (spacing and colors)

  • [#15] make "document contents icons" link to their corresponding sections in the document

Add a custom footer
Add a custom sidebar
Clone this wiki locally