The Structured Threat Information eXpression (STIX™) is an effort to define and develop a language that allows organizations to share cyber threat information in a manner as expressive, flexible, automatable, and readable as possible.
Standardizing Cyber Threat Intelligence Information with the Structured Threat Information eXpression (STIX™)
Download Resources
PDF Accessibility
One or more of the PDF files on this page fall under E202.2 Legacy Exceptions and may not be completely accessible. You may request an accessible version of a PDF using the form on the Contact Us page.
It is becoming increasingly necessary for organizations with a cyber threat intelligence capability to share intelligence information with partners and peers. A key component for any such information-sharing capability is standardized, structured representations of cyber threat information. The Structured Threat Information eXpression (STIX™) is an effort to define and develop a language to represent structured threat information. The STIX language is meant to convey the full range of cyber threat information and strives to be fully expressive, flexible, extensible, automatable, and as human-readable as possible. Though relatively new and still evolving, it is actively being adopted or considered for adoption by a wide range of cyber threat-related organizations and communities around the world.