The Browser-based STIX 2.1 bundle visualizer is an interactive and lightweight viewer that allows users to visualize and audit STIX (Structured Threat Information eXpression) bundles directly in the browser without requiring any installation or login credentials. This tool supports all standard SDOs, including threat actors, malware, indicators, campaigns, attack patterns, courses of action (COAs), tools, vulnerabilities, infrastructure, intrusion sets, identities, and IPv4 addresses. Users can upload a bundle JSON file to generate an interactive relationship graph, which is useful for auditing received or written bundles. By clicking on any node in the graph, users can inspect detailed object properties such as pattern type, valid from date, and STIX ID. This tool facilitates efficient threat intelligence sharing and analysis by providing a clear visual representation of complex cyber threat information.
- Browser-based applications (all versions)
- Ensure that only trusted STIX bundles are uploaded to the visualizer to prevent the visualization of potentially malicious data.
- Implement access controls and authentication mechanisms if deploying this tool in a sensitive environment.
- Regularly update the browser to mitigate any potential vulnerabilities that could affect the tool's security.
Minimal direct impact. The tool is designed for use with modern web browsers, including Chrome (version 90+), Firefox (version 88+), and Safari (version 14+). No specific configuration files or commands are required beyond uploading a STIX bundle.