txt2stix 1.1.7__py3-none-any.whl → 1.1.9__py3-none-any.whl

txt2stix/includes/tests/test_cases.yaml

@@ -637,6 +637,14 @@ generic_disarm_name:
   test_negative_examples:
     - 'T0131.001' # is id
 
+####### Sector ########
+generic_sector_aliases:
+  test_positive_examples:
+    - Biotechnology
+    - Diplomatic Organizations
+  test_negative_examples:
+    - Random Company Inc
+
 ####### Misc STIX Objects #######
 
 lookup_attack_pattern:

txt2stix/retriever.py

@@ -138,6 +138,12 @@ def _retrieve_stix_objects(host, knowledge_base, filter_value):
             return retreiver.get_objects_by_alias(filter_value, "attack-mobile")
         case "mitre-attack-ics-aliases":
             return retreiver.get_objects_by_alias(filter_value, "attack-ics")
+        
+        ### Sector
+        case 'sector-alias':
+            return retreiver.get_objects_by_alias(filter_value, 'sector')
+        case 'sector-name':
+            return retreiver.get_objects_by_name(filter_value, 'sector')
 
         ### OTHERS by Name
         case "mitre-capec-name":

{txt2stix-1.1.7.dist-info → txt2stix-1.1.9.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: txt2stix
-Version: 1.1.7
+Version: 1.1.9
 Summary: txt2stix is a Python script that is designed to identify and extract IoCs and TTPs from text files, identify the relationships between them, convert them to STIX 2.1 objects, and output as a STIX 2.1 bundle.
 Project-URL: Homepage, https://github.com/muchdogesec/txt2stix
 Project-URL: Issues, https://github.com/muchdogesec/txt2stix/issues
@@ -14,6 +14,7 @@ Classifier: Programming Language :: Python :: 3
 Requires-Python: >=3.9
 Requires-Dist: base58>=2.1.1
 Requires-Dist: beautifulsoup4>=4.12.3
+Requires-Dist: json-repair
 Requires-Dist: llama-index-core>=0.12.42
 Requires-Dist: llama-index-llms-openai>=0.4.5
 Requires-Dist: mistune>=3.0.2

{txt2stix-1.1.7.dist-info → txt2stix-1.1.9.dist-info}/RECORD

@@ -6,7 +6,7 @@ txt2stix/credential_checker.py,sha256=eWDP-jY3-jm8zI0JMoUcyoQZ_JqPNfCIr_HAO8nVYz
 txt2stix/extractions.py,sha256=_tlsqYHhfAoV-PJzxRHysrX47uxCsMlSg7PQWxww1u0,2171
 txt2stix/indicator.py,sha256=dyf4wbvVrZRitZpm6t7UusSM98bVW1qc5UkdGpVm3ls,30025
 txt2stix/lookups.py,sha256=h42YVtYUkWZm6ZPv2h5hHDHDzDs3yBqrT_T7pj2MDZI,2301
-txt2stix/retriever.py,sha256=0eoLzabGrcR0wdQuEYdU8ZPomq42lAsGwP4gY6RLgww,6410
+txt2stix/retriever.py,sha256=sMNhnEYk3l5W44qZsWaDQtJYoHXA1oYIPM6wDqiUHSg,6642
 txt2stix/stix.py,sha256=9nXD9a2dCY4uaatl-mlIA1k3srwQBhGW-tUSho3iYe0,30
 txt2stix/txt2stix.py,sha256=l889ysbkZLFoSLak6Hv4IN8sr0HillVp4cbC2WS-UkI,18769
 txt2stix/utils.py,sha256=n6mh4t9ZRJ7iT4Jvp9ai_dfCXjgXNcRtF_zXO7nkpnk,3304
@@ -18,7 +18,7 @@ txt2stix/ai_extractor/gemini.py,sha256=yJC7knYzl-TScyCBd-MTpUf-NT6znC25E7vXxNMqj
 txt2stix/ai_extractor/openai.py,sha256=1RxaLy0TJ4GjNKmcJoi6ZiBrCS_gt5ql9jpeE-SOy8g,642
 txt2stix/ai_extractor/openrouter.py,sha256=hAA6mTOMcpA28XYsOCvuJH7WMJqXCxfqZGJf_VrDsIk,628
 txt2stix/ai_extractor/prompts.py,sha256=NtqtVyPPtShPlVZ5SrFmo-LCkfpANIIi4H9rjqaxqDo,10559
-txt2stix/ai_extractor/utils.py,sha256=jG5tPuS2xfiH7xCxlaEkAOboNOOMDah9JpGDXrUUJBA,4342
+txt2stix/ai_extractor/utils.py,sha256=K3qglBRWYAuRU806-ahbz_PK1qQFfJ7ueWybVxYZYlQ,4425
 txt2stix/pattern/__init__.py,sha256=K9ofaP2AOikvzb48VSBpJZijckdqufZxSzr_kbRypLY,491
 txt2stix/pattern/extractors/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 txt2stix/pattern/extractors/base_extractor.py,sha256=ly80rp-L40g7DbhrGiCvhPWI95-ZFMtAQUEC-fH6Y-o,6130
@@ -74,47 +74,48 @@ txt2stix/pattern/extractors/url/url_extractor.py,sha256=-SH1WvxbViaRZ1on8lRlzNAc
 txt2stix/pattern/extractors/url/url_file_extractor.py,sha256=_VDu_BX3Ys9SKhZlscZPp9xSOKCxNKKvJ2gbe7Nvuv0,881
 txt2stix/pattern/extractors/url/url_path_extractor.py,sha256=FNKcMZRnJpcZZF44T8DHsDWzhBqPq5a23h7T7l2osac,2459
 txt2stix/includes/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-txt2stix/includes/extractions/ai/config.yaml,sha256=0-jgrxsEEIZBs274WI4Trz3vgk6BW2hzV3p0jGnoKmA,41564
-txt2stix/includes/extractions/lookup/config.yaml,sha256=iT0lHHlMdx719qA2tyI_zsWqk9SUS6jmZtBY9_H-i4A,12062
+txt2stix/includes/extractions/ai/config.yaml,sha256=BO8C09vCa92Qys1gWSuPkek6gTOv3LqvXTtLohSM8zs,43741
+txt2stix/includes/extractions/lookup/config.yaml,sha256=m97Rzst-Fq3sMI7KV0mEuOqlbI1-0fU6UoicqDY1vng,12494
 txt2stix/includes/extractions/pattern/config.yaml,sha256=92buge3fYegXIN1TSjLKq4PdIbKAGvDAc4CoQpR38sA,20196
 txt2stix/includes/helpers/mimetype_filename_extension_list.csv,sha256=kgozjMyp7y87CqRcoedfDwNXSLKrDgC9r9YKDYK0EbY,27593
 txt2stix/includes/helpers/stix_relationship_types.txt,sha256=PQytANVSrWepdK_SLEZtfiTe1eoxj6YMGUZslO_C1oc,505
 txt2stix/includes/helpers/tlds.txt,sha256=Va_awj-FQiKgs5ace6C0kC5xxAHIl9yAIBhvT08Q7Q0,9551
 txt2stix/includes/helpers/windows_registry_key_prefix.txt,sha256=J5gU4FsqmOVYt6cVRgwCG7odYEWk-UPLpuCiDwpzBfg,145
 txt2stix/includes/lookups/_README.md,sha256=OGkyqCcqAOPI-JLE81zAmyg4sHW5apJNhDFcvHUW1nc,338
-txt2stix/includes/lookups/_generate_lookups.py,sha256=ex12zxiFnKYHgsXfcDX4OL-KyrjAXSlvzeYVUzUD2lE,9390
+txt2stix/includes/lookups/_generate_lookups.py,sha256=Fpw15Fme5GmIG2cbfkKwvxPgxuwhFW1dHGfxEpO9Mzk,9725
 txt2stix/includes/lookups/attack_pattern.txt,sha256=4ARDLG-cwUqk6_TO_JAY6hNJg6KRbAaIr-Or5nML6io,15
 txt2stix/includes/lookups/campaign.txt,sha256=N66XO0H3Rx-3Tvo7wwHDouckIT0tGlGVyCDKxDs1KnM,11
 txt2stix/includes/lookups/country_iso3166_alpha2.txt,sha256=LMM7j50NoBv7BlK64mpmE3Dbef9_tNBUNbuTXOEIvCo,746
 txt2stix/includes/lookups/course_of_action.txt,sha256=MK5H4XuJ0GI0-r3hFPJx2BE4hwkHOpRWhfUcsXJVNVg,12
-txt2stix/includes/lookups/disarm_id_v1_5.txt,sha256=swvhv7mH3kMZZgNUP_lVIfbfIXQdl8K2baY22gSU4TQ,2953
-txt2stix/includes/lookups/disarm_name_v1_5.txt,sha256=R4XRwzSdD0urRLPvkBADZXbvB5ZzzjFciRKJS1JmVTw,8223
+txt2stix/includes/lookups/disarm_id_v1_6.txt,sha256=91j9jZ1OQmAF8FoZEUhLEHPy7hbFO1Fjr_ueXJl-9aA,3584
+txt2stix/includes/lookups/disarm_name_v1_6.txt,sha256=iFI3s2vKFgXwS7Jjsb2vczaXxYkDXqiBoqevZYRlweA,9481
 txt2stix/includes/lookups/extensions.txt,sha256=MjDwm2uE-L5Bfs1c9cby5uKtamY1Cpnji1uVTzyTGZY,322
 txt2stix/includes/lookups/identity.txt,sha256=aNtsHZ_fILCdsClZ6YaXHM1VdLxERmLZHm25pouhLu0,22
 txt2stix/includes/lookups/infrastructure.txt,sha256=tipCQ2gAvz00W8MpmwU20NHXyIF9-BhGYzPzOfmgdrk,9
 txt2stix/includes/lookups/intrusion_set.txt,sha256=mTwnPAweH1lKm4pwO-sOUYhrwKr7rIQwOS7PGnKX5q8,7
 txt2stix/includes/lookups/malware.txt,sha256=RTAcQnj2Ueb0Omv0WJZSvkPNV_ByW-PuFa-BAJmr6Oo,16
-txt2stix/includes/lookups/mitre_atlas_id_v4_5_2.txt,sha256=4CGvG8h5fMnzy-4BS_yAsVaZpQOTLIb3J0tmk8m0FdI,1317
-txt2stix/includes/lookups/mitre_atlas_name_v4_5_2.txt,sha256=uJ2_cyEGBm3Yp51bgBX4FDz4rBJ21BTh1f4nrKwfECI,2585
-txt2stix/includes/lookups/mitre_attack_enterprise_aliases_v16_0.txt,sha256=LgRBOkI6gsl4jlkx-LuH13Ar7NCuKJGsCcBQZowOf0I,15391
-txt2stix/includes/lookups/mitre_attack_enterprise_id_v16_0.txt,sha256=gmoK9nQn_CcMgIbLlVL2cdRhq22xJDrTda2uahLAStg,11798
-txt2stix/includes/lookups/mitre_attack_enterprise_name_v16_0.txt,sha256=oxWaWzcNBqaux_VJw0ZIMLlm-D_mdQe7kQR2m3cnql4,26633
-txt2stix/includes/lookups/mitre_attack_ics_aliases_v16_0.txt,sha256=9KfLuhR52a6dZ_oerzv7OSKil0fWcH4wOoijR1cUpU4,1706
-txt2stix/includes/lookups/mitre_attack_ics_id_v16_0.txt,sha256=FyPJbYlsp9Z_xIclO1YmfUBp6RTdCV8epge-Jg3VsDI,1552
-txt2stix/includes/lookups/mitre_attack_ics_name_v16_0.txt,sha256=ilFja5D49bLinIhM4D-fXpnFD2yED4jNwLrw-uNL9dQ,5873
-txt2stix/includes/lookups/mitre_attack_mobile_aliases_v16_0.txt,sha256=M9uJJJPQbzBOsfcXL0nKCQwUI8nWXIiB71iv8UKx3wQ,1690
-txt2stix/includes/lookups/mitre_attack_mobile_id_v16_0.txt,sha256=cSo5PXodeg0QoQocbagfklj_UpAYJ_umZqguJZQfSWM,1863
-txt2stix/includes/lookups/mitre_attack_mobile_name_v16_0.txt,sha256=jCbYyUN2-4lmMCnodRrx3eG20l85nBkfZohTD8VRv3I,5003
+txt2stix/includes/lookups/mitre_atlas_id_v4_9_0.txt,sha256=5ZJel1M8v37J1eBDMpvDUfu2K_ZdDpiEbQiY1am2KAI,1762
+txt2stix/includes/lookups/mitre_atlas_name_v4_9_0.txt,sha256=4wvLO2PbDXDwl4WqA4DqtPYOO__NYxytxHZC9FS3mTw,3419
+txt2stix/includes/lookups/mitre_attack_enterprise_aliases_v18_0.txt,sha256=isPkSwtxU4XKRkmrs7pckU3qUnNFubTmDhvuGS-CFl0,17212
+txt2stix/includes/lookups/mitre_attack_enterprise_id_v18_0.txt,sha256=2NzaVBOnCSV34JJFhCUutuVit17I7Wg327nW7rqHMsk,30898
+txt2stix/includes/lookups/mitre_attack_enterprise_name_v18_0.txt,sha256=f9hQik8S4VKsfzXPqwcuH2Gv498kzEcmlLivEYo60Bk,94459
+txt2stix/includes/lookups/mitre_attack_ics_aliases_v18_0.txt,sha256=7FqfAxrMTwkgVpMIww-Umpp4C9qLMaTKUTCZnJo82UM,1759
+txt2stix/includes/lookups/mitre_attack_ics_id_v18_0.txt,sha256=cNyabZpRhpSiHxvmI7BcubcBcmDroIDavep9oP3qUVA,2755
+txt2stix/includes/lookups/mitre_attack_ics_name_v18_0.txt,sha256=7J7hzitw1_DkfW5Wk2OflosDKi9WDPA286HWVIx4qnY,8976
+txt2stix/includes/lookups/mitre_attack_mobile_aliases_v18_0.txt,sha256=NrUSKcy-ykjpB0ePfZb_qMVQ-Gm20C4jIwJ2VnO4KK8,2068
+txt2stix/includes/lookups/mitre_attack_mobile_id_v18_0.txt,sha256=ttojXP3ebRqtP4gFL25QlFvaor1kZUTIaa0YH2AU_VQ,4533
+txt2stix/includes/lookups/mitre_attack_mobile_name_v18_0.txt,sha256=l12wY4czon1r1G6Df_HyXMZ4mi4-tnwdTMaM9SvRn88,12605
 txt2stix/includes/lookups/mitre_capec_id_v3_9.txt,sha256=0lP55QibGp8A_jmeBziQHNofCcyLKZX0338W6XRFND0,5485
-txt2stix/includes/lookups/mitre_capec_name_v3_9.txt,sha256=vjtXAb7K5MXJs6X0mUBm88gVzhxTOAXHZIlo-aSG15w,16622
-txt2stix/includes/lookups/mitre_cwe_id_v4_15.txt,sha256=URYertSUwg30N_mwhsz6HmfAfbgzPotKJxdHaj_VWcM,7659
-txt2stix/includes/lookups/mitre_cwe_name_v4_15.txt,sha256=f_NcLGaZSoiQNbcXWEyKEk9DWJzdGgnGVGSwCxnqlNs,43813
+txt2stix/includes/lookups/mitre_capec_name_v3_9.txt,sha256=q5deJHntBfFeuMiA8rt1QjF05b7d54ZL155XCcjUO7k,16622
+txt2stix/includes/lookups/mitre_cwe_id_v4_18.txt,sha256=6dMQYX0deEApD3RMRWNJKM30T_6HP2oaN6hSMfYlf5s,7704
+txt2stix/includes/lookups/mitre_cwe_name_v4_18.txt,sha256=NK67bJKArr7UR5CiICVoi8G5ItVGw0zm9i-8jZghkRg,44133
+txt2stix/includes/lookups/sector_aliases_v1_0.txt,sha256=f5ErsLGseoGxE9z6DOLtHheUAgx7kAoQi6PGMVgBnCA,13097
 txt2stix/includes/lookups/threat_actor.txt,sha256=QfDO9maQuqKBgW_Sdd7VGv1SHZ9Ra-uv7tIhiPMhBL0,7
 txt2stix/includes/lookups/tld.txt,sha256=-MEgJea2NMG_KDsnc4BVvI8eRk5Dm93L-t8SGYx5wMo,8598
 txt2stix/includes/lookups/tool.txt,sha256=HGKG6JpUE26w6ezzSxOjBkp15UpSaB7N-mZ_NU_3G7A,6
-txt2stix/includes/tests/test_cases.yaml,sha256=QD1FdIunpPkOpsn6wJRqs2vil_hv8OSVaqUp4a96aZg,22247
-txt2stix-1.1.7.dist-info/METADATA,sha256=nrWNRYJkFKHGJG3J8x8SFRGrrnc7l-zpaCiPfZr7rNM,15333
-txt2stix-1.1.7.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
-txt2stix-1.1.7.dist-info/entry_points.txt,sha256=x6QPtt65hWeomw4IpJ_wQUesBl1M4WOLODbhOKyWMFg,55
-txt2stix-1.1.7.dist-info/licenses/LICENSE,sha256=BK8Ppqlc4pdgnNzIxnxde0taoQ1BgicdyqmBvMiNYgY,11364
-txt2stix-1.1.7.dist-info/RECORD,,
+txt2stix/includes/tests/test_cases.yaml,sha256=vErA3c5fySeWvJ5yJ8dCTEo3ufRATASAjaF4gj4Az1M,22424
+txt2stix-1.1.9.dist-info/METADATA,sha256=hCoWslm4bXSWYimxA2XCozIzXP2i07nBQCc8ujVTPo4,15360
+txt2stix-1.1.9.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
+txt2stix-1.1.9.dist-info/entry_points.txt,sha256=x6QPtt65hWeomw4IpJ_wQUesBl1M4WOLODbhOKyWMFg,55
+txt2stix-1.1.9.dist-info/licenses/LICENSE,sha256=BK8Ppqlc4pdgnNzIxnxde0taoQ1BgicdyqmBvMiNYgY,11364
+txt2stix-1.1.9.dist-info/RECORD,,

txt2stix/includes/lookups/mitre_atlas_name_v4_5_2.txt

@@ -1,117 +0,0 @@
-Reconnaissance
-Resource Development
-Initial Access
-ML Model Access
-Execution
-Persistence
-Privilege Escalation
-Defense Evasion
-Credential Access
-Discovery
-Collection
-ML Attack Staging
-Exfiltration
-Impact
-Search for Victim's Publicly Available Research Materials
-Journals and Conference Proceedings
-Pre-Print Repositories
-Technical Blogs
-Search for Publicly Available Adversarial Vulnerability Analysis
-Search Victim-Owned Websites
-Search Application Repositories
-Active Scanning
-Acquire Public ML Artifacts
-Datasets
-Models
-Obtain Capabilities
-Adversarial ML Attack Implementations
-Software Tools
-Develop Capabilities
-Adversarial ML Attacks
-Acquire Infrastructure
-ML Development Workspaces
-Consumer Hardware
-Publish Poisoned Datasets
-ML Supply Chain Compromise
-GPU Hardware
-ML Software
-Data
-Model
-ML Model Inference API Access
-ML-Enabled Product or Service
-Physical Environment Access
-Full ML Model Access
-Discover ML Model Ontology
-Discover ML Model Family
-Poison Training Data
-Establish Accounts
-Create Proxy ML Model
-Train Proxy via Gathered ML Artifacts
-Train Proxy via Replication
-Use Pre-Trained Model
-Discover ML Artifacts
-User Execution
-Unsafe ML Artifacts
-Valid Accounts
-Evade ML Model
-Backdoor ML Model
-Poison ML Model
-Inject Payload
-Exfiltration via ML Inference API
-Infer Training Data Membership
-Invert ML Model
-Extract ML Model
-Exfiltration via Cyber Means
-Denial of ML Service
-Spamming ML System with Chaff Data
-Erode ML Model Integrity
-Cost Harvesting
-ML Artifact Collection
-Data from Information Repositories
-Data from Local System
-Verify Attack
-Craft Adversarial Data
-White-Box Optimization
-Black-Box Optimization
-Black-Box Transfer
-Manual Modification
-Insert Backdoor Trigger
-External Harms
-Financial Harm
-Reputational Harm
-Societal Harm
-User Harm
-ML Intellectual Property Theft
-Exploit Public-Facing Application
-Command and Scripting Interpreter
-LLM Prompt Injection
-Direct
-Indirect
-Phishing
-Spearphishing via Social Engineering LLM
-LLM Plugin Compromise
-LLM Jailbreak
-Unsecured Credentials
-LLM Meta Prompt Extraction
-LLM Data Leakage
-Limit Release of Public Information
-Limit Model Artifact Release
-Passive ML Output Obfuscation
-Model Hardening
-Restrict Number of ML Model Queries
-Control Access to ML Models and Data at Rest
-Use Ensemble Methods
-Sanitize Training Data
-Validate ML Model
-Use Multi-Modal Sensors
-Input Restoration
-Restrict Library Loading
-Encrypt Sensitive Information
-Code Signing
-Verify ML Artifacts
-Adversarial Input Detection
-Vulnerability Scanning
-Model Distribution Methods
-User Training
-Control Access to ML Models and Data in Production
-ATLAS