Description
We covered the following Agenda items:
Status Updates - 5 minutes
1) Slack - Archiving the sightings and versioning channels
2) Vendor Defined Objects - Update, call for review
3) Observations (new name??) and Sightings - please review and make sure it will work
Working Session - 45 minutes
4) TTPs as a whole - need mini-group to help finish this
a) What to do with Kill-Chain and Kill-Chain-Phase TLOs
b) Can we merge Malicious Tool and Malware and just have a Boolean flag to distinguish them?
5) Can we remove the Common Types (Impact and Statement)?
6) Rename STIX Package
7) Exploit Targets as a whole
Week Ahead - 5 minutes
8) General call for other new mini-groups
9) Update on i18n