There are 2 repositories under stix2 topic.
Investigate suspicious activity by visualizing Sysmon's event log
OASIS TC Open Repository: Python APIs for STIX 2
This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.
Threat-Intel repository. API: https://github.com/davidonzo/apiosintDS
OASIS TC Open Repository: Lightweight visualization for STIX 2.0 objects and relationships
OASIS TC Open Repository: Non-normative schemas and examples for STIX 2
OASIS TC Open Repository: GitHub Pages site for STIX and TAXII
Graph Representation of MITRE ATT&CK's CTI data
OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON
OASIS TC Open Repository: Validator for STIX 2.0 JSON normative requirements and best practices
OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/cti-stix-generator
stix-icons is a collection of colourful and clean icons for use in software, training and marketing material to visualize cyber threats according to the STIX language for intelligence exchange, defined by OASIS Cyber Threat Intelligence (CTI) TC
STIX 2.x Java Library
STIX2 graph widget for Jupyter notebooks, powered by stixview library
STIX 2.1 Visualizer, Attack and Activity Thread Graph for Threat Modeling
An elevated STIX representation of the MITRE ATT&CK Groups knowledge base
OASIS TC Open Repository: Validate patterns used to express cyber observable content in STIX Indicators
A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-readable security playbooks such as CACAO Security Playbooks
OASIS TC Open Repository: The repository cti-stix-slider supports development of a Python application to convert STIX 2.0 content to STIX 1.x content
Firepit - STIX Columnar Storage
This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that make use of the Security Playbook extension and MISP Security Playbook objects.
TAXII 2.0 Server implemented in Node JS with MongoDB backend
A desktop App to add STIX-2 objects to TAXII-2.0 servers
Script to produce ATT&CK CSV files and MITRE ATT&CK CSV data storage
This project complements Apache Spark structured streaming with hand-picked streaming sources and sinks.
FEVER<->Threat Bus connector
A set of development tools for STIX and TAXII development, inlcuding a web app