> ## Documentation Index
> Fetch the complete documentation index at: https://docs.onefirewall.com/llms.txt
> Use this file to discover all available pages before exploring further.

# STIX2.0

> STIX2 (Structured Threat Information eXpression version 2) is a standardized language for representing cyber threat intelligence (CTI) that enables the sharing of threat intelligence across organizations and security tools. It is important to Threat Intel because it allows security professionals to more easily and effectively analyze and respond to cyber threats, improving their overall threat intelligence capabilities.
At OneFirewall, our mission is to deliver a trustworthy and effective cybersecurity platform that safeguards against cyber attacks. To accomplish this goal, we leverage STIX2 structured information to proactively identify and block malicious actors. We also empower our users with access to this critical threat intelligence data, enabling them to enhance their own cybersecurity defenses.



## OpenAPI

````yaml get /stix2/{stix2id}
openapi: 3.0.2
info:
  title: OneFirewall Alliance - OpenAPI 3.0
  description: >-
    The API documentation site serves as a comprehensive resource for developers
    looking to utilize the OneFirewall Platform's application programming
    interface (API). It offers in-depth information on API endpoints,
    parameters, responses, and authentication processes. Additionally, it
    features practical examples and code snippets to assist developers in
    integrating the API into their own applications. The website is crafted to
    be user-friendly, intuitive, and easily navigable, enabling developers to
    swiftly locate the necessary information to begin working with the API.
  termsOfService: https://onefirewall.com/eula.html
  contact:
    email: support@onefirewall.com
    url: https://onefirewall.com/contact.html
    name: Engineering Division
  license:
    name: ''
    url: ''
  version: V4.18.0
servers:
  - url: https://app.onefirewall.com/api/v1
    description: OneFirewall Server
    variables: {}
security: []
tags:
  - name: IPv4 Feeds
    description: ''
    externalDocs:
      description: ''
      url: ''
  - name: IoCs
    description: ''
    externalDocs:
      description: ''
      url: ''
  - name: Tools
    description: ''
    externalDocs:
      description: ''
      url: ''
  - name: URL Feeds
    description: ''
    externalDocs:
      description: ''
      url: ''
  - name: Domain Feeds
    description: ''
    externalDocs:
      description: ''
      url: ''
  - name: Security Binary Feeds
    description: ''
    externalDocs:
      description: ''
      url: ''
  - name: Secure VPN
    description: Secure VPN by OneFirewall
    externalDocs:
      description: ''
      url: ''
  - name: WCF Agent
    description: ''
    externalDocs:
      description: ''
      url: ''
externalDocs:
  description: http://docs.onefirewall.com
  url: http://app.onefirewall.com
paths:
  /stix2/{stix2id}:
    parameters:
      - in: path
        name: stix2id
        description: >-
          Threat Actor ID (IPv4, URL, Domain, File), at the moment we only
          provide information based on IPv4
        schema:
          type: string
        required: true
    get:
      tags:
        - IoCs
      summary: STIX2.0
      description: >-
        STIX2 (Structured Threat Information eXpression version 2) is a
        standardized language for representing cyber threat intelligence (CTI)
        that enables the sharing of threat intelligence across organizations and
        security tools. It is important to Threat Intel because it allows
        security professionals to more easily and effectively analyze and
        respond to cyber threats, improving their overall threat intelligence
        capabilities.

        At OneFirewall, our mission is to deliver a trustworthy and effective
        cybersecurity platform that safeguards against cyber attacks. To
        accomplish this goal, we leverage STIX2 structured information to
        proactively identify and block malicious actors. We also empower our
        users with access to this critical threat intelligence data, enabling
        them to enhance their own cybersecurity defenses.
      operationId: stix2
      parameters: []
      responses:
        '200':
          description: >-
            The response body contains an array of STIX2 objects, for simplicy
            we not going to explain in details the content format, however we
            are using Standard STIX2 bundles, and more information can be found
            here: STIX™ Version 2.0
          headers: {}
          content:
            application/json:
              schema:
                type: string
              examples:
                example1:
                  value: string
      security:
        - Authorization: []
components:
  securitySchemes:
    Authorization:
      type: apiKey
      in: header
      description: Authorization Token
      name: Authorization

````