Disclaimer
==========
- Structured Threat Intelligence Graph (STIG) is open sourced for the purpose of providing a repeatable and sharable platform for structured threat information.
- STIG does not assess the quality of threat information.  The quality of the threat information gathered and modified is based on the source of that threat information.
- STIG does not provide executable detection and response.  STIG output may be used in other detection and response technologies if those technologies digest Structured Threat Information eXpression (STIX) 2.0.  Integration with other detection and response technologies is not part of STIG.
- STIG can support extensions to the STIX data structures with the creation of a new database instance to include those structures.  These STIX extensions may not be supported in other STIX compliant technologies.
- Advanced programming scripts can be created or may exist inside a STIX data object that is represented in the STIG views and database.  These scripts are not tested through STIG or STIX validation.  These scripts, if used, are to be integrated at the implementer’s risk.